CVE-2021-34798 (GCVE-0-2021-34798)

Vulnerability from cvelistv5 – Published: 2021-09-16 14:40 – Updated: 2024-08-04 00:26

Title

NULL pointer dereference in httpd core

Summary

Malformed requests may cause the server to dereference a NULL pointer. This issue affects Apache HTTP Server 2.4.48 and earlier.

Severity

No CVSS data available.

CWE

CWE-476 - NULL Pointer Dereference

Assigner

apache

References

17 references

URL	Tags
http://httpd.apache.org/security/vulnerabilities_…	x_refsource_MISC
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisoryx_refsource_FEDORA
https://lists.apache.org/thread.html/r82838efc5fa…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r82c077663f9…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r3925e167d5e…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r61fdbfc26ab…	mailing-listx_refsource_MLIST
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisoryx_refsource_FEDORA
https://lists.debian.org/debian-lts-announce/2021…	mailing-listx_refsource_MLIST
https://www.debian.org/security/2021/dsa-4982	vendor-advisoryx_refsource_DEBIAN
https://tools.cisco.com/security/center/content/C…	vendor-advisoryx_refsource_CISCO
https://www.oracle.com/security-alerts/cpujan2022.html	x_refsource_MISC
https://www.tenable.com/security/tns-2021-17	x_refsource_CONFIRM
https://security.netapp.com/advisory/ntap-2021100…	x_refsource_CONFIRM
https://kc.mcafee.com/corporate/index?page=conten…	x_refsource_CONFIRM
https://www.oracle.com/security-alerts/cpuapr2022.html	x_refsource_MISC
https://cert-portal.siemens.com/productcert/pdf/s…	x_refsource_CONFIRM
https://security.gentoo.org/glsa/202208-20	vendor-advisoryx_refsource_GENTOO

Impacted products

1 product

Vendor	Product	Version
Apache Software Foundation	Apache HTTP Server	Affected: Apache HTTP Server 2.4 , ≤ 2.4.48 (custom)

Credits

The issue was discovered by the Apache HTTP security team

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T00:26:54.014Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://httpd.apache.org/security/vulnerabilities_24.html"
          },
          {
            "name": "FEDORA-2021-dce7e7738e",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SPBR6WUYBJNACHKE65SPL7TJOHX7RHWD/"
          },
          {
            "name": "[httpd-users] 20210923 [users@httpd] 2.4.49 security fixes: more info",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r82838efc5fa6fc4c73986399c9b71573589f78b31846aff5bd9b1697%40%3Cusers.httpd.apache.org%3E"
          },
          {
            "name": "[httpd-users] 20210923 Re: [users@httpd] 2.4.49 security fixes: more info",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r82c077663f9759c7df5a6656f925b3ee4f55fcd33c889ba7cd687029%40%3Cusers.httpd.apache.org%3E"
          },
          {
            "name": "[httpd-users] 20210923 [users@httpd] Re: [External] : [users@httpd] 2.4.49 security fixes: more info",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r3925e167d5eb1c75def3750c155d753064e1d34a143028bb32910432%40%3Cusers.httpd.apache.org%3E"
          },
          {
            "name": "[httpd-users] 20210923 Re: [users@httpd] Re: [External] : [users@httpd] 2.4.49 security fixes: more info",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r61fdbfc26ab170f4e6492ef3bd5197c20b862ce156e9d5a54d4b899c%40%3Cusers.httpd.apache.org%3E"
          },
          {
            "name": "FEDORA-2021-e3f6dd670d",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZNCYSR3BXT36FFF4XTCPL3HDQK4VP45R/"
          },
          {
            "name": "[debian-lts-announce] 20211002 [SECURITY] [DLA 2776-1] apache2 security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2021/10/msg00001.html"
          },
          {
            "name": "DSA-4982",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2021/dsa-4982"
          },
          {
            "name": "20211124 Multiple Vulnerabilities in Apache HTTP Server Affecting Cisco Products: November 2021",
            "tags": [
              "vendor-advisory",
              "x_refsource_CISCO",
              "x_transferred"
            ],
            "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-httpd-2.4.49-VWL69sWQ"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpujan2022.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.tenable.com/security/tns-2021-17"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20211008-0004/"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10379"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-685781.pdf"
          },
          {
            "name": "GLSA-202208-20",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202208-20"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Apache HTTP Server",
          "vendor": "Apache Software Foundation",
          "versions": [
            {
              "lessThanOrEqual": "2.4.48",
              "status": "affected",
              "version": "Apache HTTP Server 2.4",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "The issue was discovered by the Apache HTTP security team"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Malformed requests may cause the server to dereference a NULL pointer. This issue affects Apache HTTP Server 2.4.48 and earlier."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "other": "moderate"
            },
            "type": "unknown"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-476",
              "description": "CWE-476 NULL Pointer Dereference",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-08-14T01:07:32.000Z",
        "orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
        "shortName": "apache"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://httpd.apache.org/security/vulnerabilities_24.html"
        },
        {
          "name": "FEDORA-2021-dce7e7738e",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SPBR6WUYBJNACHKE65SPL7TJOHX7RHWD/"
        },
        {
          "name": "[httpd-users] 20210923 [users@httpd] 2.4.49 security fixes: more info",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r82838efc5fa6fc4c73986399c9b71573589f78b31846aff5bd9b1697%40%3Cusers.httpd.apache.org%3E"
        },
        {
          "name": "[httpd-users] 20210923 Re: [users@httpd] 2.4.49 security fixes: more info",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r82c077663f9759c7df5a6656f925b3ee4f55fcd33c889ba7cd687029%40%3Cusers.httpd.apache.org%3E"
        },
        {
          "name": "[httpd-users] 20210923 [users@httpd] Re: [External] : [users@httpd] 2.4.49 security fixes: more info",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r3925e167d5eb1c75def3750c155d753064e1d34a143028bb32910432%40%3Cusers.httpd.apache.org%3E"
        },
        {
          "name": "[httpd-users] 20210923 Re: [users@httpd] Re: [External] : [users@httpd] 2.4.49 security fixes: more info",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r61fdbfc26ab170f4e6492ef3bd5197c20b862ce156e9d5a54d4b899c%40%3Cusers.httpd.apache.org%3E"
        },
        {
          "name": "FEDORA-2021-e3f6dd670d",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZNCYSR3BXT36FFF4XTCPL3HDQK4VP45R/"
        },
        {
          "name": "[debian-lts-announce] 20211002 [SECURITY] [DLA 2776-1] apache2 security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2021/10/msg00001.html"
        },
        {
          "name": "DSA-4982",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "https://www.debian.org/security/2021/dsa-4982"
        },
        {
          "name": "20211124 Multiple Vulnerabilities in Apache HTTP Server Affecting Cisco Products: November 2021",
          "tags": [
            "vendor-advisory",
            "x_refsource_CISCO"
          ],
          "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-httpd-2.4.49-VWL69sWQ"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.oracle.com/security-alerts/cpujan2022.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.tenable.com/security/tns-2021-17"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20211008-0004/"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10379"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-685781.pdf"
        },
        {
          "name": "GLSA-202208-20",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/202208-20"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "timeline": [
        {
          "lang": "en",
          "time": "2021-09-16T00:00:00.000Z",
          "value": "2.4.49 released"
        }
      ],
      "title": "NULL pointer dereference in httpd core",
      "x_generator": {
        "engine": "Vulnogram 0.0.9"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@apache.org",
          "ID": "CVE-2021-34798",
          "STATE": "PUBLIC",
          "TITLE": "NULL pointer dereference in httpd core"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Apache HTTP Server",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c=",
                            "version_name": "Apache HTTP Server 2.4",
                            "version_value": "2.4.48"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Apache Software Foundation"
              }
            ]
          }
        },
        "credit": [
          {
            "lang": "eng",
            "value": "The issue was discovered by the Apache HTTP security team"
          }
        ],
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Malformed requests may cause the server to dereference a NULL pointer. This issue affects Apache HTTP Server 2.4.48 and earlier."
            }
          ]
        },
        "generator": {
          "engine": "Vulnogram 0.0.9"
        },
        "impact": [
          {
            "other": "moderate"
          }
        ],
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-476 NULL Pointer Dereference"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://httpd.apache.org/security/vulnerabilities_24.html",
              "refsource": "MISC",
              "url": "http://httpd.apache.org/security/vulnerabilities_24.html"
            },
            {
              "name": "FEDORA-2021-dce7e7738e",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SPBR6WUYBJNACHKE65SPL7TJOHX7RHWD/"
            },
            {
              "name": "[httpd-users] 20210923 [users@httpd] 2.4.49 security fixes: more info",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r82838efc5fa6fc4c73986399c9b71573589f78b31846aff5bd9b1697@%3Cusers.httpd.apache.org%3E"
            },
            {
              "name": "[httpd-users] 20210923 Re: [users@httpd] 2.4.49 security fixes: more info",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r82c077663f9759c7df5a6656f925b3ee4f55fcd33c889ba7cd687029@%3Cusers.httpd.apache.org%3E"
            },
            {
              "name": "[httpd-users] 20210923 [users@httpd] Re: [External] : [users@httpd] 2.4.49 security fixes: more info",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r3925e167d5eb1c75def3750c155d753064e1d34a143028bb32910432@%3Cusers.httpd.apache.org%3E"
            },
            {
              "name": "[httpd-users] 20210923 Re: [users@httpd] Re: [External] : [users@httpd] 2.4.49 security fixes: more info",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r61fdbfc26ab170f4e6492ef3bd5197c20b862ce156e9d5a54d4b899c@%3Cusers.httpd.apache.org%3E"
            },
            {
              "name": "FEDORA-2021-e3f6dd670d",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZNCYSR3BXT36FFF4XTCPL3HDQK4VP45R/"
            },
            {
              "name": "[debian-lts-announce] 20211002 [SECURITY] [DLA 2776-1] apache2 security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2021/10/msg00001.html"
            },
            {
              "name": "DSA-4982",
              "refsource": "DEBIAN",
              "url": "https://www.debian.org/security/2021/dsa-4982"
            },
            {
              "name": "20211124 Multiple Vulnerabilities in Apache HTTP Server Affecting Cisco Products: November 2021",
              "refsource": "CISCO",
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-httpd-2.4.49-VWL69sWQ"
            },
            {
              "name": "https://www.oracle.com/security-alerts/cpujan2022.html",
              "refsource": "MISC",
              "url": "https://www.oracle.com/security-alerts/cpujan2022.html"
            },
            {
              "name": "https://www.tenable.com/security/tns-2021-17",
              "refsource": "CONFIRM",
              "url": "https://www.tenable.com/security/tns-2021-17"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20211008-0004/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20211008-0004/"
            },
            {
              "name": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10379",
              "refsource": "CONFIRM",
              "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10379"
            },
            {
              "name": "https://www.oracle.com/security-alerts/cpuapr2022.html",
              "refsource": "MISC",
              "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
            },
            {
              "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-685781.pdf",
              "refsource": "CONFIRM",
              "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-685781.pdf"
            },
            {
              "name": "GLSA-202208-20",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/202208-20"
            }
          ]
        },
        "source": {
          "discovery": "UNKNOWN"
        },
        "timeline": [
          {
            "lang": "en",
            "time": "2021-09-16T00:00:00.000Z",
            "value": "2.4.49 released"
          }
        ]
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
    "assignerShortName": "apache",
    "cveId": "CVE-2021-34798",
    "datePublished": "2021-09-16T14:40:17.000Z",
    "dateReserved": "2021-06-16T00:00:00.000Z",
    "dateUpdated": "2024-08-04T00:26:54.014Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2021-34798",
      "date": "2026-06-15",
      "epss": "0.62771",
      "percentile": "0.99086"
    },
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"2.4.48\", \"matchCriteriaId\": \"1691C7CE-5CDA-4B9A-854E-3B58C1115526\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A930E247-0B43-43CB-98FF-6CE7B8189835\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"80E516C0-98A4-4ADE-B69F-66A772E2BAAA\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DEECE5FC-CACF-4496-A3E7-164736409252\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FA6FEEC2-9F11-4643-8827-749718254FED\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5C2089EE-5D7F-47EC-8EA5-0F69790564C4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:netapp:clustered_data_ontap:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1FE996B1-6951-4F85-AA58-B99A379D2163\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:netapp:storagegrid:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8ADFF451-740F-4DBA-BD23-3881945D3E40\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:tenable:tenable.sc:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"5.19.1\", \"matchCriteriaId\": \"A686FAF0-1383-4BBB-B7F5-CBCCAB55B356\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:1.10.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C2A5B24D-BDF2-423C-98EA-A40778C01A05\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:enterprise_manager_base_platform:13.4.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D26F3E23-F1A9-45E7-9E5F-0C0A24EE3783\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:enterprise_manager_base_platform:13.5.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6E8758C8-87D3-450A-878B-86CE8C9FC140\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:http_server:12.2.1.3.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DFC79B17-E9D2-44D5-93ED-2F959E7A3D43\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AD04BEE5-E9A8-4584-A68C-0195CE9C402C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:instantis_enterprisetrack:17.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"82EA4BA7-C38B-4AF3-8914-9E3D089EBDD4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:instantis_enterprisetrack:17.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B9C9BC66-FA5F-4774-9BDA-7AB88E2839C4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:instantis_enterprisetrack:17.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7F69B9A5-F21B-4904-9F27-95C0F7A628E3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D9DB4A14-2EF5-4B54-95D2-75E6CF9AA0A9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D3E503FB-6279-4D4A-91D8-E237ECF9D2B0\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:broadcom:brocade_fabric_operating_system_firmware:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B2748912-FC54-47F6-8C0C-B96784765B8E\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:siemens:ruggedcom_nms:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"414A7F48-EFA5-4D86-9F8D-5A179A6CFC39\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:siemens:sinec_nms:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D09241FF-5652-4020-A626-D604134D5020\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:siemens:sinema_remote_connect_server:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"3.1\", \"matchCriteriaId\": \"98CC9C9A-FE14-4D50-A8EC-C309229356C8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:siemens:sinema_server:14.0:-:*:*:*:*:*:*\", \"matchCriteriaId\": \"B0A5CC25-A323-4D49-8989-5A417D12D646\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Malformed requests may cause the server to dereference a NULL pointer. This issue affects Apache HTTP Server 2.4.48 and earlier.\"}, {\"lang\": \"es\", \"value\": \"Unas peticiones malformadas pueden causar que el servidor haga desreferencia a un puntero NULL. Este problema afecta a Apache HTTP Server versiones 2.4.48 y anteriores\"}]",
      "id": "CVE-2021-34798",
      "lastModified": "2024-11-21T06:11:13.650",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 3.6}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:N/I:N/A:P\", \"baseScore\": 5.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 10.0, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2021-09-16T15:15:07.267",
      "references": "[{\"url\": \"http://httpd.apache.org/security/vulnerabilities_24.html\", \"source\": \"security@apache.org\", \"tags\": [\"Release Notes\", \"Vendor Advisory\"]}, {\"url\": \"https://cert-portal.siemens.com/productcert/pdf/ssa-685781.pdf\", \"source\": \"security@apache.org\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10379\", \"source\": \"security@apache.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://lists.apache.org/thread.html/r3925e167d5eb1c75def3750c155d753064e1d34a143028bb32910432%40%3Cusers.httpd.apache.org%3E\", \"source\": \"security@apache.org\"}, {\"url\": \"https://lists.apache.org/thread.html/r61fdbfc26ab170f4e6492ef3bd5197c20b862ce156e9d5a54d4b899c%40%3Cusers.httpd.apache.org%3E\", \"source\": \"security@apache.org\"}, {\"url\": \"https://lists.apache.org/thread.html/r82838efc5fa6fc4c73986399c9b71573589f78b31846aff5bd9b1697%40%3Cusers.httpd.apache.org%3E\", \"source\": \"security@apache.org\"}, {\"url\": \"https://lists.apache.org/thread.html/r82c077663f9759c7df5a6656f925b3ee4f55fcd33c889ba7cd687029%40%3Cusers.httpd.apache.org%3E\", \"source\": \"security@apache.org\"}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2021/10/msg00001.html\", \"source\": \"security@apache.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SPBR6WUYBJNACHKE65SPL7TJOHX7RHWD/\", \"source\": \"security@apache.org\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZNCYSR3BXT36FFF4XTCPL3HDQK4VP45R/\", \"source\": \"security@apache.org\"}, {\"url\": \"https://security.gentoo.org/glsa/202208-20\", \"source\": \"security@apache.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20211008-0004/\", \"source\": \"security@apache.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-httpd-2.4.49-VWL69sWQ\", \"source\": \"security@apache.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.debian.org/security/2021/dsa-4982\", \"source\": \"security@apache.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpuapr2022.html\", \"source\": \"security@apache.org\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpujan2022.html\", \"source\": \"security@apache.org\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://www.tenable.com/security/tns-2021-17\", \"source\": \"security@apache.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://httpd.apache.org/security/vulnerabilities_24.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\", \"Vendor Advisory\"]}, {\"url\": \"https://cert-portal.siemens.com/productcert/pdf/ssa-685781.pdf\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10379\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://lists.apache.org/thread.html/r3925e167d5eb1c75def3750c155d753064e1d34a143028bb32910432%40%3Cusers.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/r61fdbfc26ab170f4e6492ef3bd5197c20b862ce156e9d5a54d4b899c%40%3Cusers.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/r82838efc5fa6fc4c73986399c9b71573589f78b31846aff5bd9b1697%40%3Cusers.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/r82c077663f9759c7df5a6656f925b3ee4f55fcd33c889ba7cd687029%40%3Cusers.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2021/10/msg00001.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SPBR6WUYBJNACHKE65SPL7TJOHX7RHWD/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZNCYSR3BXT36FFF4XTCPL3HDQK4VP45R/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://security.gentoo.org/glsa/202208-20\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20211008-0004/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-httpd-2.4.49-VWL69sWQ\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.debian.org/security/2021/dsa-4982\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpuapr2022.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpujan2022.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://www.tenable.com/security/tns-2021-17\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}]",
      "sourceIdentifier": "security@apache.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"security@apache.org\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-476\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-476\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2021-34798\",\"sourceIdentifier\":\"security@apache.org\",\"published\":\"2021-09-16T15:15:07.267\",\"lastModified\":\"2024-11-21T06:11:13.650\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Malformed requests may cause the server to dereference a NULL pointer. This issue affects Apache HTTP Server 2.4.48 and earlier.\"},{\"lang\":\"es\",\"value\":\"Unas peticiones malformadas pueden causar que el servidor haga desreferencia a un puntero NULL. Este problema afecta a Apache HTTP Server versiones 2.4.48 y anteriores\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:P\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"security@apache.org\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-476\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-476\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.4.48\",\"matchCriteriaId\":\"1691C7CE-5CDA-4B9A-854E-3B58C1115526\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A930E247-0B43-43CB-98FF-6CE7B8189835\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"80E516C0-98A4-4ADE-B69F-66A772E2BAAA\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA6FEEC2-9F11-4643-8827-749718254FED\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5C2089EE-5D7F-47EC-8EA5-0F69790564C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:clustered_data_ontap:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1FE996B1-6951-4F85-AA58-B99A379D2163\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:storagegrid:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8ADFF451-740F-4DBA-BD23-3881945D3E40\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:tenable:tenable.sc:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"5.19.1\",\"matchCriteriaId\":\"A686FAF0-1383-4BBB-B7F5-CBCCAB55B356\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:1.10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C2A5B24D-BDF2-423C-98EA-A40778C01A05\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:enterprise_manager_base_platform:13.4.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D26F3E23-F1A9-45E7-9E5F-0C0A24EE3783\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:enterprise_manager_base_platform:13.5.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6E8758C8-87D3-450A-878B-86CE8C9FC140\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:http_server:12.2.1.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DFC79B17-E9D2-44D5-93ED-2F959E7A3D43\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AD04BEE5-E9A8-4584-A68C-0195CE9C402C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:instantis_enterprisetrack:17.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"82EA4BA7-C38B-4AF3-8914-9E3D089EBDD4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:instantis_enterprisetrack:17.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B9C9BC66-FA5F-4774-9BDA-7AB88E2839C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:instantis_enterprisetrack:17.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F69B9A5-F21B-4904-9F27-95C0F7A628E3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D9DB4A14-2EF5-4B54-95D2-75E6CF9AA0A9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D3E503FB-6279-4D4A-91D8-E237ECF9D2B0\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:broadcom:brocade_fabric_operating_system_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B2748912-FC54-47F6-8C0C-B96784765B8E\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:ruggedcom_nms:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"414A7F48-EFA5-4D86-9F8D-5A179A6CFC39\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:sinec_nms:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D09241FF-5652-4020-A626-D604134D5020\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:sinema_remote_connect_server:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"3.1\",\"matchCriteriaId\":\"98CC9C9A-FE14-4D50-A8EC-C309229356C8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:sinema_server:14.0:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"B0A5CC25-A323-4D49-8989-5A417D12D646\"}]}]}],\"references\":[{\"url\":\"http://httpd.apache.org/security/vulnerabilities_24.html\",\"source\":\"security@apache.org\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://cert-portal.siemens.com/productcert/pdf/ssa-685781.pdf\",\"source\":\"security@apache.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10379\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.apache.org/thread.html/r3925e167d5eb1c75def3750c155d753064e1d34a143028bb32910432%40%3Cusers.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/r61fdbfc26ab170f4e6492ef3bd5197c20b862ce156e9d5a54d4b899c%40%3Cusers.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/r82838efc5fa6fc4c73986399c9b71573589f78b31846aff5bd9b1697%40%3Cusers.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/r82c077663f9759c7df5a6656f925b3ee4f55fcd33c889ba7cd687029%40%3Cusers.httpd.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/10/msg00001.html\",\"source\":\"security@apache.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SPBR6WUYBJNACHKE65SPL7TJOHX7RHWD/\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZNCYSR3BXT36FFF4XTCPL3HDQK4VP45R/\",\"source\":\"security@apache.org\"},{\"url\":\"https://security.gentoo.org/glsa/202208-20\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20211008-0004/\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-httpd-2.4.49-VWL69sWQ\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2021/dsa-4982\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuapr2022.html\",\"source\":\"security@apache.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpujan2022.html\",\"source\":\"security@apache.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.tenable.com/security/tns-2021-17\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://httpd.apache.org/security/vulnerabilities_24.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://cert-portal.siemens.com/productcert/pdf/ssa-685781.pdf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10379\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.apache.org/thread.html/r3925e167d5eb1c75def3750c155d753064e1d34a143028bb32910432%40%3Cusers.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r61fdbfc26ab170f4e6492ef3bd5197c20b862ce156e9d5a54d4b899c%40%3Cusers.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r82838efc5fa6fc4c73986399c9b71573589f78b31846aff5bd9b1697%40%3Cusers.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r82c077663f9759c7df5a6656f925b3ee4f55fcd33c889ba7cd687029%40%3Cusers.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/10/msg00001.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SPBR6WUYBJNACHKE65SPL7TJOHX7RHWD/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZNCYSR3BXT36FFF4XTCPL3HDQK4VP45R/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.gentoo.org/glsa/202208-20\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20211008-0004/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-httpd-2.4.49-VWL69sWQ\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2021/dsa-4982\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuapr2022.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpujan2022.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.tenable.com/security/tns-2021-17\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
  }
}

RHSA-2022_6753

Vulnerability from csaf_redhat - Published: 2022-09-29 13:33 - Updated: 2024-11-15 14:57

Summary

Red Hat Security Advisory: httpd24-httpd security and bug fix update

Severity

Moderate

Notes

Topic: An update for httpd24-httpd is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fix(es): * httpd: mod_sed: Read/write beyond bounds (CVE-2022-23943) * httpd: Request splitting via HTTP/2 method injection and mod_proxy (CVE-2021-33193) * httpd: NULL pointer dereference via malformed requests (CVE-2021-34798) * httpd: mod_proxy_uwsgi: out-of-bounds read via a crafted request uri-path (CVE-2021-36160) * httpd: Out-of-bounds write in ap_escape_quotes() via malicious input (CVE-2021-39275) * httpd: possible NULL dereference or SSRF in forward proxy configurations (CVE-2021-44224) * httpd: mod_lua: Use of uninitialized value of in r:parsebody (CVE-2022-22719) * httpd: core: Possible buffer overflow with very large or unlimited LimitXMLRequestBody (CVE-2022-22721) * httpd: mod_proxy_ajp: Possible request smuggling (CVE-2022-26377) * httpd: mod_lua: DoS in r:parsebody (CVE-2022-29404) * httpd: mod_sed: DoS vulnerability (CVE-2022-30522) * httpd: mod_proxy: X-Forwarded-For dropped by hop-by-hop mechanism (CVE-2022-31813) * httpd: out-of-bounds read via ap_rwrite() (CVE-2022-28614) * httpd: out-of-bounds read in ap_strcmp_match() (CVE-2022-28615) * httpd: mod_lua: Information disclosure with websockets (CVE-2022-30556) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * proxy rewrite to unix socket fails with CVE-2021-40438 fix (BZ#2022319) Additional changes: * To fix CVE-2022-29404, the default value for the "LimitRequestBody" directive in the Apache HTTP Server has been changed from 0 (unlimited) to 1 GiB. On systems where the value of "LimitRequestBody" is not explicitly specified in an httpd configuration file, updating the httpd package sets "LimitRequestBody" to the default value of 1 GiB. As a consequence, if the total size of the HTTP request body exceeds this 1 GiB default limit, httpd returns the 413 Request Entity Too Large error code. If the new default allowed size of an HTTP request message body is insufficient for your use case, update your httpd configuration files within the respective context (server, per-directory, per-file, or per-location) and set your preferred limit in bytes. For example, to set a new 2 GiB limit, use: LimitRequestBody 2147483648 Systems already configured to use any explicit value for the "LimitRequestBody" directive are unaffected by this change.

Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2021-33193

A NULL pointer dereference was found in Apache httpd mod_h2. The highest threat from this flaw is to system integrity.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CWE-476 - NULL Pointer Dereference

Affected products

Fixed 52 products

Product	Version	Remediation
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2021-34798

A NULL pointer dereference in httpd allows an unauthenticated remote attacker to crash httpd by providing malformed HTTP requests. The highest threat from this vulnerability is to system availability.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-476 - NULL Pointer Dereference

Affected products

Fixed 52 products

Product	Version	Remediation
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2021-36160

An out-of-bounds read in mod_proxy_uwsgi of httpd allows a remote unauthenticated attacker to crash the service through a crafted request. The highest threat from this vulnerability is to system availability.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-125 - Out-of-bounds Read

Affected products

Fixed 52 products

Product	Version	Remediation
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2021-39275

An out-of-bounds write in function ap_escape_quotes of httpd allows an unauthenticated remote attacker to crash the server or potentially execute code on the system with the privileges of the httpd user, by providing malicious input to the function.

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Fixed 52 products

Product	Version	Remediation
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2021-44224

There's a null pointer dereference and server-side request forgery flaw in httpd's mod_proxy module, when it is configured to be used as a forward proxy. A crafted packet could be sent on the adjacent network to the forward proxy that could cause a crash, or potentially SSRF via misdirected Unix Domain Socket requests. In the worst case, this could cause a denial of service or compromise to confidentiality of data.

7.1 (High)


                        
                          CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H

CWE-918 - Server-Side Request Forgery (SSRF)

Affected products

Fixed 52 products

Product	Version	Remediation
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2022-22719

A flaw was found in the mod_lua module of httpd. A crafted request body can cause a read to a random memory area due to an uninitialized value in functions called by the parsebody function. The highest threat from this vulnerability is to system availability.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-908 - Use of Uninitialized Resource

Affected products

Fixed 52 products

Product	Version	Remediation
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2022-22721

A flaw was found in httpd, where it incorrectly limits the value of the LimitXMLRequestBody option. This issue can lead to an integer overflow and later causes an out-of-bounds write.

7.4 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Fixed 52 products

Product	Version	Remediation
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2022-23943

An out-of-bounds read/write vulnerability was found in the mod_sed module of httpd. This flaw allows an attacker to overwrite the memory of an httpd instance that is using mod_sed with data provided by the attacker.

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Fixed 52 products

Product	Version	Remediation
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2022-26377

An HTTP request smuggling vulnerability was found in the mod_proxy_ajp module of httpd. This flaw allows an attacker to smuggle requests to the AJP server, where it forwards requests.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L

CWE-444 - Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

Affected products

Fixed 52 products

Product	Version	Remediation
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2022-28614

An out-of-bounds read vulnerability was found in httpd. A very large input to the ap_rputs and ap_rwrite functions can lead to an integer overflow and result in an out-of-bounds read.

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

Affected products

Fixed 52 products

Product	Version	Remediation
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix

Threats

Impact Low

CVE-2022-28615

An out-of-bounds read vulnerability was found in httpd. A very large input to the ap_strcmp_match function can lead to an integer overflow and result in an out-of-bounds read.

7.4 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H

CWE-125 - Out-of-bounds Read

Affected products

Fixed 52 products

Product	Version	Remediation
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix

Threats

Impact Low

CVE-2022-29404

A flaw was found in the mod_lua module of httpd. A malicious request to a Lua script that calls parsebody(0) can lead to a denial of service due to no default limit on the possible input size.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 52 products

Product	Version	Remediation
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2022-30522

A flaw was found in the mod_sed module of httpd. A very large input to the mod_sed module can result in a denial of service due to excessively large memory allocations.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-789 - Memory Allocation with Excessive Size Value

Affected products

Fixed 52 products

Product	Version	Remediation
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2022-30556

A flaw was found in the mod_lua module of httpd. The data returned by the wsread function may point past the end of the storage allocated for the buffer, resulting in information disclosure.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

Affected products

Fixed 52 products

Product	Version	Remediation
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Low

CVE-2022-31813

A flaw was found in the mod_proxy module of httpd. The server may remove the X-Forwarded-* headers from a request based on the client-side Connection header hop-by-hop mechanism.

7.3 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CWE-348 - Use of Less Trusted Source

Affected products

Fixed 52 products

Product	Version	Remediation
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

References

92 references

URL	Category
https://access.redhat.com/errata/RHSA-2022:6753	self
https://access.redhat.com/security/updates/classi…	external
https://access.redhat.com/articles/6975397	external
https://bugzilla.redhat.com/show_bug.cgi?id=1966728	external
https://bugzilla.redhat.com/show_bug.cgi?id=2005119	external
https://bugzilla.redhat.com/show_bug.cgi?id=2005124	external
https://bugzilla.redhat.com/show_bug.cgi?id=2005128	external
https://bugzilla.redhat.com/show_bug.cgi?id=2034672	external
https://bugzilla.redhat.com/show_bug.cgi?id=2064319	external
https://bugzilla.redhat.com/show_bug.cgi?id=2064320	external
https://bugzilla.redhat.com/show_bug.cgi?id=2064322	external
https://bugzilla.redhat.com/show_bug.cgi?id=2094997	external
https://bugzilla.redhat.com/show_bug.cgi?id=2095002	external
https://bugzilla.redhat.com/show_bug.cgi?id=2095006	external
https://bugzilla.redhat.com/show_bug.cgi?id=2095012	external
https://bugzilla.redhat.com/show_bug.cgi?id=2095015	external
https://bugzilla.redhat.com/show_bug.cgi?id=2095018	external
https://bugzilla.redhat.com/show_bug.cgi?id=2095020	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2021-33193	self
https://bugzilla.redhat.com/show_bug.cgi?id=1966728	external
https://www.cve.org/CVERecord?id=CVE-2021-33193	external
https://nvd.nist.gov/vuln/detail/CVE-2021-33193	external
https://portswigger.net/research/http2	external
https://access.redhat.com/security/cve/CVE-2021-34798	self
https://bugzilla.redhat.com/show_bug.cgi?id=2005128	external
https://www.cve.org/CVERecord?id=CVE-2021-34798	external
https://nvd.nist.gov/vuln/detail/CVE-2021-34798	external
https://httpd.apache.org/security/vulnerabilities…	external
https://access.redhat.com/security/cve/CVE-2021-36160	self
https://bugzilla.redhat.com/show_bug.cgi?id=2005124	external
https://www.cve.org/CVERecord?id=CVE-2021-36160	external
https://nvd.nist.gov/vuln/detail/CVE-2021-36160	external
https://access.redhat.com/security/cve/CVE-2021-39275	self
https://bugzilla.redhat.com/show_bug.cgi?id=2005119	external
https://www.cve.org/CVERecord?id=CVE-2021-39275	external
https://nvd.nist.gov/vuln/detail/CVE-2021-39275	external
https://access.redhat.com/security/cve/CVE-2021-44224	self
https://bugzilla.redhat.com/show_bug.cgi?id=2034672	external
https://www.cve.org/CVERecord?id=CVE-2021-44224	external
https://nvd.nist.gov/vuln/detail/CVE-2021-44224	external
http://httpd.apache.org/security/vulnerabilities_…	external
https://access.redhat.com/security/cve/CVE-2022-22719	self
https://bugzilla.redhat.com/show_bug.cgi?id=2064322	external
https://www.cve.org/CVERecord?id=CVE-2022-22719	external
https://nvd.nist.gov/vuln/detail/CVE-2022-22719	external
https://httpd.apache.org/security/vulnerabilities…	external
https://access.redhat.com/security/cve/CVE-2022-22721	self
https://bugzilla.redhat.com/show_bug.cgi?id=2064320	external
https://www.cve.org/CVERecord?id=CVE-2022-22721	external
https://nvd.nist.gov/vuln/detail/CVE-2022-22721	external
https://httpd.apache.org/security/vulnerabilities…	external
https://access.redhat.com/security/cve/CVE-2022-23943	self
https://bugzilla.redhat.com/show_bug.cgi?id=2064319	external
https://www.cve.org/CVERecord?id=CVE-2022-23943	external
https://nvd.nist.gov/vuln/detail/CVE-2022-23943	external
https://httpd.apache.org/security/vulnerabilities…	external
https://access.redhat.com/security/cve/CVE-2022-26377	self
https://bugzilla.redhat.com/show_bug.cgi?id=2094997	external
https://www.cve.org/CVERecord?id=CVE-2022-26377	external
https://nvd.nist.gov/vuln/detail/CVE-2022-26377	external
https://httpd.apache.org/security/vulnerabilities…	external
https://access.redhat.com/security/cve/CVE-2022-28614	self
https://bugzilla.redhat.com/show_bug.cgi?id=2095002	external
https://www.cve.org/CVERecord?id=CVE-2022-28614	external
https://nvd.nist.gov/vuln/detail/CVE-2022-28614	external
https://httpd.apache.org/security/vulnerabilities…	external
https://access.redhat.com/security/cve/CVE-2022-28615	self
https://bugzilla.redhat.com/show_bug.cgi?id=2095006	external
https://www.cve.org/CVERecord?id=CVE-2022-28615	external
https://nvd.nist.gov/vuln/detail/CVE-2022-28615	external
https://httpd.apache.org/security/vulnerabilities…	external
https://access.redhat.com/security/cve/CVE-2022-29404	self
https://bugzilla.redhat.com/show_bug.cgi?id=2095012	external
https://www.cve.org/CVERecord?id=CVE-2022-29404	external
https://nvd.nist.gov/vuln/detail/CVE-2022-29404	external
https://httpd.apache.org/security/vulnerabilities…	external
https://access.redhat.com/security/cve/CVE-2022-30522	self
https://bugzilla.redhat.com/show_bug.cgi?id=2095015	external
https://www.cve.org/CVERecord?id=CVE-2022-30522	external
https://nvd.nist.gov/vuln/detail/CVE-2022-30522	external
https://httpd.apache.org/security/vulnerabilities…	external
https://access.redhat.com/security/cve/CVE-2022-30556	self
https://bugzilla.redhat.com/show_bug.cgi?id=2095018	external
https://www.cve.org/CVERecord?id=CVE-2022-30556	external
https://nvd.nist.gov/vuln/detail/CVE-2022-30556	external
https://httpd.apache.org/security/vulnerabilities…	external
https://access.redhat.com/security/cve/CVE-2022-31813	self
https://bugzilla.redhat.com/show_bug.cgi?id=2095020	external
https://www.cve.org/CVERecord?id=CVE-2022-31813	external
https://nvd.nist.gov/vuln/detail/CVE-2022-31813	external
https://httpd.apache.org/security/vulnerabilities…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for httpd24-httpd is now available for Red Hat Software Collections.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server.\n\nSecurity Fix(es):\n\n* httpd: mod_sed: Read/write beyond bounds (CVE-2022-23943)\n\n* httpd: Request splitting via HTTP/2 method injection and mod_proxy (CVE-2021-33193)\n\n* httpd: NULL pointer dereference via malformed requests (CVE-2021-34798)\n\n* httpd: mod_proxy_uwsgi: out-of-bounds read via a crafted request uri-path (CVE-2021-36160)\n\n* httpd: Out-of-bounds write in ap_escape_quotes() via malicious input (CVE-2021-39275)\n\n* httpd: possible NULL dereference or SSRF in forward proxy configurations (CVE-2021-44224)\n\n* httpd: mod_lua: Use of uninitialized value of in r:parsebody (CVE-2022-22719)\n\n* httpd: core: Possible buffer overflow with very large or unlimited LimitXMLRequestBody (CVE-2022-22721)\n\n* httpd: mod_proxy_ajp: Possible request smuggling (CVE-2022-26377)\n\n* httpd: mod_lua: DoS in r:parsebody (CVE-2022-29404)\n\n* httpd: mod_sed: DoS vulnerability (CVE-2022-30522)\n\n* httpd: mod_proxy: X-Forwarded-For dropped by hop-by-hop mechanism (CVE-2022-31813)\n\n* httpd: out-of-bounds read via ap_rwrite() (CVE-2022-28614)\n\n* httpd: out-of-bounds read in ap_strcmp_match() (CVE-2022-28615)\n\n* httpd: mod_lua: Information disclosure with websockets (CVE-2022-30556)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* proxy rewrite to unix socket fails with CVE-2021-40438 fix (BZ#2022319)\n\nAdditional changes:\n\n* To fix CVE-2022-29404, the default value for the \"LimitRequestBody\" directive in the Apache HTTP Server has been changed from 0 (unlimited) to 1 GiB. \n\nOn systems where the value of \"LimitRequestBody\" is not explicitly specified in an httpd configuration file, updating the httpd package sets \"LimitRequestBody\" to the default value of 1 GiB. As a consequence, if the total size of the HTTP request body exceeds this 1 GiB default limit, httpd returns the 413 Request Entity Too Large error code.\n\nIf the new default allowed size of an HTTP request message body is insufficient for your use case, update your httpd configuration files within the respective context (server, per-directory, per-file, or per-location) and set your preferred limit in bytes. For example, to set a new 2 GiB limit, use:\n\nLimitRequestBody 2147483648\n\nSystems already configured to use any explicit value for the \"LimitRequestBody\" directive are unaffected by this change.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2022:6753",
        "url": "https://access.redhat.com/errata/RHSA-2022:6753"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#moderate",
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/articles/6975397",
        "url": "https://access.redhat.com/articles/6975397"
      },
      {
        "category": "external",
        "summary": "1966728",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1966728"
      },
      {
        "category": "external",
        "summary": "2005119",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2005119"
      },
      {
        "category": "external",
        "summary": "2005124",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2005124"
      },
      {
        "category": "external",
        "summary": "2005128",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2005128"
      },
      {
        "category": "external",
        "summary": "2034672",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2034672"
      },
      {
        "category": "external",
        "summary": "2064319",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064319"
      },
      {
        "category": "external",
        "summary": "2064320",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064320"
      },
      {
        "category": "external",
        "summary": "2064322",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064322"
      },
      {
        "category": "external",
        "summary": "2094997",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2094997"
      },
      {
        "category": "external",
        "summary": "2095002",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2095002"
      },
      {
        "category": "external",
        "summary": "2095006",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2095006"
      },
      {
        "category": "external",
        "summary": "2095012",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2095012"
      },
      {
        "category": "external",
        "summary": "2095015",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2095015"
      },
      {
        "category": "external",
        "summary": "2095018",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2095018"
      },
      {
        "category": "external",
        "summary": "2095020",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2095020"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_6753.json"
      }
    ],
    "title": "Red Hat Security Advisory: httpd24-httpd security and bug fix update",
    "tracking": {
      "current_release_date": "2024-11-15T14:57:02+00:00",
      "generator": {
        "date": "2024-11-15T14:57:02+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2022:6753",
      "initial_release_date": "2022-09-29T13:33:06+00:00",
      "revision_history": [
        {
          "date": "2022-09-29T13:33:06+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2022-09-29T13:33:06+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-15T14:57:02+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Software Collections for RHEL Workstation(v. 7)",
                "product": {
                  "name": "Red Hat Software Collections for RHEL Workstation(v. 7)",
                  "product_id": "7Server-RHSCL-3.8",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Software Collections for RHEL(v. 7)",
                "product": {
                  "name": "Red Hat Software Collections for RHEL(v. 7)",
                  "product_id": "7Workstation-RHSCL-3.8",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Software Collections"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "httpd24-httpd-0:2.4.34-23.el7.5.src",
                "product": {
                  "name": "httpd24-httpd-0:2.4.34-23.el7.5.src",
                  "product_id": "httpd24-httpd-0:2.4.34-23.el7.5.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/httpd24-httpd@2.4.34-23.el7.5?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
                "product": {
                  "name": "httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
                  "product_id": "httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/httpd24-httpd@2.4.34-23.el7.5?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
                "product": {
                  "name": "httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
                  "product_id": "httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/httpd24-httpd-devel@2.4.34-23.el7.5?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
                "product": {
                  "name": "httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
                  "product_id": "httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/httpd24-httpd-tools@2.4.34-23.el7.5?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
                "product": {
                  "name": "httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
                  "product_id": "httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/httpd24-mod_ldap@2.4.34-23.el7.5?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
                "product": {
                  "name": "httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
                  "product_id": "httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/httpd24-mod_proxy_html@2.4.34-23.el7.5?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
                "product": {
                  "name": "httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
                  "product_id": "httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/httpd24-mod_session@2.4.34-23.el7.5?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
                "product": {
                  "name": "httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
                  "product_id": "httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/httpd24-mod_ssl@2.4.34-23.el7.5?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
                "product": {
                  "name": "httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
                  "product_id": "httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/httpd24-httpd-debuginfo@2.4.34-23.el7.5?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
                "product": {
                  "name": "httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
                  "product_id": "httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/httpd24-httpd-manual@2.4.34-23.el7.5?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "httpd24-httpd-0:2.4.34-23.el7.5.s390x",
                "product": {
                  "name": "httpd24-httpd-0:2.4.34-23.el7.5.s390x",
                  "product_id": "httpd24-httpd-0:2.4.34-23.el7.5.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/httpd24-httpd@2.4.34-23.el7.5?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
                "product": {
                  "name": "httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
                  "product_id": "httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/httpd24-httpd-devel@2.4.34-23.el7.5?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
                "product": {
                  "name": "httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
                  "product_id": "httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/httpd24-httpd-tools@2.4.34-23.el7.5?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
                "product": {
                  "name": "httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
                  "product_id": "httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/httpd24-mod_ldap@2.4.34-23.el7.5?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
                "product": {
                  "name": "httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
                  "product_id": "httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/httpd24-mod_proxy_html@2.4.34-23.el7.5?arch=s390x\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
                "product": {
                  "name": "httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
                  "product_id": "httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/httpd24-mod_session@2.4.34-23.el7.5?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
                "product": {
                  "name": "httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
                  "product_id": "httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/httpd24-mod_ssl@2.4.34-23.el7.5?arch=s390x\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
                "product": {
                  "name": "httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
                  "product_id": "httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/httpd24-httpd-debuginfo@2.4.34-23.el7.5?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
                "product": {
                  "name": "httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
                  "product_id": "httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/httpd24-httpd@2.4.34-23.el7.5?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
                "product": {
                  "name": "httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
                  "product_id": "httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/httpd24-httpd-devel@2.4.34-23.el7.5?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
                "product": {
                  "name": "httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
                  "product_id": "httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/httpd24-httpd-tools@2.4.34-23.el7.5?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
                "product": {
                  "name": "httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
                  "product_id": "httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/httpd24-mod_ldap@2.4.34-23.el7.5?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
                "product": {
                  "name": "httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
                  "product_id": "httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/httpd24-mod_proxy_html@2.4.34-23.el7.5?arch=ppc64le\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
                "product": {
                  "name": "httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
                  "product_id": "httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/httpd24-mod_session@2.4.34-23.el7.5?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
                "product": {
                  "name": "httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
                  "product_id": "httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/httpd24-mod_ssl@2.4.34-23.el7.5?arch=ppc64le\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
                "product": {
                  "name": "httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
                  "product_id": "httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/httpd24-httpd-debuginfo@2.4.34-23.el7.5?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-httpd-0:2.4.34-23.el7.5.ppc64le as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
          "product_id": "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le"
        },
        "product_reference": "httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
        "relates_to_product_reference": "7Server-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-httpd-0:2.4.34-23.el7.5.s390x as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
          "product_id": "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x"
        },
        "product_reference": "httpd24-httpd-0:2.4.34-23.el7.5.s390x",
        "relates_to_product_reference": "7Server-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-httpd-0:2.4.34-23.el7.5.src as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
          "product_id": "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src"
        },
        "product_reference": "httpd24-httpd-0:2.4.34-23.el7.5.src",
        "relates_to_product_reference": "7Server-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-httpd-0:2.4.34-23.el7.5.x86_64 as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
          "product_id": "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64"
        },
        "product_reference": "httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
        "relates_to_product_reference": "7Server-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
          "product_id": "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le"
        },
        "product_reference": "httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
        "relates_to_product_reference": "7Server-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
          "product_id": "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x"
        },
        "product_reference": "httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
        "relates_to_product_reference": "7Server-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64 as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
          "product_id": "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64"
        },
        "product_reference": "httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
        "relates_to_product_reference": "7Server-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
          "product_id": "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le"
        },
        "product_reference": "httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
        "relates_to_product_reference": "7Server-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
          "product_id": "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x"
        },
        "product_reference": "httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
        "relates_to_product_reference": "7Server-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64 as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
          "product_id": "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64"
        },
        "product_reference": "httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
        "relates_to_product_reference": "7Server-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
          "product_id": "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch"
        },
        "product_reference": "httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
        "relates_to_product_reference": "7Server-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
          "product_id": "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le"
        },
        "product_reference": "httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
        "relates_to_product_reference": "7Server-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
          "product_id": "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x"
        },
        "product_reference": "httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
        "relates_to_product_reference": "7Server-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64 as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
          "product_id": "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64"
        },
        "product_reference": "httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
        "relates_to_product_reference": "7Server-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
          "product_id": "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le"
        },
        "product_reference": "httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
        "relates_to_product_reference": "7Server-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
          "product_id": "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x"
        },
        "product_reference": "httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
        "relates_to_product_reference": "7Server-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64 as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
          "product_id": "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64"
        },
        "product_reference": "httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
        "relates_to_product_reference": "7Server-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
          "product_id": "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le"
        },
        "product_reference": "httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
        "relates_to_product_reference": "7Server-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
          "product_id": "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x"
        },
        "product_reference": "httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
        "relates_to_product_reference": "7Server-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64 as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
          "product_id": "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64"
        },
        "product_reference": "httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
        "relates_to_product_reference": "7Server-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
          "product_id": "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le"
        },
        "product_reference": "httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
        "relates_to_product_reference": "7Server-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-mod_session-0:2.4.34-23.el7.5.s390x as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
          "product_id": "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x"
        },
        "product_reference": "httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
        "relates_to_product_reference": "7Server-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-mod_session-0:2.4.34-23.el7.5.x86_64 as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
          "product_id": "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64"
        },
        "product_reference": "httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
        "relates_to_product_reference": "7Server-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
          "product_id": "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le"
        },
        "product_reference": "httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
        "relates_to_product_reference": "7Server-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
          "product_id": "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x"
        },
        "product_reference": "httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
        "relates_to_product_reference": "7Server-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64 as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
          "product_id": "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
        },
        "product_reference": "httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
        "relates_to_product_reference": "7Server-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-httpd-0:2.4.34-23.el7.5.ppc64le as a component of Red Hat Software Collections for RHEL(v. 7)",
          "product_id": "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le"
        },
        "product_reference": "httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
        "relates_to_product_reference": "7Workstation-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-httpd-0:2.4.34-23.el7.5.s390x as a component of Red Hat Software Collections for RHEL(v. 7)",
          "product_id": "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x"
        },
        "product_reference": "httpd24-httpd-0:2.4.34-23.el7.5.s390x",
        "relates_to_product_reference": "7Workstation-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-httpd-0:2.4.34-23.el7.5.src as a component of Red Hat Software Collections for RHEL(v. 7)",
          "product_id": "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src"
        },
        "product_reference": "httpd24-httpd-0:2.4.34-23.el7.5.src",
        "relates_to_product_reference": "7Workstation-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-httpd-0:2.4.34-23.el7.5.x86_64 as a component of Red Hat Software Collections for RHEL(v. 7)",
          "product_id": "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64"
        },
        "product_reference": "httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
        "relates_to_product_reference": "7Workstation-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le as a component of Red Hat Software Collections for RHEL(v. 7)",
          "product_id": "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le"
        },
        "product_reference": "httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
        "relates_to_product_reference": "7Workstation-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x as a component of Red Hat Software Collections for RHEL(v. 7)",
          "product_id": "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x"
        },
        "product_reference": "httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
        "relates_to_product_reference": "7Workstation-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64 as a component of Red Hat Software Collections for RHEL(v. 7)",
          "product_id": "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64"
        },
        "product_reference": "httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
        "relates_to_product_reference": "7Workstation-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le as a component of Red Hat Software Collections for RHEL(v. 7)",
          "product_id": "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le"
        },
        "product_reference": "httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
        "relates_to_product_reference": "7Workstation-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x as a component of Red Hat Software Collections for RHEL(v. 7)",
          "product_id": "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x"
        },
        "product_reference": "httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
        "relates_to_product_reference": "7Workstation-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64 as a component of Red Hat Software Collections for RHEL(v. 7)",
          "product_id": "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64"
        },
        "product_reference": "httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
        "relates_to_product_reference": "7Workstation-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch as a component of Red Hat Software Collections for RHEL(v. 7)",
          "product_id": "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch"
        },
        "product_reference": "httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
        "relates_to_product_reference": "7Workstation-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le as a component of Red Hat Software Collections for RHEL(v. 7)",
          "product_id": "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le"
        },
        "product_reference": "httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
        "relates_to_product_reference": "7Workstation-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x as a component of Red Hat Software Collections for RHEL(v. 7)",
          "product_id": "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x"
        },
        "product_reference": "httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
        "relates_to_product_reference": "7Workstation-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64 as a component of Red Hat Software Collections for RHEL(v. 7)",
          "product_id": "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64"
        },
        "product_reference": "httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
        "relates_to_product_reference": "7Workstation-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le as a component of Red Hat Software Collections for RHEL(v. 7)",
          "product_id": "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le"
        },
        "product_reference": "httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
        "relates_to_product_reference": "7Workstation-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x as a component of Red Hat Software Collections for RHEL(v. 7)",
          "product_id": "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x"
        },
        "product_reference": "httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
        "relates_to_product_reference": "7Workstation-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64 as a component of Red Hat Software Collections for RHEL(v. 7)",
          "product_id": "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64"
        },
        "product_reference": "httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
        "relates_to_product_reference": "7Workstation-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le as a component of Red Hat Software Collections for RHEL(v. 7)",
          "product_id": "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le"
        },
        "product_reference": "httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
        "relates_to_product_reference": "7Workstation-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x as a component of Red Hat Software Collections for RHEL(v. 7)",
          "product_id": "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x"
        },
        "product_reference": "httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
        "relates_to_product_reference": "7Workstation-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64 as a component of Red Hat Software Collections for RHEL(v. 7)",
          "product_id": "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64"
        },
        "product_reference": "httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
        "relates_to_product_reference": "7Workstation-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le as a component of Red Hat Software Collections for RHEL(v. 7)",
          "product_id": "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le"
        },
        "product_reference": "httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
        "relates_to_product_reference": "7Workstation-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-mod_session-0:2.4.34-23.el7.5.s390x as a component of Red Hat Software Collections for RHEL(v. 7)",
          "product_id": "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x"
        },
        "product_reference": "httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
        "relates_to_product_reference": "7Workstation-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-mod_session-0:2.4.34-23.el7.5.x86_64 as a component of Red Hat Software Collections for RHEL(v. 7)",
          "product_id": "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64"
        },
        "product_reference": "httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
        "relates_to_product_reference": "7Workstation-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le as a component of Red Hat Software Collections for RHEL(v. 7)",
          "product_id": "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le"
        },
        "product_reference": "httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
        "relates_to_product_reference": "7Workstation-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x as a component of Red Hat Software Collections for RHEL(v. 7)",
          "product_id": "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x"
        },
        "product_reference": "httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
        "relates_to_product_reference": "7Workstation-RHSCL-3.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64 as a component of Red Hat Software Collections for RHEL(v. 7)",
          "product_id": "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
        },
        "product_reference": "httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
        "relates_to_product_reference": "7Workstation-RHSCL-3.8"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-33193",
      "cwe": {
        "id": "CWE-476",
        "name": "NULL Pointer Dereference"
      },
      "discovery_date": "2021-05-27T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1966728"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A NULL pointer dereference was found in Apache httpd mod_h2. The highest threat from this flaw is to system integrity.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "httpd: Request splitting via HTTP/2 method injection and mod_proxy",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2021-33193"
        },
        {
          "category": "external",
          "summary": "RHBZ#1966728",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1966728"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2021-33193",
          "url": "https://www.cve.org/CVERecord?id=CVE-2021-33193"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-33193",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-33193"
        },
        {
          "category": "external",
          "summary": "https://portswigger.net/research/http2",
          "url": "https://portswigger.net/research/http2"
        }
      ],
      "release_date": "2021-08-05T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2022-09-29T13:33:06+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.",
          "product_ids": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2022:6753"
        },
        {
          "category": "workaround",
          "details": "This flaw can be mitigated by disabling HTTP/2. More information available at: https://httpd.apache.org/docs/2.4/mod/mod_http2.html",
          "product_ids": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "httpd: Request splitting via HTTP/2 method injection and mod_proxy"
    },
    {
      "cve": "CVE-2021-34798",
      "cwe": {
        "id": "CWE-476",
        "name": "NULL Pointer Dereference"
      },
      "discovery_date": "2021-09-16T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2005128"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A NULL pointer dereference in httpd allows an unauthenticated remote attacker to crash httpd by providing malformed HTTP requests. The highest threat from this vulnerability is to system availability.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "httpd: NULL pointer dereference via malformed requests",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2021-34798"
        },
        {
          "category": "external",
          "summary": "RHBZ#2005128",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2005128"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2021-34798",
          "url": "https://www.cve.org/CVERecord?id=CVE-2021-34798"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-34798",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-34798"
        },
        {
          "category": "external",
          "summary": "https://httpd.apache.org/security/vulnerabilities_24.html",
          "url": "https://httpd.apache.org/security/vulnerabilities_24.html"
        }
      ],
      "release_date": "2021-09-16T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2022-09-29T13:33:06+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.",
          "product_ids": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2022:6753"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example.",
          "product_ids": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "httpd: NULL pointer dereference via malformed requests"
    },
    {
      "cve": "CVE-2021-36160",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2021-09-16T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2005124"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An out-of-bounds read in mod_proxy_uwsgi of httpd allows a remote unauthenticated attacker to crash the service through a crafted request. The highest threat from this vulnerability is to system availability.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "httpd: mod_proxy_uwsgi: out-of-bounds read via a crafted request uri-path",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2021-36160"
        },
        {
          "category": "external",
          "summary": "RHBZ#2005124",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2005124"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2021-36160",
          "url": "https://www.cve.org/CVERecord?id=CVE-2021-36160"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-36160",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-36160"
        }
      ],
      "release_date": "2021-09-16T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2022-09-29T13:33:06+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.",
          "product_ids": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2022:6753"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "httpd: mod_proxy_uwsgi: out-of-bounds read via a crafted request uri-path"
    },
    {
      "cve": "CVE-2021-39275",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "discovery_date": "2021-09-16T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2005119"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An out-of-bounds write in function ap_escape_quotes of httpd allows an unauthenticated remote attacker to crash the server or potentially execute code on the system with the privileges of the httpd user, by providing malicious input to the function.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "httpd: Out-of-bounds write in ap_escape_quotes() via malicious input",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "No httpd module in Red Hat Enterprise Linux and Red Hat Software Collections pass untrusted data to ap_escape_quotes function, thus the Impact of the flaw has been set to Moderate.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2021-39275"
        },
        {
          "category": "external",
          "summary": "RHBZ#2005119",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2005119"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2021-39275",
          "url": "https://www.cve.org/CVERecord?id=CVE-2021-39275"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-39275",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-39275"
        }
      ],
      "release_date": "2021-09-16T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2022-09-29T13:33:06+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.",
          "product_ids": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2022:6753"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "httpd: Out-of-bounds write in ap_escape_quotes() via malicious input"
    },
    {
      "cve": "CVE-2021-44224",
      "cwe": {
        "id": "CWE-918",
        "name": "Server-Side Request Forgery (SSRF)"
      },
      "discovery_date": "2021-12-20T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2034672"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "There\u0027s a null pointer dereference and server-side request forgery flaw in httpd\u0027s mod_proxy module, when it is configured to be used as a forward proxy. A crafted packet could be sent on the adjacent network to the forward proxy that could cause a crash, or potentially SSRF via misdirected Unix Domain Socket requests. In the worst case, this could cause a denial of service or compromise to confidentiality of data.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "httpd: possible NULL dereference or SSRF in forward proxy configurations",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This flaw does not affect httpd configurations that do not use forward proxy functionality (configurations where ProxyRequests is turned off).",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2021-44224"
        },
        {
          "category": "external",
          "summary": "RHBZ#2034672",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2034672"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2021-44224",
          "url": "https://www.cve.org/CVERecord?id=CVE-2021-44224"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-44224",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44224"
        },
        {
          "category": "external",
          "summary": "http://httpd.apache.org/security/vulnerabilities_24.html",
          "url": "http://httpd.apache.org/security/vulnerabilities_24.html"
        }
      ],
      "release_date": "2021-12-20T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2022-09-29T13:33:06+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.",
          "product_ids": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2022:6753"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "ADJACENT_NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "httpd: possible NULL dereference or SSRF in forward proxy configurations"
    },
    {
      "cve": "CVE-2022-22719",
      "cwe": {
        "id": "CWE-908",
        "name": "Use of Uninitialized Resource"
      },
      "discovery_date": "2022-03-15T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2064322"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the mod_lua module of httpd. A crafted request body can cause a read to a random memory area due to an uninitialized value in functions called by the parsebody function. The highest threat from this vulnerability is to system availability.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "httpd: mod_lua: Use of uninitialized value of in r:parsebody",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "httpd as shipped with Red Hat Enterprise Linux 6, is not affected by this flaw because it does not ship mod_lua.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-22719"
        },
        {
          "category": "external",
          "summary": "RHBZ#2064322",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064322"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-22719",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-22719"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-22719",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-22719"
        },
        {
          "category": "external",
          "summary": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2022-22719",
          "url": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2022-22719"
        }
      ],
      "release_date": "2022-03-14T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2022-09-29T13:33:06+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.",
          "product_ids": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2022:6753"
        },
        {
          "category": "workaround",
          "details": "Disabling mod_lua and restarting httpd will mitigate this flaw. See https://access.redhat.com/articles/10649 for more information.",
          "product_ids": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "httpd: mod_lua: Use of uninitialized value of in r:parsebody"
    },
    {
      "cve": "CVE-2022-22721",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "discovery_date": "2022-03-15T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2064320"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in httpd, where it incorrectly limits the value of the LimitXMLRequestBody option. This issue can lead to an integer overflow and later causes an out-of-bounds write.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "httpd: core: Possible buffer overflow with very large or unlimited LimitXMLRequestBody",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The default configuration of the LimitXMLRequestBody option on RHEL is 1MB and therefore is not vulnerable to this flaw. Also, this issue is known to only affect 32bit httpd builds.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-22721"
        },
        {
          "category": "external",
          "summary": "RHBZ#2064320",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064320"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-22721",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-22721"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-22721",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-22721"
        },
        {
          "category": "external",
          "summary": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2022-22721",
          "url": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2022-22721"
        }
      ],
      "release_date": "2022-03-14T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2022-09-29T13:33:06+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.",
          "product_ids": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2022:6753"
        },
        {
          "category": "workaround",
          "details": "Set the LimitXMLRequestBody option to a value smaller than 350MB. Setting it to 0 is not recommended as it will use a hard limit (depending on 32bit or 64bit systems) which may result in an overall system out-of-memory. The default configuration is not vulnerable to this flaw, see the statement above.",
          "product_ids": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "httpd: core: Possible buffer overflow with very large or unlimited LimitXMLRequestBody"
    },
    {
      "cve": "CVE-2022-23943",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "discovery_date": "2022-03-15T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2064319"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An out-of-bounds read/write vulnerability was found in the mod_sed module of httpd. This flaw allows an attacker to overwrite the memory of an httpd instance that is using mod_sed with data provided by the attacker.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "httpd: mod_sed: Read/write beyond bounds",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The `mod_sed` module is disabled by default on Red Hat Enterprise Linux 7 and 8. For this reason, the flaw has been rated as having a security impact of Moderate. The httpd package as shipped with Red Hat Enterprise Linux 6 is not affected by this flaw because the `mod_sed` module is available only in httpd 2.3 and later.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-23943"
        },
        {
          "category": "external",
          "summary": "RHBZ#2064319",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064319"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-23943",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-23943"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-23943",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-23943"
        },
        {
          "category": "external",
          "summary": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2022-23943",
          "url": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2022-23943"
        }
      ],
      "release_date": "2022-03-14T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2022-09-29T13:33:06+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.",
          "product_ids": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2022:6753"
        },
        {
          "category": "workaround",
          "details": "Disabling mod_sed and restarting httpd will mitigate this flaw. See https://access.redhat.com/articles/10649 for more information.",
          "product_ids": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "httpd: mod_sed: Read/write beyond bounds"
    },
    {
      "cve": "CVE-2022-26377",
      "cwe": {
        "id": "CWE-444",
        "name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
      },
      "discovery_date": "2022-06-08T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2094997"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An HTTP request smuggling vulnerability was found in the mod_proxy_ajp module of httpd. This flaw allows an attacker to smuggle requests to the AJP server, where it forwards requests.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "httpd: mod_proxy_ajp: Possible request smuggling",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The httpd mod_proxy_ajp module is enabled by default on Red Hat Enterprise Linux 8, 9, and in RHSCL. However, there are no directives forwarding requests using the AJP protocol.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-26377"
        },
        {
          "category": "external",
          "summary": "RHBZ#2094997",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2094997"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-26377",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-26377"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-26377",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-26377"
        },
        {
          "category": "external",
          "summary": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2022-26377",
          "url": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2022-26377"
        }
      ],
      "release_date": "2022-06-08T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2022-09-29T13:33:06+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.",
          "product_ids": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2022:6753"
        },
        {
          "category": "workaround",
          "details": "Disabling mod_proxy_ajp and restarting httpd will mitigate this flaw.",
          "product_ids": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "httpd: mod_proxy_ajp: Possible request smuggling"
    },
    {
      "cve": "CVE-2022-28614",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "discovery_date": "2022-06-08T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2095002"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An out-of-bounds read vulnerability was found in httpd. A very large input to the ap_rputs and ap_rwrite functions can lead to an integer overflow and result in an out-of-bounds read.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "httpd: Out-of-bounds read via ap_rwrite()",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-28614"
        },
        {
          "category": "external",
          "summary": "RHBZ#2095002",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2095002"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-28614",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-28614"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-28614",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-28614"
        },
        {
          "category": "external",
          "summary": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2022-28614",
          "url": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2022-28614"
        }
      ],
      "release_date": "2022-06-08T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2022-09-29T13:33:06+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.",
          "product_ids": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2022:6753"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "httpd: Out-of-bounds read via ap_rwrite()"
    },
    {
      "cve": "CVE-2022-28615",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2022-06-08T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2095006"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An out-of-bounds read vulnerability was found in httpd. A very large input to the ap_strcmp_match function can lead to an integer overflow and result in an out-of-bounds read.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "httpd: Out-of-bounds read in ap_strcmp_match()",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "According to upstream, no code distributed with the httpd server can exploit this flaw, however, third-party modules or Lua scripts that use the ap_strcmp_match function could potentially be affected.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-28615"
        },
        {
          "category": "external",
          "summary": "RHBZ#2095006",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2095006"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-28615",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-28615"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-28615",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-28615"
        },
        {
          "category": "external",
          "summary": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2022-28615",
          "url": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2022-28615"
        }
      ],
      "release_date": "2022-06-08T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2022-09-29T13:33:06+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.",
          "product_ids": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2022:6753"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "httpd: Out-of-bounds read in ap_strcmp_match()"
    },
    {
      "cve": "CVE-2022-29404",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2022-06-08T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2095012"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the mod_lua module of httpd. A malicious request to a Lua script that calls parsebody(0) can lead to a denial of service due to no default limit on the possible input size.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "httpd: mod_lua: DoS in r:parsebody",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "httpd as shipped with Red Hat Enterprise Linux 6, is not affected by this flaw because it does not ship mod_lua.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-29404"
        },
        {
          "category": "external",
          "summary": "RHBZ#2095012",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2095012"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-29404",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-29404"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-29404",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-29404"
        },
        {
          "category": "external",
          "summary": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2022-29404",
          "url": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2022-29404"
        }
      ],
      "release_date": "2022-06-08T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2022-09-29T13:33:06+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.",
          "product_ids": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2022:6753"
        },
        {
          "category": "workaround",
          "details": "Disabling mod_lua and restarting httpd will mitigate this flaw.",
          "product_ids": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "httpd: mod_lua: DoS in r:parsebody"
    },
    {
      "cve": "CVE-2022-30522",
      "cwe": {
        "id": "CWE-789",
        "name": "Memory Allocation with Excessive Size Value"
      },
      "discovery_date": "2022-06-08T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2095015"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the mod_sed module of httpd. A very large input to the mod_sed module can result in a denial of service due to excessively large memory allocations.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "httpd: mod_sed: DoS vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The mod_sed module is disabled by default on Red Hat Enterprise Linux 7 and 8. The httpd package as shipped with Red Hat Enterprise Linux 6 is not affected by this flaw because the mod_sed module is not available.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-30522"
        },
        {
          "category": "external",
          "summary": "RHBZ#2095015",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2095015"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-30522",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-30522"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-30522",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-30522"
        },
        {
          "category": "external",
          "summary": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2022-30522",
          "url": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2022-30522"
        }
      ],
      "release_date": "2022-06-08T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2022-09-29T13:33:06+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.",
          "product_ids": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2022:6753"
        },
        {
          "category": "workaround",
          "details": "Disabling mod_sed and restating httpd will mitigate this flaw.",
          "product_ids": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "httpd: mod_sed: DoS vulnerability"
    },
    {
      "cve": "CVE-2022-30556",
      "cwe": {
        "id": "CWE-200",
        "name": "Exposure of Sensitive Information to an Unauthorized Actor"
      },
      "discovery_date": "2022-06-08T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2095018"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the mod_lua module of httpd. The data returned by the wsread function may point past the end of the storage allocated for the buffer, resulting in information disclosure.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "httpd: mod_lua: Information disclosure with websockets",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "httpd as shipped with Red Hat Enterprise Linux 6, is not affected by this flaw because it does not ship mod_lua. Red Hat Enterprise Linux 7 is not affected by this flaw because the wsread function is not available.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-30556"
        },
        {
          "category": "external",
          "summary": "RHBZ#2095018",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2095018"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-30556",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-30556"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-30556",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-30556"
        },
        {
          "category": "external",
          "summary": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2022-30556",
          "url": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2022-30556"
        }
      ],
      "release_date": "2022-06-08T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2022-09-29T13:33:06+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.",
          "product_ids": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2022:6753"
        },
        {
          "category": "workaround",
          "details": "Disabling mod_lua and restarting httpd will mitigate this flaw.",
          "product_ids": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "httpd: mod_lua: Information disclosure with websockets"
    },
    {
      "cve": "CVE-2022-31813",
      "cwe": {
        "id": "CWE-348",
        "name": "Use of Less Trusted Source"
      },
      "discovery_date": "2022-06-08T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2095020"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the mod_proxy module of httpd. The server may remove the X-Forwarded-* headers from a request based on the client-side Connection header hop-by-hop mechanism.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "httpd: mod_proxy: X-Forwarded-For dropped by hop-by-hop mechanism",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This flaw has been rated as having a security impact of Moderate, and is not currently planned to be addressed in future updates of Red Hat Enterprise Linux 7. Red Hat Enterprise Linux 7 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
          "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
          "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-31813"
        },
        {
          "category": "external",
          "summary": "RHBZ#2095020",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2095020"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-31813",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-31813"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-31813",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-31813"
        },
        {
          "category": "external",
          "summary": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2022-31813",
          "url": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2022-31813"
        }
      ],
      "release_date": "2022-06-08T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2022-09-29T13:33:06+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted automatically.",
          "product_ids": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2022:6753"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Server-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Server-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.src",
            "7Workstation-RHSCL-3.8:httpd24-httpd-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-debuginfo-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-devel-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-httpd-manual-0:2.4.34-23.el7.5.noarch",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-httpd-tools-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ldap-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_proxy_html-1:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_session-0:2.4.34-23.el7.5.x86_64",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.ppc64le",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.s390x",
            "7Workstation-RHSCL-3.8:httpd24-mod_ssl-1:2.4.34-23.el7.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "httpd: mod_proxy: X-Forwarded-For dropped by hop-by-hop mechanism"
    }
  ]
}

SSA-685781

Vulnerability from csaf_siemens - Published: 2022-06-14 00:00 - Updated: 2022-10-11 00:00

Summary

SSA-685781: Multiple Vulnerabilities in Apache HTTP Server Affecting Siemens Products

Notes

Summary: Multiple vulnerabilities were identified in the Apache HTTP Server software. These include NULL Pointer Dereferencing, Out-of-bounds Write and Server-Side Request Forgery related vulnerabilities. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens recommends specific countermeasures for products where updates are not, or not yet available.

General Recommendations: As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals. Additional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity

Additional Resources: For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories

Terms of Use: Siemens Security Advisories are subject to the terms and conditions contained in Siemens' underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter "License Terms"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens' Global Website (https://www.siemens.com/terms_of_use, hereinafter "Terms of Use"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.

CVE-2021-34798

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C

CWE-476 - NULL Pointer Dereference

Affected products

Known affected 4 products

Product	Version	Remediation
RUGGEDCOM NMS Siemens / RUGGEDCOM NMS	All versions when using the device firmware upgrade mechanism	Mitigation No Fix Planned
SINEC NMS Siemens / SINEC NMS	< V1.0.3	Mitigation Vendor Fix fix
SINEMA Remote Connect Server Siemens / SINEMA Remote Connect Server	< V3.1	Mitigation Vendor Fix fix
SINEMA Server V14 Siemens / SINEMA Server V14	vers:all/*	Mitigation No Fix Planned

CVE-2021-39275

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C

CWE-787 - Out-of-bounds Write

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
SINEC NMS Siemens / SINEC NMS		< V1.0.3	Mitigation Vendor Fix fix
SINEMA Server V14 Siemens / SINEMA Server V14		vers:all/*	Mitigation No Fix Planned

CVE-2021-40438

9.0 (Critical)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C

CWE-918 - Server-Side Request Forgery (SSRF)

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
SINEC NMS Siemens / SINEC NMS		< V1.0.3	Mitigation Vendor Fix fix
SINEMA Server V14 Siemens / SINEMA Server V14		vers:all/*	Mitigation No Fix Planned

References

3 references

URL	Category
https://cert-portal.siemens.com/productcert/pdf/s…	self
https://cert-portal.siemens.com/productcert/txt/s…	self
https://cert-portal.siemens.com/productcert/csaf/…	self

JSON

To clipboard

{
  "document": {
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Disclosure is not limited.",
      "tlp": {
        "label": "WHITE"
      }
    },
    "notes": [
      {
        "category": "summary",
        "text": "Multiple vulnerabilities were identified in the Apache HTTP Server software. These include NULL Pointer Dereferencing, Out-of-bounds Write and Server-Side Request Forgery related vulnerabilities.\n\nSiemens has released updates for several affected products and recommends to update to the latest versions. Siemens recommends specific countermeasures for products where updates are not, or not yet available.",
        "title": "Summary"
      },
      {
        "category": "general",
        "text": "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens\u0027 operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: \nhttps://www.siemens.com/industrialsecurity",
        "title": "General Recommendations"
      },
      {
        "category": "general",
        "text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories",
        "title": "Additional Resources"
      },
      {
        "category": "legal_disclaimer",
        "text": "Siemens Security Advisories are subject to the terms and conditions contained in Siemens\u0027 underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens\u0027 Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "productcert@siemens.com",
      "name": "Siemens ProductCERT",
      "namespace": "https://www.siemens.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "SSA-685781: Multiple Vulnerabilities in Apache HTTP Server Affecting Siemens Products - PDF Version",
        "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-685781.pdf"
      },
      {
        "category": "self",
        "summary": "SSA-685781: Multiple Vulnerabilities in Apache HTTP Server Affecting Siemens Products - TXT Version",
        "url": "https://cert-portal.siemens.com/productcert/txt/ssa-685781.txt"
      },
      {
        "category": "self",
        "summary": "SSA-685781: Multiple Vulnerabilities in Apache HTTP Server Affecting Siemens Products - CSAF Version",
        "url": "https://cert-portal.siemens.com/productcert/csaf/ssa-685781.json"
      }
    ],
    "title": "SSA-685781: Multiple Vulnerabilities in Apache HTTP Server Affecting Siemens Products",
    "tracking": {
      "current_release_date": "2022-10-11T00:00:00Z",
      "generator": {
        "engine": {
          "name": "Siemens ProductCERT CSAF Generator",
          "version": "1"
        }
      },
      "id": "SSA-685781",
      "initial_release_date": "2022-06-14T00:00:00Z",
      "revision_history": [
        {
          "date": "2022-06-14T00:00:00Z",
          "legacy_version": "1.0",
          "number": "1",
          "summary": "Publication Date"
        },
        {
          "date": "2022-10-11T00:00:00Z",
          "legacy_version": "1.1",
          "number": "2",
          "summary": "Added fix for SINEC NMS"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "All versions when using the device firmware upgrade mechanism",
                "product": {
                  "name": "RUGGEDCOM NMS",
                  "product_id": "1"
                }
              }
            ],
            "category": "product_name",
            "name": "RUGGEDCOM NMS"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c V1.0.3",
                "product": {
                  "name": "SINEC NMS",
                  "product_id": "2"
                }
              }
            ],
            "category": "product_name",
            "name": "SINEC NMS"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c V3.1",
                "product": {
                  "name": "SINEMA Remote Connect Server",
                  "product_id": "3"
                }
              }
            ],
            "category": "product_name",
            "name": "SINEMA Remote Connect Server"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SINEMA Server V14",
                  "product_id": "4"
                }
              }
            ],
            "category": "product_name",
            "name": "SINEMA Server V14"
          }
        ],
        "category": "vendor",
        "name": "Siemens"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-34798",
      "cwe": {
        "id": "CWE-476",
        "name": "NULL Pointer Dereference"
      },
      "notes": [
        {
          "category": "summary",
          "text": "Malformed requests may cause the server to dereference a NULL pointer. This issue affects Apache HTTP Server 2.4.48 and earlier.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "1",
          "2",
          "3",
          "4"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Restrict access to the affected systems, especially to port 443/tcp, to trusted IP addresses only",
          "product_ids": [
            "1",
            "2",
            "3",
            "4"
          ]
        },
        {
          "category": "no_fix_planned",
          "details": "Currently no fix is planned",
          "product_ids": [
            "1",
            "4"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to V1.0.3 or later version",
          "product_ids": [
            "2"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/109813788/"
        },
        {
          "category": "vendor_fix",
          "details": "Update to V3.1 or later version",
          "product_ids": [
            "3"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/109811169/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
            "version": "3.1"
          },
          "products": [
            "1",
            "2",
            "3",
            "4"
          ]
        }
      ],
      "title": "CVE-2021-34798"
    },
    {
      "cve": "CVE-2021-39275",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "summary",
          "text": "ap_escape_quotes() may write beyond the end of a buffer when given malicious input. No included modules pass untrusted data to these functions, but third-party / external modules may. This issue affects Apache HTTP Server 2.4.48 and earlier.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "2",
          "4"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Restrict access to the affected systems, especially to port 443/tcp, to trusted IP addresses only",
          "product_ids": [
            "2",
            "4"
          ]
        },
        {
          "category": "no_fix_planned",
          "details": "Currently no fix is planned",
          "product_ids": [
            "4"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to V1.0.3 or later version",
          "product_ids": [
            "2"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/109813788/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
            "version": "3.1"
          },
          "products": [
            "2",
            "4"
          ]
        }
      ],
      "title": "CVE-2021-39275"
    },
    {
      "cve": "CVE-2021-40438",
      "cwe": {
        "id": "CWE-918",
        "name": "Server-Side Request Forgery (SSRF)"
      },
      "notes": [
        {
          "category": "summary",
          "text": "A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue affects Apache HTTP Server 2.4.48 and earlier.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "2",
          "4"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Restrict access to the affected systems, especially to port 443/tcp, to trusted IP addresses only",
          "product_ids": [
            "2",
            "4"
          ]
        },
        {
          "category": "no_fix_planned",
          "details": "Currently no fix is planned",
          "product_ids": [
            "4"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Update to V1.0.3 or later version",
          "product_ids": [
            "2"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/109813788/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.0,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C",
            "version": "3.1"
          },
          "products": [
            "2",
            "4"
          ]
        }
      ],
      "title": "CVE-2021-40438"
    }
  ]
}

SUSE-SU-2021:3299-1

Vulnerability from csaf_suse - Published: 2021-10-06 14:56 - Updated: 2021-10-06 14:56

Summary

Security update for apache2

Severity

Important

Notes

Title of the patch: Security update for apache2

Description of the patch: This update for apache2 fixes the following issues: - CVE-2021-40438: Fixed a SRF via a crafted request uri-path. (bsc#1190703) - CVE-2021-39275: Fixed an out-of-bounds write in ap_escape_quotes() via malicious input. (bsc#1190666) - CVE-2021-34798: Fixed a NULL pointer dereference via malformed requests. (bsc#1190669)

Patchnames: HPE-Helion-OpenStack-8-2021-3299,SUSE-2021-3299,SUSE-OpenStack-Cloud-8-2021-3299,SUSE-OpenStack-Cloud-9-2021-3299,SUSE-OpenStack-Cloud-Crowbar-8-2021-3299,SUSE-OpenStack-Cloud-Crowbar-9-2021-3299,SUSE-SLE-SAP-12-SP3-2021-3299,SUSE-SLE-SAP-12-SP4-2021-3299,SUSE-SLE-SDK-12-SP5-2021-3299,SUSE-SLE-SERVER-12-SP2-BCL-2021-3299,SUSE-SLE-SERVER-12-SP3-2021-3299,SUSE-SLE-SERVER-12-SP3-BCL-2021-3299,SUSE-SLE-SERVER-12-SP4-LTSS-2021-3299,SUSE-SLE-SERVER-12-SP5-2021-3299

CVE-2021-34798

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 152 products

Product	Version	Remediation
Unresolved product id: HPE Helion OpenStack 8:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: HPE Helion OpenStack 8:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: HPE Helion OpenStack 8:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: HPE Helion OpenStack 8:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: HPE Helion OpenStack 8:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: HPE Helion OpenStack 8:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 8:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 8:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 8:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 8:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 8:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 8:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 9:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 9:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 9:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 9:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 9:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 9:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 8:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 8:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 8:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 8:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 8:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 8:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 9:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 9:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 9:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 9:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 9:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 9:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-39275

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 152 products

Product	Version	Remediation
Unresolved product id: HPE Helion OpenStack 8:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: HPE Helion OpenStack 8:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: HPE Helion OpenStack 8:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: HPE Helion OpenStack 8:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: HPE Helion OpenStack 8:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: HPE Helion OpenStack 8:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 8:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 8:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 8:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 8:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 8:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 8:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 9:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 9:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 9:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 9:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 9:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 9:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 8:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 8:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 8:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 8:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 8:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 8:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 9:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 9:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 9:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 9:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 9:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 9:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-40438

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 152 products

Product	Version	Remediation
Unresolved product id: HPE Helion OpenStack 8:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: HPE Helion OpenStack 8:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: HPE Helion OpenStack 8:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: HPE Helion OpenStack 8:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: HPE Helion OpenStack 8:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: HPE Helion OpenStack 8:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2-BCL:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-BCL:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 8:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 8:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 8:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 8:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 8:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 8:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 9:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 9:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 9:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 9:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 9:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud 9:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 8:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 8:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 8:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 8:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 8:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 8:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 9:apache2-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 9:apache2-doc-2.4.23-29.80.1.noarch	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 9:apache2-example-pages-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 9:apache2-prefork-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 9:apache2-utils-2.4.23-29.80.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE OpenStack Cloud Crowbar 9:apache2-worker-2.4.23-29.80.1.x86_64	—	Vendor Fix

Threats

Impact important

References

17 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1190666	self
https://bugzilla.suse.com/1190669	self
https://bugzilla.suse.com/1190703	self
https://www.suse.com/security/cve/CVE-2021-34798/	self
https://www.suse.com/security/cve/CVE-2021-39275/	self
https://www.suse.com/security/cve/CVE-2021-40438/	self
https://www.suse.com/security/cve/CVE-2021-34798	external
https://bugzilla.suse.com/1190669	external
https://bugzilla.suse.com/1191297	external
https://www.suse.com/security/cve/CVE-2021-39275	external
https://bugzilla.suse.com/1190666	external
https://www.suse.com/security/cve/CVE-2021-40438	external
https://bugzilla.suse.com/1190703	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for apache2",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for apache2 fixes the following issues:\n\n- CVE-2021-40438: Fixed a SRF via a crafted request uri-path. (bsc#1190703)\n- CVE-2021-39275: Fixed an out-of-bounds write in ap_escape_quotes() via malicious input. (bsc#1190666)\n- CVE-2021-34798: Fixed a NULL pointer dereference via malformed requests. (bsc#1190669)\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "HPE-Helion-OpenStack-8-2021-3299,SUSE-2021-3299,SUSE-OpenStack-Cloud-8-2021-3299,SUSE-OpenStack-Cloud-9-2021-3299,SUSE-OpenStack-Cloud-Crowbar-8-2021-3299,SUSE-OpenStack-Cloud-Crowbar-9-2021-3299,SUSE-SLE-SAP-12-SP3-2021-3299,SUSE-SLE-SAP-12-SP4-2021-3299,SUSE-SLE-SDK-12-SP5-2021-3299,SUSE-SLE-SERVER-12-SP2-BCL-2021-3299,SUSE-SLE-SERVER-12-SP3-2021-3299,SUSE-SLE-SERVER-12-SP3-BCL-2021-3299,SUSE-SLE-SERVER-12-SP4-LTSS-2021-3299,SUSE-SLE-SERVER-12-SP5-2021-3299",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_3299-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2021:3299-1",
        "url": "https://www.suse.com/support/update/announcement/2021/suse-su-20213299-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2021:3299-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2021-October/009537.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1190666",
        "url": "https://bugzilla.suse.com/1190666"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1190669",
        "url": "https://bugzilla.suse.com/1190669"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1190703",
        "url": "https://bugzilla.suse.com/1190703"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-34798 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-34798/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-39275 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-39275/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-40438 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-40438/"
      }
    ],
    "title": "Security update for apache2",
    "tracking": {
      "current_release_date": "2021-10-06T14:56:54Z",
      "generator": {
        "date": "2021-10-06T14:56:54Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2021:3299-1",
      "initial_release_date": "2021-10-06T14:56:54Z",
      "revision_history": [
        {
          "date": "2021-10-06T14:56:54Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "apache2-2.4.23-29.80.1.aarch64",
                "product": {
                  "name": "apache2-2.4.23-29.80.1.aarch64",
                  "product_id": "apache2-2.4.23-29.80.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-devel-2.4.23-29.80.1.aarch64",
                "product": {
                  "name": "apache2-devel-2.4.23-29.80.1.aarch64",
                  "product_id": "apache2-devel-2.4.23-29.80.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-event-2.4.23-29.80.1.aarch64",
                "product": {
                  "name": "apache2-event-2.4.23-29.80.1.aarch64",
                  "product_id": "apache2-event-2.4.23-29.80.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-example-pages-2.4.23-29.80.1.aarch64",
                "product": {
                  "name": "apache2-example-pages-2.4.23-29.80.1.aarch64",
                  "product_id": "apache2-example-pages-2.4.23-29.80.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-prefork-2.4.23-29.80.1.aarch64",
                "product": {
                  "name": "apache2-prefork-2.4.23-29.80.1.aarch64",
                  "product_id": "apache2-prefork-2.4.23-29.80.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-utils-2.4.23-29.80.1.aarch64",
                "product": {
                  "name": "apache2-utils-2.4.23-29.80.1.aarch64",
                  "product_id": "apache2-utils-2.4.23-29.80.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-worker-2.4.23-29.80.1.aarch64",
                "product": {
                  "name": "apache2-worker-2.4.23-29.80.1.aarch64",
                  "product_id": "apache2-worker-2.4.23-29.80.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "apache2-2.4.23-29.80.1.i586",
                "product": {
                  "name": "apache2-2.4.23-29.80.1.i586",
                  "product_id": "apache2-2.4.23-29.80.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-devel-2.4.23-29.80.1.i586",
                "product": {
                  "name": "apache2-devel-2.4.23-29.80.1.i586",
                  "product_id": "apache2-devel-2.4.23-29.80.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-event-2.4.23-29.80.1.i586",
                "product": {
                  "name": "apache2-event-2.4.23-29.80.1.i586",
                  "product_id": "apache2-event-2.4.23-29.80.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-example-pages-2.4.23-29.80.1.i586",
                "product": {
                  "name": "apache2-example-pages-2.4.23-29.80.1.i586",
                  "product_id": "apache2-example-pages-2.4.23-29.80.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-prefork-2.4.23-29.80.1.i586",
                "product": {
                  "name": "apache2-prefork-2.4.23-29.80.1.i586",
                  "product_id": "apache2-prefork-2.4.23-29.80.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-utils-2.4.23-29.80.1.i586",
                "product": {
                  "name": "apache2-utils-2.4.23-29.80.1.i586",
                  "product_id": "apache2-utils-2.4.23-29.80.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-worker-2.4.23-29.80.1.i586",
                "product": {
                  "name": "apache2-worker-2.4.23-29.80.1.i586",
                  "product_id": "apache2-worker-2.4.23-29.80.1.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "apache2-doc-2.4.23-29.80.1.noarch",
                "product": {
                  "name": "apache2-doc-2.4.23-29.80.1.noarch",
                  "product_id": "apache2-doc-2.4.23-29.80.1.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "apache2-2.4.23-29.80.1.ppc64le",
                "product": {
                  "name": "apache2-2.4.23-29.80.1.ppc64le",
                  "product_id": "apache2-2.4.23-29.80.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-devel-2.4.23-29.80.1.ppc64le",
                "product": {
                  "name": "apache2-devel-2.4.23-29.80.1.ppc64le",
                  "product_id": "apache2-devel-2.4.23-29.80.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-event-2.4.23-29.80.1.ppc64le",
                "product": {
                  "name": "apache2-event-2.4.23-29.80.1.ppc64le",
                  "product_id": "apache2-event-2.4.23-29.80.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-example-pages-2.4.23-29.80.1.ppc64le",
                "product": {
                  "name": "apache2-example-pages-2.4.23-29.80.1.ppc64le",
                  "product_id": "apache2-example-pages-2.4.23-29.80.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-prefork-2.4.23-29.80.1.ppc64le",
                "product": {
                  "name": "apache2-prefork-2.4.23-29.80.1.ppc64le",
                  "product_id": "apache2-prefork-2.4.23-29.80.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-utils-2.4.23-29.80.1.ppc64le",
                "product": {
                  "name": "apache2-utils-2.4.23-29.80.1.ppc64le",
                  "product_id": "apache2-utils-2.4.23-29.80.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-worker-2.4.23-29.80.1.ppc64le",
                "product": {
                  "name": "apache2-worker-2.4.23-29.80.1.ppc64le",
                  "product_id": "apache2-worker-2.4.23-29.80.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "apache2-2.4.23-29.80.1.s390",
                "product": {
                  "name": "apache2-2.4.23-29.80.1.s390",
                  "product_id": "apache2-2.4.23-29.80.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-devel-2.4.23-29.80.1.s390",
                "product": {
                  "name": "apache2-devel-2.4.23-29.80.1.s390",
                  "product_id": "apache2-devel-2.4.23-29.80.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-event-2.4.23-29.80.1.s390",
                "product": {
                  "name": "apache2-event-2.4.23-29.80.1.s390",
                  "product_id": "apache2-event-2.4.23-29.80.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-example-pages-2.4.23-29.80.1.s390",
                "product": {
                  "name": "apache2-example-pages-2.4.23-29.80.1.s390",
                  "product_id": "apache2-example-pages-2.4.23-29.80.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-prefork-2.4.23-29.80.1.s390",
                "product": {
                  "name": "apache2-prefork-2.4.23-29.80.1.s390",
                  "product_id": "apache2-prefork-2.4.23-29.80.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-utils-2.4.23-29.80.1.s390",
                "product": {
                  "name": "apache2-utils-2.4.23-29.80.1.s390",
                  "product_id": "apache2-utils-2.4.23-29.80.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-worker-2.4.23-29.80.1.s390",
                "product": {
                  "name": "apache2-worker-2.4.23-29.80.1.s390",
                  "product_id": "apache2-worker-2.4.23-29.80.1.s390"
                }
              }
            ],
            "category": "architecture",
            "name": "s390"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "apache2-2.4.23-29.80.1.s390x",
                "product": {
                  "name": "apache2-2.4.23-29.80.1.s390x",
                  "product_id": "apache2-2.4.23-29.80.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-devel-2.4.23-29.80.1.s390x",
                "product": {
                  "name": "apache2-devel-2.4.23-29.80.1.s390x",
                  "product_id": "apache2-devel-2.4.23-29.80.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-event-2.4.23-29.80.1.s390x",
                "product": {
                  "name": "apache2-event-2.4.23-29.80.1.s390x",
                  "product_id": "apache2-event-2.4.23-29.80.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-example-pages-2.4.23-29.80.1.s390x",
                "product": {
                  "name": "apache2-example-pages-2.4.23-29.80.1.s390x",
                  "product_id": "apache2-example-pages-2.4.23-29.80.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-prefork-2.4.23-29.80.1.s390x",
                "product": {
                  "name": "apache2-prefork-2.4.23-29.80.1.s390x",
                  "product_id": "apache2-prefork-2.4.23-29.80.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-utils-2.4.23-29.80.1.s390x",
                "product": {
                  "name": "apache2-utils-2.4.23-29.80.1.s390x",
                  "product_id": "apache2-utils-2.4.23-29.80.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-worker-2.4.23-29.80.1.s390x",
                "product": {
                  "name": "apache2-worker-2.4.23-29.80.1.s390x",
                  "product_id": "apache2-worker-2.4.23-29.80.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "apache2-2.4.23-29.80.1.x86_64",
                "product": {
                  "name": "apache2-2.4.23-29.80.1.x86_64",
                  "product_id": "apache2-2.4.23-29.80.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-example-pages-2.4.23-29.80.1.x86_64",
                "product": {
                  "name": "apache2-example-pages-2.4.23-29.80.1.x86_64",
                  "product_id": "apache2-example-pages-2.4.23-29.80.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-prefork-2.4.23-29.80.1.x86_64",
                "product": {
                  "name": "apache2-prefork-2.4.23-29.80.1.x86_64",
                  "product_id": "apache2-prefork-2.4.23-29.80.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-utils-2.4.23-29.80.1.x86_64",
                "product": {
                  "name": "apache2-utils-2.4.23-29.80.1.x86_64",
                  "product_id": "apache2-utils-2.4.23-29.80.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-worker-2.4.23-29.80.1.x86_64",
                "product": {
                  "name": "apache2-worker-2.4.23-29.80.1.x86_64",
                  "product_id": "apache2-worker-2.4.23-29.80.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-devel-2.4.23-29.80.1.x86_64",
                "product": {
                  "name": "apache2-devel-2.4.23-29.80.1.x86_64",
                  "product_id": "apache2-devel-2.4.23-29.80.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-event-2.4.23-29.80.1.x86_64",
                "product": {
                  "name": "apache2-event-2.4.23-29.80.1.x86_64",
                  "product_id": "apache2-event-2.4.23-29.80.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "HPE Helion OpenStack 8",
                "product": {
                  "name": "HPE Helion OpenStack 8",
                  "product_id": "HPE Helion OpenStack 8",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:hpe-helion-openstack:8"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE OpenStack Cloud 8",
                "product": {
                  "name": "SUSE OpenStack Cloud 8",
                  "product_id": "SUSE OpenStack Cloud 8",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:suse-openstack-cloud:8"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE OpenStack Cloud 9",
                "product": {
                  "name": "SUSE OpenStack Cloud 9",
                  "product_id": "SUSE OpenStack Cloud 9",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:suse-openstack-cloud:9"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE OpenStack Cloud Crowbar 8",
                "product": {
                  "name": "SUSE OpenStack Cloud Crowbar 8",
                  "product_id": "SUSE OpenStack Cloud Crowbar 8",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:suse-openstack-cloud-crowbar:8"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE OpenStack Cloud Crowbar 9",
                "product": {
                  "name": "SUSE OpenStack Cloud Crowbar 9",
                  "product_id": "SUSE OpenStack Cloud Crowbar 9",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:suse-openstack-cloud-crowbar:9"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:12:sp3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:12:sp4"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Software Development Kit 12 SP5",
                "product": {
                  "name": "SUSE Linux Enterprise Software Development Kit 12 SP5",
                  "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-sdk:12:sp5"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 12 SP2-BCL",
                "product": {
                  "name": "SUSE Linux Enterprise Server 12 SP2-BCL",
                  "product_id": "SUSE Linux Enterprise Server 12 SP2-BCL",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-bcl:12:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 12 SP3-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 12 SP3-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-ltss:12:sp3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 12 SP3-BCL",
                "product": {
                  "name": "SUSE Linux Enterprise Server 12 SP3-BCL",
                  "product_id": "SUSE Linux Enterprise Server 12 SP3-BCL",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-bcl:12:sp3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 12 SP4-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 12 SP4-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-ltss:12:sp4"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 12 SP5",
                "product": {
                  "name": "SUSE Linux Enterprise Server 12 SP5",
                  "product_id": "SUSE Linux Enterprise Server 12 SP5",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles:12:sp5"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:12:sp5"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.23-29.80.1.x86_64 as component of HPE Helion OpenStack 8",
          "product_id": "HPE Helion OpenStack 8:apache2-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "HPE Helion OpenStack 8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-doc-2.4.23-29.80.1.noarch as component of HPE Helion OpenStack 8",
          "product_id": "HPE Helion OpenStack 8:apache2-doc-2.4.23-29.80.1.noarch"
        },
        "product_reference": "apache2-doc-2.4.23-29.80.1.noarch",
        "relates_to_product_reference": "HPE Helion OpenStack 8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-example-pages-2.4.23-29.80.1.x86_64 as component of HPE Helion OpenStack 8",
          "product_id": "HPE Helion OpenStack 8:apache2-example-pages-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-example-pages-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "HPE Helion OpenStack 8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.23-29.80.1.x86_64 as component of HPE Helion OpenStack 8",
          "product_id": "HPE Helion OpenStack 8:apache2-prefork-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-prefork-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "HPE Helion OpenStack 8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.23-29.80.1.x86_64 as component of HPE Helion OpenStack 8",
          "product_id": "HPE Helion OpenStack 8:apache2-utils-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-utils-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "HPE Helion OpenStack 8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.23-29.80.1.x86_64 as component of HPE Helion OpenStack 8",
          "product_id": "HPE Helion OpenStack 8:apache2-worker-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-worker-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "HPE Helion OpenStack 8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.23-29.80.1.x86_64 as component of SUSE OpenStack Cloud 8",
          "product_id": "SUSE OpenStack Cloud 8:apache2-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud 8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-doc-2.4.23-29.80.1.noarch as component of SUSE OpenStack Cloud 8",
          "product_id": "SUSE OpenStack Cloud 8:apache2-doc-2.4.23-29.80.1.noarch"
        },
        "product_reference": "apache2-doc-2.4.23-29.80.1.noarch",
        "relates_to_product_reference": "SUSE OpenStack Cloud 8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-example-pages-2.4.23-29.80.1.x86_64 as component of SUSE OpenStack Cloud 8",
          "product_id": "SUSE OpenStack Cloud 8:apache2-example-pages-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-example-pages-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud 8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.23-29.80.1.x86_64 as component of SUSE OpenStack Cloud 8",
          "product_id": "SUSE OpenStack Cloud 8:apache2-prefork-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-prefork-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud 8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.23-29.80.1.x86_64 as component of SUSE OpenStack Cloud 8",
          "product_id": "SUSE OpenStack Cloud 8:apache2-utils-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-utils-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud 8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.23-29.80.1.x86_64 as component of SUSE OpenStack Cloud 8",
          "product_id": "SUSE OpenStack Cloud 8:apache2-worker-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-worker-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud 8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.23-29.80.1.x86_64 as component of SUSE OpenStack Cloud 9",
          "product_id": "SUSE OpenStack Cloud 9:apache2-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud 9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-doc-2.4.23-29.80.1.noarch as component of SUSE OpenStack Cloud 9",
          "product_id": "SUSE OpenStack Cloud 9:apache2-doc-2.4.23-29.80.1.noarch"
        },
        "product_reference": "apache2-doc-2.4.23-29.80.1.noarch",
        "relates_to_product_reference": "SUSE OpenStack Cloud 9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-example-pages-2.4.23-29.80.1.x86_64 as component of SUSE OpenStack Cloud 9",
          "product_id": "SUSE OpenStack Cloud 9:apache2-example-pages-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-example-pages-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud 9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.23-29.80.1.x86_64 as component of SUSE OpenStack Cloud 9",
          "product_id": "SUSE OpenStack Cloud 9:apache2-prefork-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-prefork-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud 9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.23-29.80.1.x86_64 as component of SUSE OpenStack Cloud 9",
          "product_id": "SUSE OpenStack Cloud 9:apache2-utils-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-utils-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud 9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.23-29.80.1.x86_64 as component of SUSE OpenStack Cloud 9",
          "product_id": "SUSE OpenStack Cloud 9:apache2-worker-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-worker-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud 9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.23-29.80.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
          "product_id": "SUSE OpenStack Cloud Crowbar 8:apache2-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-doc-2.4.23-29.80.1.noarch as component of SUSE OpenStack Cloud Crowbar 8",
          "product_id": "SUSE OpenStack Cloud Crowbar 8:apache2-doc-2.4.23-29.80.1.noarch"
        },
        "product_reference": "apache2-doc-2.4.23-29.80.1.noarch",
        "relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-example-pages-2.4.23-29.80.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
          "product_id": "SUSE OpenStack Cloud Crowbar 8:apache2-example-pages-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-example-pages-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.23-29.80.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
          "product_id": "SUSE OpenStack Cloud Crowbar 8:apache2-prefork-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-prefork-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.23-29.80.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
          "product_id": "SUSE OpenStack Cloud Crowbar 8:apache2-utils-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-utils-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.23-29.80.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
          "product_id": "SUSE OpenStack Cloud Crowbar 8:apache2-worker-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-worker-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.23-29.80.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
          "product_id": "SUSE OpenStack Cloud Crowbar 9:apache2-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-doc-2.4.23-29.80.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
          "product_id": "SUSE OpenStack Cloud Crowbar 9:apache2-doc-2.4.23-29.80.1.noarch"
        },
        "product_reference": "apache2-doc-2.4.23-29.80.1.noarch",
        "relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-example-pages-2.4.23-29.80.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
          "product_id": "SUSE OpenStack Cloud Crowbar 9:apache2-example-pages-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-example-pages-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.23-29.80.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
          "product_id": "SUSE OpenStack Cloud Crowbar 9:apache2-prefork-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-prefork-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.23-29.80.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
          "product_id": "SUSE OpenStack Cloud Crowbar 9:apache2-utils-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-utils-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.23-29.80.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
          "product_id": "SUSE OpenStack Cloud Crowbar 9:apache2-worker-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-worker-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-doc-2.4.23-29.80.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-doc-2.4.23-29.80.1.noarch"
        },
        "product_reference": "apache2-doc-2.4.23-29.80.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-example-pages-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-example-pages-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-example-pages-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-example-pages-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-prefork-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-prefork-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-utils-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-utils-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-worker-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-worker-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-doc-2.4.23-29.80.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-doc-2.4.23-29.80.1.noarch"
        },
        "product_reference": "apache2-doc-2.4.23-29.80.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-example-pages-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-example-pages-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-example-pages-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-example-pages-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-prefork-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-prefork-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-utils-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-utils-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-worker-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-worker-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.23-29.80.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.aarch64"
        },
        "product_reference": "apache2-devel-2.4.23-29.80.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-devel-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.23-29.80.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.s390x"
        },
        "product_reference": "apache2-devel-2.4.23-29.80.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-devel-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
          "product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-doc-2.4.23-29.80.1.noarch as component of SUSE Linux Enterprise Server 12 SP2-BCL",
          "product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-doc-2.4.23-29.80.1.noarch"
        },
        "product_reference": "apache2-doc-2.4.23-29.80.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-example-pages-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
          "product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-example-pages-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-example-pages-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
          "product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-prefork-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-prefork-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
          "product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-utils-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-utils-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
          "product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-worker-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-worker-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.23-29.80.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.aarch64"
        },
        "product_reference": "apache2-2.4.23-29.80.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.23-29.80.1.s390x as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.s390x"
        },
        "product_reference": "apache2-2.4.23-29.80.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-doc-2.4.23-29.80.1.noarch as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-doc-2.4.23-29.80.1.noarch"
        },
        "product_reference": "apache2-doc-2.4.23-29.80.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-example-pages-2.4.23-29.80.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.aarch64"
        },
        "product_reference": "apache2-example-pages-2.4.23-29.80.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-example-pages-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-example-pages-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-example-pages-2.4.23-29.80.1.s390x as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.s390x"
        },
        "product_reference": "apache2-example-pages-2.4.23-29.80.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-example-pages-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-example-pages-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.23-29.80.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.aarch64"
        },
        "product_reference": "apache2-prefork-2.4.23-29.80.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-prefork-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.23-29.80.1.s390x as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.s390x"
        },
        "product_reference": "apache2-prefork-2.4.23-29.80.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-prefork-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.23-29.80.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.aarch64"
        },
        "product_reference": "apache2-utils-2.4.23-29.80.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-utils-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.23-29.80.1.s390x as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.s390x"
        },
        "product_reference": "apache2-utils-2.4.23-29.80.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-utils-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.23-29.80.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.aarch64"
        },
        "product_reference": "apache2-worker-2.4.23-29.80.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-worker-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.23-29.80.1.s390x as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.s390x"
        },
        "product_reference": "apache2-worker-2.4.23-29.80.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-worker-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
          "product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-doc-2.4.23-29.80.1.noarch as component of SUSE Linux Enterprise Server 12 SP3-BCL",
          "product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-doc-2.4.23-29.80.1.noarch"
        },
        "product_reference": "apache2-doc-2.4.23-29.80.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-example-pages-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
          "product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-example-pages-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-example-pages-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
          "product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-prefork-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-prefork-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
          "product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-utils-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-utils-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
          "product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-worker-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-worker-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.23-29.80.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.aarch64"
        },
        "product_reference": "apache2-2.4.23-29.80.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.23-29.80.1.s390x as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.s390x"
        },
        "product_reference": "apache2-2.4.23-29.80.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-doc-2.4.23-29.80.1.noarch as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-doc-2.4.23-29.80.1.noarch"
        },
        "product_reference": "apache2-doc-2.4.23-29.80.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-example-pages-2.4.23-29.80.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.aarch64"
        },
        "product_reference": "apache2-example-pages-2.4.23-29.80.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-example-pages-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-example-pages-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-example-pages-2.4.23-29.80.1.s390x as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.s390x"
        },
        "product_reference": "apache2-example-pages-2.4.23-29.80.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-example-pages-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-example-pages-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.23-29.80.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.aarch64"
        },
        "product_reference": "apache2-prefork-2.4.23-29.80.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-prefork-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.23-29.80.1.s390x as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.s390x"
        },
        "product_reference": "apache2-prefork-2.4.23-29.80.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-prefork-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.23-29.80.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.aarch64"
        },
        "product_reference": "apache2-utils-2.4.23-29.80.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-utils-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.23-29.80.1.s390x as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.s390x"
        },
        "product_reference": "apache2-utils-2.4.23-29.80.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-utils-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.23-29.80.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.aarch64"
        },
        "product_reference": "apache2-worker-2.4.23-29.80.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-worker-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.23-29.80.1.s390x as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.s390x"
        },
        "product_reference": "apache2-worker-2.4.23-29.80.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-worker-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.23-29.80.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
          "product_id": "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.aarch64"
        },
        "product_reference": "apache2-2.4.23-29.80.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
          "product_id": "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.23-29.80.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
          "product_id": "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.s390x"
        },
        "product_reference": "apache2-2.4.23-29.80.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
          "product_id": "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-doc-2.4.23-29.80.1.noarch as component of SUSE Linux Enterprise Server 12 SP5",
          "product_id": "SUSE Linux Enterprise Server 12 SP5:apache2-doc-2.4.23-29.80.1.noarch"
        },
        "product_reference": "apache2-doc-2.4.23-29.80.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-example-pages-2.4.23-29.80.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
          "product_id": "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.aarch64"
        },
        "product_reference": "apache2-example-pages-2.4.23-29.80.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-example-pages-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
          "product_id": "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-example-pages-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-example-pages-2.4.23-29.80.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
          "product_id": "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.s390x"
        },
        "product_reference": "apache2-example-pages-2.4.23-29.80.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-example-pages-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
          "product_id": "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-example-pages-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.23-29.80.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
          "product_id": "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.aarch64"
        },
        "product_reference": "apache2-prefork-2.4.23-29.80.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
          "product_id": "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-prefork-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.23-29.80.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
          "product_id": "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.s390x"
        },
        "product_reference": "apache2-prefork-2.4.23-29.80.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
          "product_id": "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-prefork-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.23-29.80.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
          "product_id": "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.aarch64"
        },
        "product_reference": "apache2-utils-2.4.23-29.80.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
          "product_id": "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-utils-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.23-29.80.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
          "product_id": "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.s390x"
        },
        "product_reference": "apache2-utils-2.4.23-29.80.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
          "product_id": "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-utils-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.23-29.80.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
          "product_id": "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.aarch64"
        },
        "product_reference": "apache2-worker-2.4.23-29.80.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
          "product_id": "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-worker-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.23-29.80.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
          "product_id": "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.s390x"
        },
        "product_reference": "apache2-worker-2.4.23-29.80.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
          "product_id": "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-worker-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.23-29.80.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.aarch64"
        },
        "product_reference": "apache2-2.4.23-29.80.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.23-29.80.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.s390x"
        },
        "product_reference": "apache2-2.4.23-29.80.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-doc-2.4.23-29.80.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-doc-2.4.23-29.80.1.noarch"
        },
        "product_reference": "apache2-doc-2.4.23-29.80.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-example-pages-2.4.23-29.80.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.aarch64"
        },
        "product_reference": "apache2-example-pages-2.4.23-29.80.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-example-pages-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-example-pages-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-example-pages-2.4.23-29.80.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.s390x"
        },
        "product_reference": "apache2-example-pages-2.4.23-29.80.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-example-pages-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-example-pages-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.23-29.80.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.aarch64"
        },
        "product_reference": "apache2-prefork-2.4.23-29.80.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-prefork-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.23-29.80.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.s390x"
        },
        "product_reference": "apache2-prefork-2.4.23-29.80.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-prefork-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.23-29.80.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.aarch64"
        },
        "product_reference": "apache2-utils-2.4.23-29.80.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-utils-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.23-29.80.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.s390x"
        },
        "product_reference": "apache2-utils-2.4.23-29.80.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-utils-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.23-29.80.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.aarch64"
        },
        "product_reference": "apache2-worker-2.4.23-29.80.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.23-29.80.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.ppc64le"
        },
        "product_reference": "apache2-worker-2.4.23-29.80.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.23-29.80.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.s390x"
        },
        "product_reference": "apache2-worker-2.4.23-29.80.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.23-29.80.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.x86_64"
        },
        "product_reference": "apache2-worker-2.4.23-29.80.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-34798",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-34798"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Malformed requests may cause the server to dereference a NULL pointer. This issue affects Apache HTTP Server 2.4.48 and earlier.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "HPE Helion OpenStack 8:apache2-2.4.23-29.80.1.x86_64",
          "HPE Helion OpenStack 8:apache2-doc-2.4.23-29.80.1.noarch",
          "HPE Helion OpenStack 8:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "HPE Helion OpenStack 8:apache2-prefork-2.4.23-29.80.1.x86_64",
          "HPE Helion OpenStack 8:apache2-utils-2.4.23-29.80.1.x86_64",
          "HPE Helion OpenStack 8:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 8:apache2-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 8:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE OpenStack Cloud 8:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 8:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 8:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 8:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 9:apache2-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 9:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE OpenStack Cloud 9:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 9:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 9:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 9:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 8:apache2-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 8:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE OpenStack Cloud Crowbar 8:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 8:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 8:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 8:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 9:apache2-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 9:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE OpenStack Cloud Crowbar 9:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 9:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 9:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 9:apache2-worker-2.4.23-29.80.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-34798",
          "url": "https://www.suse.com/security/cve/CVE-2021-34798"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190669 for CVE-2021-34798",
          "url": "https://bugzilla.suse.com/1190669"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1191297 for CVE-2021-34798",
          "url": "https://bugzilla.suse.com/1191297"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "HPE Helion OpenStack 8:apache2-2.4.23-29.80.1.x86_64",
            "HPE Helion OpenStack 8:apache2-doc-2.4.23-29.80.1.noarch",
            "HPE Helion OpenStack 8:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "HPE Helion OpenStack 8:apache2-prefork-2.4.23-29.80.1.x86_64",
            "HPE Helion OpenStack 8:apache2-utils-2.4.23-29.80.1.x86_64",
            "HPE Helion OpenStack 8:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE OpenStack Cloud 8:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE OpenStack Cloud 9:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE OpenStack Cloud Crowbar 8:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE OpenStack Cloud Crowbar 9:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-worker-2.4.23-29.80.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "HPE Helion OpenStack 8:apache2-2.4.23-29.80.1.x86_64",
            "HPE Helion OpenStack 8:apache2-doc-2.4.23-29.80.1.noarch",
            "HPE Helion OpenStack 8:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "HPE Helion OpenStack 8:apache2-prefork-2.4.23-29.80.1.x86_64",
            "HPE Helion OpenStack 8:apache2-utils-2.4.23-29.80.1.x86_64",
            "HPE Helion OpenStack 8:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE OpenStack Cloud 8:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE OpenStack Cloud 9:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE OpenStack Cloud Crowbar 8:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE OpenStack Cloud Crowbar 9:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-worker-2.4.23-29.80.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2021-10-06T14:56:54Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-34798"
    },
    {
      "cve": "CVE-2021-39275",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-39275"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "ap_escape_quotes() may write beyond the end of a buffer when given malicious input. No included modules pass untrusted data to these functions, but third-party / external modules may. This issue affects Apache HTTP Server 2.4.48 and earlier.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "HPE Helion OpenStack 8:apache2-2.4.23-29.80.1.x86_64",
          "HPE Helion OpenStack 8:apache2-doc-2.4.23-29.80.1.noarch",
          "HPE Helion OpenStack 8:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "HPE Helion OpenStack 8:apache2-prefork-2.4.23-29.80.1.x86_64",
          "HPE Helion OpenStack 8:apache2-utils-2.4.23-29.80.1.x86_64",
          "HPE Helion OpenStack 8:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 8:apache2-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 8:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE OpenStack Cloud 8:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 8:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 8:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 8:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 9:apache2-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 9:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE OpenStack Cloud 9:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 9:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 9:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 9:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 8:apache2-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 8:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE OpenStack Cloud Crowbar 8:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 8:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 8:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 8:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 9:apache2-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 9:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE OpenStack Cloud Crowbar 9:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 9:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 9:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 9:apache2-worker-2.4.23-29.80.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-39275",
          "url": "https://www.suse.com/security/cve/CVE-2021-39275"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190666 for CVE-2021-39275",
          "url": "https://bugzilla.suse.com/1190666"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "HPE Helion OpenStack 8:apache2-2.4.23-29.80.1.x86_64",
            "HPE Helion OpenStack 8:apache2-doc-2.4.23-29.80.1.noarch",
            "HPE Helion OpenStack 8:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "HPE Helion OpenStack 8:apache2-prefork-2.4.23-29.80.1.x86_64",
            "HPE Helion OpenStack 8:apache2-utils-2.4.23-29.80.1.x86_64",
            "HPE Helion OpenStack 8:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE OpenStack Cloud 8:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE OpenStack Cloud 9:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE OpenStack Cloud Crowbar 8:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE OpenStack Cloud Crowbar 9:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-worker-2.4.23-29.80.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "HPE Helion OpenStack 8:apache2-2.4.23-29.80.1.x86_64",
            "HPE Helion OpenStack 8:apache2-doc-2.4.23-29.80.1.noarch",
            "HPE Helion OpenStack 8:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "HPE Helion OpenStack 8:apache2-prefork-2.4.23-29.80.1.x86_64",
            "HPE Helion OpenStack 8:apache2-utils-2.4.23-29.80.1.x86_64",
            "HPE Helion OpenStack 8:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE OpenStack Cloud 8:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE OpenStack Cloud 9:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE OpenStack Cloud Crowbar 8:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE OpenStack Cloud Crowbar 9:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-worker-2.4.23-29.80.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2021-10-06T14:56:54Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-39275"
    },
    {
      "cve": "CVE-2021-40438",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-40438"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue affects Apache HTTP Server 2.4.48 and earlier.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "HPE Helion OpenStack 8:apache2-2.4.23-29.80.1.x86_64",
          "HPE Helion OpenStack 8:apache2-doc-2.4.23-29.80.1.noarch",
          "HPE Helion OpenStack 8:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "HPE Helion OpenStack 8:apache2-prefork-2.4.23-29.80.1.x86_64",
          "HPE Helion OpenStack 8:apache2-utils-2.4.23-29.80.1.x86_64",
          "HPE Helion OpenStack 8:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 8:apache2-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 8:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE OpenStack Cloud 8:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 8:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 8:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 8:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 9:apache2-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 9:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE OpenStack Cloud 9:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 9:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 9:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud 9:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 8:apache2-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 8:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE OpenStack Cloud Crowbar 8:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 8:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 8:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 8:apache2-worker-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 9:apache2-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 9:apache2-doc-2.4.23-29.80.1.noarch",
          "SUSE OpenStack Cloud Crowbar 9:apache2-example-pages-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 9:apache2-prefork-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 9:apache2-utils-2.4.23-29.80.1.x86_64",
          "SUSE OpenStack Cloud Crowbar 9:apache2-worker-2.4.23-29.80.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-40438",
          "url": "https://www.suse.com/security/cve/CVE-2021-40438"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190703 for CVE-2021-40438",
          "url": "https://bugzilla.suse.com/1190703"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "HPE Helion OpenStack 8:apache2-2.4.23-29.80.1.x86_64",
            "HPE Helion OpenStack 8:apache2-doc-2.4.23-29.80.1.noarch",
            "HPE Helion OpenStack 8:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "HPE Helion OpenStack 8:apache2-prefork-2.4.23-29.80.1.x86_64",
            "HPE Helion OpenStack 8:apache2-utils-2.4.23-29.80.1.x86_64",
            "HPE Helion OpenStack 8:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE OpenStack Cloud 8:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE OpenStack Cloud 9:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE OpenStack Cloud Crowbar 8:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE OpenStack Cloud Crowbar 9:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-worker-2.4.23-29.80.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "HPE Helion OpenStack 8:apache2-2.4.23-29.80.1.x86_64",
            "HPE Helion OpenStack 8:apache2-doc-2.4.23-29.80.1.noarch",
            "HPE Helion OpenStack 8:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "HPE Helion OpenStack 8:apache2-prefork-2.4.23-29.80.1.x86_64",
            "HPE Helion OpenStack 8:apache2-utils-2.4.23-29.80.1.x86_64",
            "HPE Helion OpenStack 8:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2-BCL:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-BCL:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP3-LTSS:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP4-LTSS:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP4:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP5:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP5:apache2-devel-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE OpenStack Cloud 8:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 8:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE OpenStack Cloud 9:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud 9:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE OpenStack Cloud Crowbar 8:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 8:apache2-worker-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-doc-2.4.23-29.80.1.noarch",
            "SUSE OpenStack Cloud Crowbar 9:apache2-example-pages-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-prefork-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-utils-2.4.23-29.80.1.x86_64",
            "SUSE OpenStack Cloud Crowbar 9:apache2-worker-2.4.23-29.80.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2021-10-06T14:56:54Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-40438"
    }
  ]
}

SUSE-SU-2021:3335-1

Vulnerability from csaf_suse - Published: 2021-10-12 06:19 - Updated: 2021-10-12 06:19

Summary

Security update for apache2

Severity

Important

Notes

Title of the patch: Security update for apache2

Description of the patch: This update for apache2 fixes the following issues: - CVE-2021-40438: Fixed a SRF via a crafted request uri-path. (bsc#1190703) - CVE-2021-36160: Fixed an out-of-bounds read via a crafted request uri-path. (bsc#1190702) - CVE-2021-39275: Fixed an out-of-bounds write in ap_escape_quotes() via malicious input. (bsc#1190666) - CVE-2021-34798: Fixed a NULL pointer dereference via malformed requests. (bsc#1190669) - CVE-2021-33193: Fixed request splitting via HTTP/2 method injection and mod_proxy. (bsc#1189387)

Patchnames: SUSE-2021-3335,SUSE-SLE-Product-HPC-15-2021-3335,SUSE-SLE-Product-HPC-15-SP1-ESPOS-2021-3335,SUSE-SLE-Product-HPC-15-SP1-LTSS-2021-3335,SUSE-SLE-Product-SLES-15-2021-3335,SUSE-SLE-Product-SLES-15-SP1-BCL-2021-3335,SUSE-SLE-Product-SLES-15-SP1-LTSS-2021-3335,SUSE-SLE-Product-SLES_SAP-15-2021-3335,SUSE-SLE-Product-SLES_SAP-15-SP1-2021-3335,SUSE-Storage-6-2021-3335

CVE-2021-33193

9.1 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Affected products

Recommended 125 products

Product	Version	Remediation
Unresolved product id: SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix

Threats

Impact critical

CVE-2021-34798

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 125 products

Product	Version	Remediation
Unresolved product id: SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-36160

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 125 products

Product	Version	Remediation
Unresolved product id: SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-39275

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 125 products

Product	Version	Remediation
Unresolved product id: SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-40438

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 125 products

Product	Version	Remediation
Unresolved product id: SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-doc-2.4.33-3.55.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.x86_64	—	Vendor Fix

Threats

Impact important

References

26 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1189387	self
https://bugzilla.suse.com/1190666	self
https://bugzilla.suse.com/1190669	self
https://bugzilla.suse.com/1190702	self
https://bugzilla.suse.com/1190703	self
https://www.suse.com/security/cve/CVE-2021-33193/	self
https://www.suse.com/security/cve/CVE-2021-34798/	self
https://www.suse.com/security/cve/CVE-2021-36160/	self
https://www.suse.com/security/cve/CVE-2021-39275/	self
https://www.suse.com/security/cve/CVE-2021-40438/	self
https://www.suse.com/security/cve/CVE-2021-33193	external
https://bugzilla.suse.com/1189387	external
https://bugzilla.suse.com/1195686	external
https://www.suse.com/security/cve/CVE-2021-34798	external
https://bugzilla.suse.com/1190669	external
https://bugzilla.suse.com/1191297	external
https://www.suse.com/security/cve/CVE-2021-36160	external
https://bugzilla.suse.com/1190702	external
https://www.suse.com/security/cve/CVE-2021-39275	external
https://bugzilla.suse.com/1190666	external
https://www.suse.com/security/cve/CVE-2021-40438	external
https://bugzilla.suse.com/1190703	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for apache2",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for apache2 fixes the following issues:\n\n- CVE-2021-40438: Fixed a SRF via a crafted request uri-path. (bsc#1190703)\n- CVE-2021-36160: Fixed an out-of-bounds read via a crafted request uri-path. (bsc#1190702)\n- CVE-2021-39275: Fixed an out-of-bounds write in ap_escape_quotes() via malicious input. (bsc#1190666)\n- CVE-2021-34798: Fixed a NULL pointer dereference via malformed requests. (bsc#1190669)\n- CVE-2021-33193: Fixed request splitting via HTTP/2 method injection and mod_proxy. (bsc#1189387)\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2021-3335,SUSE-SLE-Product-HPC-15-2021-3335,SUSE-SLE-Product-HPC-15-SP1-ESPOS-2021-3335,SUSE-SLE-Product-HPC-15-SP1-LTSS-2021-3335,SUSE-SLE-Product-SLES-15-2021-3335,SUSE-SLE-Product-SLES-15-SP1-BCL-2021-3335,SUSE-SLE-Product-SLES-15-SP1-LTSS-2021-3335,SUSE-SLE-Product-SLES_SAP-15-2021-3335,SUSE-SLE-Product-SLES_SAP-15-SP1-2021-3335,SUSE-Storage-6-2021-3335",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_3335-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2021:3335-1",
        "url": "https://www.suse.com/support/update/announcement/2021/suse-su-20213335-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2021:3335-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2021-October/009564.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1189387",
        "url": "https://bugzilla.suse.com/1189387"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1190666",
        "url": "https://bugzilla.suse.com/1190666"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1190669",
        "url": "https://bugzilla.suse.com/1190669"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1190702",
        "url": "https://bugzilla.suse.com/1190702"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1190703",
        "url": "https://bugzilla.suse.com/1190703"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-33193 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-33193/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-34798 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-34798/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-36160 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-36160/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-39275 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-39275/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-40438 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-40438/"
      }
    ],
    "title": "Security update for apache2",
    "tracking": {
      "current_release_date": "2021-10-12T06:19:02Z",
      "generator": {
        "date": "2021-10-12T06:19:02Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2021:3335-1",
      "initial_release_date": "2021-10-12T06:19:02Z",
      "revision_history": [
        {
          "date": "2021-10-12T06:19:02Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "apache2-2.4.33-3.55.1.aarch64",
                "product": {
                  "name": "apache2-2.4.33-3.55.1.aarch64",
                  "product_id": "apache2-2.4.33-3.55.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-devel-2.4.33-3.55.1.aarch64",
                "product": {
                  "name": "apache2-devel-2.4.33-3.55.1.aarch64",
                  "product_id": "apache2-devel-2.4.33-3.55.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-event-2.4.33-3.55.1.aarch64",
                "product": {
                  "name": "apache2-event-2.4.33-3.55.1.aarch64",
                  "product_id": "apache2-event-2.4.33-3.55.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-example-pages-2.4.33-3.55.1.aarch64",
                "product": {
                  "name": "apache2-example-pages-2.4.33-3.55.1.aarch64",
                  "product_id": "apache2-example-pages-2.4.33-3.55.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-prefork-2.4.33-3.55.1.aarch64",
                "product": {
                  "name": "apache2-prefork-2.4.33-3.55.1.aarch64",
                  "product_id": "apache2-prefork-2.4.33-3.55.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-utils-2.4.33-3.55.1.aarch64",
                "product": {
                  "name": "apache2-utils-2.4.33-3.55.1.aarch64",
                  "product_id": "apache2-utils-2.4.33-3.55.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-worker-2.4.33-3.55.1.aarch64",
                "product": {
                  "name": "apache2-worker-2.4.33-3.55.1.aarch64",
                  "product_id": "apache2-worker-2.4.33-3.55.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "apache2-2.4.33-3.55.1.i586",
                "product": {
                  "name": "apache2-2.4.33-3.55.1.i586",
                  "product_id": "apache2-2.4.33-3.55.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-devel-2.4.33-3.55.1.i586",
                "product": {
                  "name": "apache2-devel-2.4.33-3.55.1.i586",
                  "product_id": "apache2-devel-2.4.33-3.55.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-event-2.4.33-3.55.1.i586",
                "product": {
                  "name": "apache2-event-2.4.33-3.55.1.i586",
                  "product_id": "apache2-event-2.4.33-3.55.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-example-pages-2.4.33-3.55.1.i586",
                "product": {
                  "name": "apache2-example-pages-2.4.33-3.55.1.i586",
                  "product_id": "apache2-example-pages-2.4.33-3.55.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-prefork-2.4.33-3.55.1.i586",
                "product": {
                  "name": "apache2-prefork-2.4.33-3.55.1.i586",
                  "product_id": "apache2-prefork-2.4.33-3.55.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-utils-2.4.33-3.55.1.i586",
                "product": {
                  "name": "apache2-utils-2.4.33-3.55.1.i586",
                  "product_id": "apache2-utils-2.4.33-3.55.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-worker-2.4.33-3.55.1.i586",
                "product": {
                  "name": "apache2-worker-2.4.33-3.55.1.i586",
                  "product_id": "apache2-worker-2.4.33-3.55.1.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "apache2-doc-2.4.33-3.55.1.noarch",
                "product": {
                  "name": "apache2-doc-2.4.33-3.55.1.noarch",
                  "product_id": "apache2-doc-2.4.33-3.55.1.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "apache2-2.4.33-3.55.1.ppc64le",
                "product": {
                  "name": "apache2-2.4.33-3.55.1.ppc64le",
                  "product_id": "apache2-2.4.33-3.55.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-devel-2.4.33-3.55.1.ppc64le",
                "product": {
                  "name": "apache2-devel-2.4.33-3.55.1.ppc64le",
                  "product_id": "apache2-devel-2.4.33-3.55.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-event-2.4.33-3.55.1.ppc64le",
                "product": {
                  "name": "apache2-event-2.4.33-3.55.1.ppc64le",
                  "product_id": "apache2-event-2.4.33-3.55.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-example-pages-2.4.33-3.55.1.ppc64le",
                "product": {
                  "name": "apache2-example-pages-2.4.33-3.55.1.ppc64le",
                  "product_id": "apache2-example-pages-2.4.33-3.55.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-prefork-2.4.33-3.55.1.ppc64le",
                "product": {
                  "name": "apache2-prefork-2.4.33-3.55.1.ppc64le",
                  "product_id": "apache2-prefork-2.4.33-3.55.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-utils-2.4.33-3.55.1.ppc64le",
                "product": {
                  "name": "apache2-utils-2.4.33-3.55.1.ppc64le",
                  "product_id": "apache2-utils-2.4.33-3.55.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-worker-2.4.33-3.55.1.ppc64le",
                "product": {
                  "name": "apache2-worker-2.4.33-3.55.1.ppc64le",
                  "product_id": "apache2-worker-2.4.33-3.55.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "apache2-2.4.33-3.55.1.s390x",
                "product": {
                  "name": "apache2-2.4.33-3.55.1.s390x",
                  "product_id": "apache2-2.4.33-3.55.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-devel-2.4.33-3.55.1.s390x",
                "product": {
                  "name": "apache2-devel-2.4.33-3.55.1.s390x",
                  "product_id": "apache2-devel-2.4.33-3.55.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-event-2.4.33-3.55.1.s390x",
                "product": {
                  "name": "apache2-event-2.4.33-3.55.1.s390x",
                  "product_id": "apache2-event-2.4.33-3.55.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-example-pages-2.4.33-3.55.1.s390x",
                "product": {
                  "name": "apache2-example-pages-2.4.33-3.55.1.s390x",
                  "product_id": "apache2-example-pages-2.4.33-3.55.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-prefork-2.4.33-3.55.1.s390x",
                "product": {
                  "name": "apache2-prefork-2.4.33-3.55.1.s390x",
                  "product_id": "apache2-prefork-2.4.33-3.55.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-utils-2.4.33-3.55.1.s390x",
                "product": {
                  "name": "apache2-utils-2.4.33-3.55.1.s390x",
                  "product_id": "apache2-utils-2.4.33-3.55.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-worker-2.4.33-3.55.1.s390x",
                "product": {
                  "name": "apache2-worker-2.4.33-3.55.1.s390x",
                  "product_id": "apache2-worker-2.4.33-3.55.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "apache2-2.4.33-3.55.1.x86_64",
                "product": {
                  "name": "apache2-2.4.33-3.55.1.x86_64",
                  "product_id": "apache2-2.4.33-3.55.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-devel-2.4.33-3.55.1.x86_64",
                "product": {
                  "name": "apache2-devel-2.4.33-3.55.1.x86_64",
                  "product_id": "apache2-devel-2.4.33-3.55.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-event-2.4.33-3.55.1.x86_64",
                "product": {
                  "name": "apache2-event-2.4.33-3.55.1.x86_64",
                  "product_id": "apache2-event-2.4.33-3.55.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-example-pages-2.4.33-3.55.1.x86_64",
                "product": {
                  "name": "apache2-example-pages-2.4.33-3.55.1.x86_64",
                  "product_id": "apache2-example-pages-2.4.33-3.55.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-prefork-2.4.33-3.55.1.x86_64",
                "product": {
                  "name": "apache2-prefork-2.4.33-3.55.1.x86_64",
                  "product_id": "apache2-prefork-2.4.33-3.55.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-utils-2.4.33-3.55.1.x86_64",
                "product": {
                  "name": "apache2-utils-2.4.33-3.55.1.x86_64",
                  "product_id": "apache2-utils-2.4.33-3.55.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-worker-2.4.33-3.55.1.x86_64",
                "product": {
                  "name": "apache2-worker-2.4.33-3.55.1.x86_64",
                  "product_id": "apache2-worker-2.4.33-3.55.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
                "product": {
                  "name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
                  "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle_hpc-espos:15"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
                  "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle_hpc-ltss:15"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
                "product": {
                  "name": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
                  "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
                  "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 15-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 15-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 15-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-ltss:15"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 15 SP1-BCL",
                "product": {
                  "name": "SUSE Linux Enterprise Server 15 SP1-BCL",
                  "product_id": "SUSE Linux Enterprise Server 15 SP1-BCL",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_bcl:15:sp1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 15 SP1-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 15 SP1-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-ltss:15:sp1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 15",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 15",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 15",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:15"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:15:sp1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Enterprise Storage 6",
                "product": {
                  "name": "SUSE Enterprise Storage 6",
                  "product_id": "SUSE Enterprise Storage 6",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:ses:6"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-devel-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-devel-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-doc-2.4.33-3.55.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-doc-2.4.33-3.55.1.noarch"
        },
        "product_reference": "apache2-doc-2.4.33-3.55.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-prefork-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-prefork-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-utils-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-utils-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-worker-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-worker-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-devel-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-devel-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-doc-2.4.33-3.55.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch"
        },
        "product_reference": "apache2-doc-2.4.33-3.55.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-prefork-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-prefork-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-utils-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-utils-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-worker-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-worker-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-devel-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-devel-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-doc-2.4.33-3.55.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-doc-2.4.33-3.55.1.noarch"
        },
        "product_reference": "apache2-doc-2.4.33-3.55.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-prefork-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-prefork-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-utils-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-utils-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-worker-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-worker-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-devel-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-devel-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-doc-2.4.33-3.55.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch"
        },
        "product_reference": "apache2-doc-2.4.33-3.55.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-prefork-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-prefork-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-utils-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-utils-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-worker-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-worker-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.33-3.55.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.ppc64le"
        },
        "product_reference": "apache2-2.4.33-3.55.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.33-3.55.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.s390x"
        },
        "product_reference": "apache2-2.4.33-3.55.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-devel-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.33-3.55.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le"
        },
        "product_reference": "apache2-devel-2.4.33-3.55.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.33-3.55.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.s390x"
        },
        "product_reference": "apache2-devel-2.4.33-3.55.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-devel-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-doc-2.4.33-3.55.1.noarch as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch"
        },
        "product_reference": "apache2-doc-2.4.33-3.55.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-prefork-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.33-3.55.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le"
        },
        "product_reference": "apache2-prefork-2.4.33-3.55.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.33-3.55.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.s390x"
        },
        "product_reference": "apache2-prefork-2.4.33-3.55.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-prefork-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-utils-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.33-3.55.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le"
        },
        "product_reference": "apache2-utils-2.4.33-3.55.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.33-3.55.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.s390x"
        },
        "product_reference": "apache2-utils-2.4.33-3.55.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-utils-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-worker-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.33-3.55.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le"
        },
        "product_reference": "apache2-worker-2.4.33-3.55.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.33-3.55.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.s390x"
        },
        "product_reference": "apache2-worker-2.4.33-3.55.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-worker-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-devel-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-devel-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-doc-2.4.33-3.55.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-BCL",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-doc-2.4.33-3.55.1.noarch"
        },
        "product_reference": "apache2-doc-2.4.33-3.55.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-prefork-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-prefork-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-utils-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-utils-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-worker-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-worker-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.33-3.55.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.ppc64le"
        },
        "product_reference": "apache2-2.4.33-3.55.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.33-3.55.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.s390x"
        },
        "product_reference": "apache2-2.4.33-3.55.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-devel-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.33-3.55.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le"
        },
        "product_reference": "apache2-devel-2.4.33-3.55.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.33-3.55.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.s390x"
        },
        "product_reference": "apache2-devel-2.4.33-3.55.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-devel-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-doc-2.4.33-3.55.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch"
        },
        "product_reference": "apache2-doc-2.4.33-3.55.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-prefork-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.33-3.55.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le"
        },
        "product_reference": "apache2-prefork-2.4.33-3.55.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.33-3.55.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.s390x"
        },
        "product_reference": "apache2-prefork-2.4.33-3.55.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-prefork-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-utils-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.33-3.55.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le"
        },
        "product_reference": "apache2-utils-2.4.33-3.55.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.33-3.55.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.s390x"
        },
        "product_reference": "apache2-utils-2.4.33-3.55.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-utils-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.33-3.55.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-worker-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.33-3.55.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le"
        },
        "product_reference": "apache2-worker-2.4.33-3.55.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.33-3.55.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.s390x"
        },
        "product_reference": "apache2-worker-2.4.33-3.55.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-worker-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.33-3.55.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.ppc64le"
        },
        "product_reference": "apache2-2.4.33-3.55.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.33-3.55.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.ppc64le"
        },
        "product_reference": "apache2-devel-2.4.33-3.55.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-devel-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-doc-2.4.33-3.55.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:apache2-doc-2.4.33-3.55.1.noarch"
        },
        "product_reference": "apache2-doc-2.4.33-3.55.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.33-3.55.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.ppc64le"
        },
        "product_reference": "apache2-prefork-2.4.33-3.55.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-prefork-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.33-3.55.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.ppc64le"
        },
        "product_reference": "apache2-utils-2.4.33-3.55.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-utils-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.33-3.55.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.ppc64le"
        },
        "product_reference": "apache2-worker-2.4.33-3.55.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-worker-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.33-3.55.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.ppc64le"
        },
        "product_reference": "apache2-2.4.33-3.55.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.33-3.55.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.ppc64le"
        },
        "product_reference": "apache2-devel-2.4.33-3.55.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-devel-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-doc-2.4.33-3.55.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-doc-2.4.33-3.55.1.noarch"
        },
        "product_reference": "apache2-doc-2.4.33-3.55.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.33-3.55.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.ppc64le"
        },
        "product_reference": "apache2-prefork-2.4.33-3.55.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-prefork-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.33-3.55.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.ppc64le"
        },
        "product_reference": "apache2-utils-2.4.33-3.55.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-utils-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.33-3.55.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.ppc64le"
        },
        "product_reference": "apache2-worker-2.4.33-3.55.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.33-3.55.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-worker-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.33-3.55.1.aarch64 as component of SUSE Enterprise Storage 6",
          "product_id": "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Enterprise Storage 6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.33-3.55.1.x86_64 as component of SUSE Enterprise Storage 6",
          "product_id": "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Enterprise Storage 6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.33-3.55.1.aarch64 as component of SUSE Enterprise Storage 6",
          "product_id": "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-devel-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Enterprise Storage 6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.33-3.55.1.x86_64 as component of SUSE Enterprise Storage 6",
          "product_id": "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-devel-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Enterprise Storage 6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-doc-2.4.33-3.55.1.noarch as component of SUSE Enterprise Storage 6",
          "product_id": "SUSE Enterprise Storage 6:apache2-doc-2.4.33-3.55.1.noarch"
        },
        "product_reference": "apache2-doc-2.4.33-3.55.1.noarch",
        "relates_to_product_reference": "SUSE Enterprise Storage 6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.33-3.55.1.aarch64 as component of SUSE Enterprise Storage 6",
          "product_id": "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-prefork-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Enterprise Storage 6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.33-3.55.1.x86_64 as component of SUSE Enterprise Storage 6",
          "product_id": "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-prefork-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Enterprise Storage 6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.33-3.55.1.aarch64 as component of SUSE Enterprise Storage 6",
          "product_id": "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-utils-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Enterprise Storage 6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.33-3.55.1.x86_64 as component of SUSE Enterprise Storage 6",
          "product_id": "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-utils-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Enterprise Storage 6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.33-3.55.1.aarch64 as component of SUSE Enterprise Storage 6",
          "product_id": "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.aarch64"
        },
        "product_reference": "apache2-worker-2.4.33-3.55.1.aarch64",
        "relates_to_product_reference": "SUSE Enterprise Storage 6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.33-3.55.1.x86_64 as component of SUSE Enterprise Storage 6",
          "product_id": "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.x86_64"
        },
        "product_reference": "apache2-worker-2.4.33-3.55.1.x86_64",
        "relates_to_product_reference": "SUSE Enterprise Storage 6"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-33193",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-33193"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A crafted method sent through HTTP/2 will bypass validation and be forwarded by mod_proxy, which can lead to request splitting or cache poisoning. This issue affects Apache HTTP Server 2.4.17 to 2.4.48.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Enterprise Storage 6:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-33193",
          "url": "https://www.suse.com/security/cve/CVE-2021-33193"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189387 for CVE-2021-33193",
          "url": "https://bugzilla.suse.com/1189387"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1195686 for CVE-2021-33193",
          "url": "https://bugzilla.suse.com/1195686"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.1,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2021-10-12T06:19:02Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2021-33193"
    },
    {
      "cve": "CVE-2021-34798",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-34798"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Malformed requests may cause the server to dereference a NULL pointer. This issue affects Apache HTTP Server 2.4.48 and earlier.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Enterprise Storage 6:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-34798",
          "url": "https://www.suse.com/security/cve/CVE-2021-34798"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190669 for CVE-2021-34798",
          "url": "https://bugzilla.suse.com/1190669"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1191297 for CVE-2021-34798",
          "url": "https://bugzilla.suse.com/1191297"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2021-10-12T06:19:02Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-34798"
    },
    {
      "cve": "CVE-2021-36160",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-36160"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A carefully crafted request uri-path can cause mod_proxy_uwsgi to read above the allocated memory and crash (DoS). This issue affects Apache HTTP Server versions 2.4.30 to 2.4.48 (inclusive).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Enterprise Storage 6:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-36160",
          "url": "https://www.suse.com/security/cve/CVE-2021-36160"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190702 for CVE-2021-36160",
          "url": "https://bugzilla.suse.com/1190702"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2021-10-12T06:19:02Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-36160"
    },
    {
      "cve": "CVE-2021-39275",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-39275"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "ap_escape_quotes() may write beyond the end of a buffer when given malicious input. No included modules pass untrusted data to these functions, but third-party / external modules may. This issue affects Apache HTTP Server 2.4.48 and earlier.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Enterprise Storage 6:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-39275",
          "url": "https://www.suse.com/security/cve/CVE-2021-39275"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190666 for CVE-2021-39275",
          "url": "https://bugzilla.suse.com/1190666"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2021-10-12T06:19:02Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-39275"
    },
    {
      "cve": "CVE-2021-40438",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-40438"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue affects Apache HTTP Server 2.4.48 and earlier.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Enterprise Storage 6:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
          "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-doc-2.4.33-3.55.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-40438",
          "url": "https://www.suse.com/security/cve/CVE-2021-40438"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190703 for CVE-2021-40438",
          "url": "https://bugzilla.suse.com/1190703"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Enterprise Storage 6:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-BCL:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15 SP1-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.aarch64",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.s390x",
            "SUSE Linux Enterprise Server 15-LTSS:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP1:apache2-worker-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-devel-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-doc-2.4.33-3.55.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-prefork-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-utils-2.4.33-3.55.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15:apache2-worker-2.4.33-3.55.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2021-10-12T06:19:02Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-40438"
    }
  ]
}

SUSE-SU-2021:3522-1

Vulnerability from csaf_suse - Published: 2021-10-26 13:40 - Updated: 2021-10-26 13:40

Summary

Security update for apache2

Severity

Important

Notes

Title of the patch: Security update for apache2

Patchnames: SUSE-2021-3522,SUSE-SLE-Module-Basesystem-15-SP2-2021-3522,SUSE-SLE-Module-Basesystem-15-SP3-2021-3522,SUSE-SLE-Module-Packagehub-Subpackages-15-SP3-2021-3522,SUSE-SLE-Module-Server-Applications-15-SP2-2021-3522,SUSE-SLE-Module-Server-Applications-15-SP3-2021-3522

CVE-2021-34798

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 46 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-doc-2.4.43-3.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-doc-2.4.43-3.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-36160

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 46 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-doc-2.4.43-3.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-doc-2.4.43-3.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-39275

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 46 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-doc-2.4.43-3.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-doc-2.4.43-3.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-40438

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 46 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-doc-2.4.43-3.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-doc-2.4.43-3.32.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.x86_64	—	Vendor Fix

Threats

Impact important

References

21 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1190666	self
https://bugzilla.suse.com/1190669	self
https://bugzilla.suse.com/1190702	self
https://bugzilla.suse.com/1190703	self
https://www.suse.com/security/cve/CVE-2021-34798/	self
https://www.suse.com/security/cve/CVE-2021-36160/	self
https://www.suse.com/security/cve/CVE-2021-39275/	self
https://www.suse.com/security/cve/CVE-2021-40438/	self
https://www.suse.com/security/cve/CVE-2021-34798	external
https://bugzilla.suse.com/1190669	external
https://bugzilla.suse.com/1191297	external
https://www.suse.com/security/cve/CVE-2021-36160	external
https://bugzilla.suse.com/1190702	external
https://www.suse.com/security/cve/CVE-2021-39275	external
https://bugzilla.suse.com/1190666	external
https://www.suse.com/security/cve/CVE-2021-40438	external
https://bugzilla.suse.com/1190703	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for apache2",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for apache2 fixes the following issues:\n\n- CVE-2021-40438: Fixed a SRF via a crafted request uri-path. (bsc#1190703)\n- CVE-2021-36160: Fixed an out-of-bounds read via a crafted request uri-path. (bsc#1190702)\n- CVE-2021-39275: Fixed an out-of-bounds write in ap_escape_quotes() via malicious input. (bsc#1190666)\n- CVE-2021-34798: Fixed a NULL pointer dereference via malformed requests. (bsc#1190669)\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2021-3522,SUSE-SLE-Module-Basesystem-15-SP2-2021-3522,SUSE-SLE-Module-Basesystem-15-SP3-2021-3522,SUSE-SLE-Module-Packagehub-Subpackages-15-SP3-2021-3522,SUSE-SLE-Module-Server-Applications-15-SP2-2021-3522,SUSE-SLE-Module-Server-Applications-15-SP3-2021-3522",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_3522-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2021:3522-1",
        "url": "https://www.suse.com/support/update/announcement/2021/suse-su-20213522-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2021:3522-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2021-October/009646.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1190666",
        "url": "https://bugzilla.suse.com/1190666"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1190669",
        "url": "https://bugzilla.suse.com/1190669"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1190702",
        "url": "https://bugzilla.suse.com/1190702"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1190703",
        "url": "https://bugzilla.suse.com/1190703"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-34798 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-34798/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-36160 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-36160/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-39275 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-39275/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-40438 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-40438/"
      }
    ],
    "title": "Security update for apache2",
    "tracking": {
      "current_release_date": "2021-10-26T13:40:10Z",
      "generator": {
        "date": "2021-10-26T13:40:10Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2021:3522-1",
      "initial_release_date": "2021-10-26T13:40:10Z",
      "revision_history": [
        {
          "date": "2021-10-26T13:40:10Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "apache2-2.4.43-3.32.1.aarch64",
                "product": {
                  "name": "apache2-2.4.43-3.32.1.aarch64",
                  "product_id": "apache2-2.4.43-3.32.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-devel-2.4.43-3.32.1.aarch64",
                "product": {
                  "name": "apache2-devel-2.4.43-3.32.1.aarch64",
                  "product_id": "apache2-devel-2.4.43-3.32.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-event-2.4.43-3.32.1.aarch64",
                "product": {
                  "name": "apache2-event-2.4.43-3.32.1.aarch64",
                  "product_id": "apache2-event-2.4.43-3.32.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-example-pages-2.4.43-3.32.1.aarch64",
                "product": {
                  "name": "apache2-example-pages-2.4.43-3.32.1.aarch64",
                  "product_id": "apache2-example-pages-2.4.43-3.32.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-prefork-2.4.43-3.32.1.aarch64",
                "product": {
                  "name": "apache2-prefork-2.4.43-3.32.1.aarch64",
                  "product_id": "apache2-prefork-2.4.43-3.32.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-utils-2.4.43-3.32.1.aarch64",
                "product": {
                  "name": "apache2-utils-2.4.43-3.32.1.aarch64",
                  "product_id": "apache2-utils-2.4.43-3.32.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-worker-2.4.43-3.32.1.aarch64",
                "product": {
                  "name": "apache2-worker-2.4.43-3.32.1.aarch64",
                  "product_id": "apache2-worker-2.4.43-3.32.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "apache2-2.4.43-3.32.1.i586",
                "product": {
                  "name": "apache2-2.4.43-3.32.1.i586",
                  "product_id": "apache2-2.4.43-3.32.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-devel-2.4.43-3.32.1.i586",
                "product": {
                  "name": "apache2-devel-2.4.43-3.32.1.i586",
                  "product_id": "apache2-devel-2.4.43-3.32.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-event-2.4.43-3.32.1.i586",
                "product": {
                  "name": "apache2-event-2.4.43-3.32.1.i586",
                  "product_id": "apache2-event-2.4.43-3.32.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-example-pages-2.4.43-3.32.1.i586",
                "product": {
                  "name": "apache2-example-pages-2.4.43-3.32.1.i586",
                  "product_id": "apache2-example-pages-2.4.43-3.32.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-prefork-2.4.43-3.32.1.i586",
                "product": {
                  "name": "apache2-prefork-2.4.43-3.32.1.i586",
                  "product_id": "apache2-prefork-2.4.43-3.32.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-utils-2.4.43-3.32.1.i586",
                "product": {
                  "name": "apache2-utils-2.4.43-3.32.1.i586",
                  "product_id": "apache2-utils-2.4.43-3.32.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-worker-2.4.43-3.32.1.i586",
                "product": {
                  "name": "apache2-worker-2.4.43-3.32.1.i586",
                  "product_id": "apache2-worker-2.4.43-3.32.1.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "apache2-doc-2.4.43-3.32.1.noarch",
                "product": {
                  "name": "apache2-doc-2.4.43-3.32.1.noarch",
                  "product_id": "apache2-doc-2.4.43-3.32.1.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "apache2-2.4.43-3.32.1.ppc64le",
                "product": {
                  "name": "apache2-2.4.43-3.32.1.ppc64le",
                  "product_id": "apache2-2.4.43-3.32.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-devel-2.4.43-3.32.1.ppc64le",
                "product": {
                  "name": "apache2-devel-2.4.43-3.32.1.ppc64le",
                  "product_id": "apache2-devel-2.4.43-3.32.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-event-2.4.43-3.32.1.ppc64le",
                "product": {
                  "name": "apache2-event-2.4.43-3.32.1.ppc64le",
                  "product_id": "apache2-event-2.4.43-3.32.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-example-pages-2.4.43-3.32.1.ppc64le",
                "product": {
                  "name": "apache2-example-pages-2.4.43-3.32.1.ppc64le",
                  "product_id": "apache2-example-pages-2.4.43-3.32.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-prefork-2.4.43-3.32.1.ppc64le",
                "product": {
                  "name": "apache2-prefork-2.4.43-3.32.1.ppc64le",
                  "product_id": "apache2-prefork-2.4.43-3.32.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-utils-2.4.43-3.32.1.ppc64le",
                "product": {
                  "name": "apache2-utils-2.4.43-3.32.1.ppc64le",
                  "product_id": "apache2-utils-2.4.43-3.32.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-worker-2.4.43-3.32.1.ppc64le",
                "product": {
                  "name": "apache2-worker-2.4.43-3.32.1.ppc64le",
                  "product_id": "apache2-worker-2.4.43-3.32.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "apache2-2.4.43-3.32.1.s390x",
                "product": {
                  "name": "apache2-2.4.43-3.32.1.s390x",
                  "product_id": "apache2-2.4.43-3.32.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-devel-2.4.43-3.32.1.s390x",
                "product": {
                  "name": "apache2-devel-2.4.43-3.32.1.s390x",
                  "product_id": "apache2-devel-2.4.43-3.32.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-event-2.4.43-3.32.1.s390x",
                "product": {
                  "name": "apache2-event-2.4.43-3.32.1.s390x",
                  "product_id": "apache2-event-2.4.43-3.32.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-example-pages-2.4.43-3.32.1.s390x",
                "product": {
                  "name": "apache2-example-pages-2.4.43-3.32.1.s390x",
                  "product_id": "apache2-example-pages-2.4.43-3.32.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-prefork-2.4.43-3.32.1.s390x",
                "product": {
                  "name": "apache2-prefork-2.4.43-3.32.1.s390x",
                  "product_id": "apache2-prefork-2.4.43-3.32.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-utils-2.4.43-3.32.1.s390x",
                "product": {
                  "name": "apache2-utils-2.4.43-3.32.1.s390x",
                  "product_id": "apache2-utils-2.4.43-3.32.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-worker-2.4.43-3.32.1.s390x",
                "product": {
                  "name": "apache2-worker-2.4.43-3.32.1.s390x",
                  "product_id": "apache2-worker-2.4.43-3.32.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "apache2-2.4.43-3.32.1.x86_64",
                "product": {
                  "name": "apache2-2.4.43-3.32.1.x86_64",
                  "product_id": "apache2-2.4.43-3.32.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-devel-2.4.43-3.32.1.x86_64",
                "product": {
                  "name": "apache2-devel-2.4.43-3.32.1.x86_64",
                  "product_id": "apache2-devel-2.4.43-3.32.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-event-2.4.43-3.32.1.x86_64",
                "product": {
                  "name": "apache2-event-2.4.43-3.32.1.x86_64",
                  "product_id": "apache2-event-2.4.43-3.32.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-example-pages-2.4.43-3.32.1.x86_64",
                "product": {
                  "name": "apache2-example-pages-2.4.43-3.32.1.x86_64",
                  "product_id": "apache2-example-pages-2.4.43-3.32.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-prefork-2.4.43-3.32.1.x86_64",
                "product": {
                  "name": "apache2-prefork-2.4.43-3.32.1.x86_64",
                  "product_id": "apache2-prefork-2.4.43-3.32.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-utils-2.4.43-3.32.1.x86_64",
                "product": {
                  "name": "apache2-utils-2.4.43-3.32.1.x86_64",
                  "product_id": "apache2-utils-2.4.43-3.32.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "apache2-worker-2.4.43-3.32.1.x86_64",
                "product": {
                  "name": "apache2-worker-2.4.43-3.32.1.x86_64",
                  "product_id": "apache2-worker-2.4.43-3.32.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Module for Basesystem 15 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Module for Basesystem 15 SP2",
                  "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Module for Basesystem 15 SP3",
                "product": {
                  "name": "SUSE Linux Enterprise Module for Basesystem 15 SP3",
                  "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Module for Package Hub 15 SP3",
                "product": {
                  "name": "SUSE Linux Enterprise Module for Package Hub 15 SP3",
                  "product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:packagehub:15:sp3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Module for Server Applications 15 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Module for Server Applications 15 SP2",
                  "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-module-server-applications:15:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Module for Server Applications 15 SP3",
                "product": {
                  "name": "SUSE Linux Enterprise Module for Server Applications 15 SP3",
                  "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-module-server-applications:15:sp3"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.43-3.32.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.aarch64"
        },
        "product_reference": "apache2-2.4.43-3.32.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.43-3.32.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.ppc64le"
        },
        "product_reference": "apache2-2.4.43-3.32.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.43-3.32.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.s390x"
        },
        "product_reference": "apache2-2.4.43-3.32.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.43-3.32.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.x86_64"
        },
        "product_reference": "apache2-2.4.43-3.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.43-3.32.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.aarch64"
        },
        "product_reference": "apache2-prefork-2.4.43-3.32.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.43-3.32.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.ppc64le"
        },
        "product_reference": "apache2-prefork-2.4.43-3.32.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.43-3.32.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.s390x"
        },
        "product_reference": "apache2-prefork-2.4.43-3.32.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.43-3.32.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.x86_64"
        },
        "product_reference": "apache2-prefork-2.4.43-3.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.43-3.32.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.aarch64"
        },
        "product_reference": "apache2-utils-2.4.43-3.32.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.43-3.32.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.ppc64le"
        },
        "product_reference": "apache2-utils-2.4.43-3.32.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.43-3.32.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.s390x"
        },
        "product_reference": "apache2-utils-2.4.43-3.32.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.43-3.32.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.x86_64"
        },
        "product_reference": "apache2-utils-2.4.43-3.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.43-3.32.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.aarch64"
        },
        "product_reference": "apache2-2.4.43-3.32.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.43-3.32.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.ppc64le"
        },
        "product_reference": "apache2-2.4.43-3.32.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.43-3.32.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.s390x"
        },
        "product_reference": "apache2-2.4.43-3.32.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-2.4.43-3.32.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.x86_64"
        },
        "product_reference": "apache2-2.4.43-3.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.43-3.32.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.aarch64"
        },
        "product_reference": "apache2-prefork-2.4.43-3.32.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.43-3.32.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.ppc64le"
        },
        "product_reference": "apache2-prefork-2.4.43-3.32.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.43-3.32.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.s390x"
        },
        "product_reference": "apache2-prefork-2.4.43-3.32.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-prefork-2.4.43-3.32.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.x86_64"
        },
        "product_reference": "apache2-prefork-2.4.43-3.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.43-3.32.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.aarch64"
        },
        "product_reference": "apache2-utils-2.4.43-3.32.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.43-3.32.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.ppc64le"
        },
        "product_reference": "apache2-utils-2.4.43-3.32.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.43-3.32.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.s390x"
        },
        "product_reference": "apache2-utils-2.4.43-3.32.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-utils-2.4.43-3.32.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.x86_64"
        },
        "product_reference": "apache2-utils-2.4.43-3.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-event-2.4.43-3.32.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.aarch64"
        },
        "product_reference": "apache2-event-2.4.43-3.32.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-event-2.4.43-3.32.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.ppc64le"
        },
        "product_reference": "apache2-event-2.4.43-3.32.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-event-2.4.43-3.32.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.s390x"
        },
        "product_reference": "apache2-event-2.4.43-3.32.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-event-2.4.43-3.32.1.x86_64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.x86_64"
        },
        "product_reference": "apache2-event-2.4.43-3.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.43-3.32.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.aarch64"
        },
        "product_reference": "apache2-devel-2.4.43-3.32.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.43-3.32.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.ppc64le"
        },
        "product_reference": "apache2-devel-2.4.43-3.32.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.43-3.32.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.s390x"
        },
        "product_reference": "apache2-devel-2.4.43-3.32.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.43-3.32.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.x86_64"
        },
        "product_reference": "apache2-devel-2.4.43-3.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-doc-2.4.43-3.32.1.noarch as component of SUSE Linux Enterprise Module for Server Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-doc-2.4.43-3.32.1.noarch"
        },
        "product_reference": "apache2-doc-2.4.43-3.32.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.43-3.32.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.aarch64"
        },
        "product_reference": "apache2-worker-2.4.43-3.32.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.43-3.32.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.ppc64le"
        },
        "product_reference": "apache2-worker-2.4.43-3.32.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.43-3.32.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.s390x"
        },
        "product_reference": "apache2-worker-2.4.43-3.32.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.43-3.32.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.x86_64"
        },
        "product_reference": "apache2-worker-2.4.43-3.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.43-3.32.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.aarch64"
        },
        "product_reference": "apache2-devel-2.4.43-3.32.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.43-3.32.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.ppc64le"
        },
        "product_reference": "apache2-devel-2.4.43-3.32.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.43-3.32.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.s390x"
        },
        "product_reference": "apache2-devel-2.4.43-3.32.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-devel-2.4.43-3.32.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.x86_64"
        },
        "product_reference": "apache2-devel-2.4.43-3.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-doc-2.4.43-3.32.1.noarch as component of SUSE Linux Enterprise Module for Server Applications 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-doc-2.4.43-3.32.1.noarch"
        },
        "product_reference": "apache2-doc-2.4.43-3.32.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.43-3.32.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.aarch64"
        },
        "product_reference": "apache2-worker-2.4.43-3.32.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.43-3.32.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.ppc64le"
        },
        "product_reference": "apache2-worker-2.4.43-3.32.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.43-3.32.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.s390x"
        },
        "product_reference": "apache2-worker-2.4.43-3.32.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "apache2-worker-2.4.43-3.32.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.x86_64"
        },
        "product_reference": "apache2-worker-2.4.43-3.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP3"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-34798",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-34798"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Malformed requests may cause the server to dereference a NULL pointer. This issue affects Apache HTTP Server 2.4.48 and earlier.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-doc-2.4.43-3.32.1.noarch",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-doc-2.4.43-3.32.1.noarch",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-34798",
          "url": "https://www.suse.com/security/cve/CVE-2021-34798"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190669 for CVE-2021-34798",
          "url": "https://bugzilla.suse.com/1190669"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1191297 for CVE-2021-34798",
          "url": "https://bugzilla.suse.com/1191297"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-doc-2.4.43-3.32.1.noarch",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-doc-2.4.43-3.32.1.noarch",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-doc-2.4.43-3.32.1.noarch",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-doc-2.4.43-3.32.1.noarch",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2021-10-26T13:40:10Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-34798"
    },
    {
      "cve": "CVE-2021-36160",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-36160"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A carefully crafted request uri-path can cause mod_proxy_uwsgi to read above the allocated memory and crash (DoS). This issue affects Apache HTTP Server versions 2.4.30 to 2.4.48 (inclusive).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-doc-2.4.43-3.32.1.noarch",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-doc-2.4.43-3.32.1.noarch",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-36160",
          "url": "https://www.suse.com/security/cve/CVE-2021-36160"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190702 for CVE-2021-36160",
          "url": "https://bugzilla.suse.com/1190702"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-doc-2.4.43-3.32.1.noarch",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-doc-2.4.43-3.32.1.noarch",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-doc-2.4.43-3.32.1.noarch",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-doc-2.4.43-3.32.1.noarch",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2021-10-26T13:40:10Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-36160"
    },
    {
      "cve": "CVE-2021-39275",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-39275"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "ap_escape_quotes() may write beyond the end of a buffer when given malicious input. No included modules pass untrusted data to these functions, but third-party / external modules may. This issue affects Apache HTTP Server 2.4.48 and earlier.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-doc-2.4.43-3.32.1.noarch",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-doc-2.4.43-3.32.1.noarch",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-39275",
          "url": "https://www.suse.com/security/cve/CVE-2021-39275"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190666 for CVE-2021-39275",
          "url": "https://bugzilla.suse.com/1190666"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-doc-2.4.43-3.32.1.noarch",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-doc-2.4.43-3.32.1.noarch",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-doc-2.4.43-3.32.1.noarch",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-doc-2.4.43-3.32.1.noarch",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2021-10-26T13:40:10Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-39275"
    },
    {
      "cve": "CVE-2021-40438",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-40438"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue affects Apache HTTP Server 2.4.48 and earlier.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-doc-2.4.43-3.32.1.noarch",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-doc-2.4.43-3.32.1.noarch",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.aarch64",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.ppc64le",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.s390x",
          "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-40438",
          "url": "https://www.suse.com/security/cve/CVE-2021-40438"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190703 for CVE-2021-40438",
          "url": "https://bugzilla.suse.com/1190703"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-doc-2.4.43-3.32.1.noarch",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-doc-2.4.43-3.32.1.noarch",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-prefork-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP2:apache2-utils-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-prefork-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP3:apache2-utils-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Package Hub 15 SP3:apache2-event-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-devel-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-doc-2.4.43-3.32.1.noarch",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP2:apache2-worker-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-devel-2.4.43-3.32.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-doc-2.4.43-3.32.1.noarch",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.aarch64",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.ppc64le",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.s390x",
            "SUSE Linux Enterprise Module for Server Applications 15 SP3:apache2-worker-2.4.43-3.32.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2021-10-26T13:40:10Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-40438"
    }
  ]
}

VAR-202109-1805

Vulnerability from variot - Updated: 2024-07-23 21:51

Malformed requests may cause the server to dereference a NULL pointer. This issue affects Apache HTTP Server 2.4.48 and earlier. The server is fast, reliable and extensible through a simple API. No detailed vulnerability details are currently provided. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256

====================================================================
Red Hat Security Advisory

Synopsis: Important: httpd security update Advisory ID: RHSA-2022:0143-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2022:0143 Issue date: 2022-01-17 CVE Names: CVE-2021-26691 CVE-2021-34798 CVE-2021-39275 CVE-2021-44790 ==================================================================== 1. Summary:

An update for httpd is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Relevant releases/architectures:

Red Hat Enterprise Linux Client Optional (v. 7) - noarch, x86_64 Red Hat Enterprise Linux ComputeNode Optional (v. 7) - noarch, x86_64 Red Hat Enterprise Linux Server (v. 7) - noarch, ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 7) - noarch, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64

Security Fix(es):

httpd: mod_lua: Possible buffer overflow when parsing multipart content (CVE-2021-44790)
httpd: mod_session: Heap overflow via a crafted SessionHeader value (CVE-2021-26691)
httpd: NULL pointer dereference via malformed requests (CVE-2021-34798)
httpd: Out-of-bounds write in ap_escape_quotes() via malicious input (CVE-2021-39275)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution:

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

After installing the updated packages, the httpd daemon will be restarted automatically.

Bugs fixed (https://bugzilla.redhat.com/):

1966732 - CVE-2021-26691 httpd: mod_session: Heap overflow via a crafted SessionHeader value 2005119 - CVE-2021-39275 httpd: Out-of-bounds write in ap_escape_quotes() via malicious input 2005128 - CVE-2021-34798 httpd: NULL pointer dereference via malformed requests 2034674 - CVE-2021-44790 httpd: mod_lua: Possible buffer overflow when parsing multipart content

Package List:

Red Hat Enterprise Linux Client Optional (v. 7):

Source: httpd-2.4.6-97.el7_9.4.src.rpm

noarch: httpd-manual-2.4.6-97.el7_9.4.noarch.rpm

x86_64: httpd-2.4.6-97.el7_9.4.x86_64.rpm httpd-debuginfo-2.4.6-97.el7_9.4.x86_64.rpm httpd-devel-2.4.6-97.el7_9.4.x86_64.rpm httpd-tools-2.4.6-97.el7_9.4.x86_64.rpm mod_ldap-2.4.6-97.el7_9.4.x86_64.rpm mod_proxy_html-2.4.6-97.el7_9.4.x86_64.rpm mod_session-2.4.6-97.el7_9.4.x86_64.rpm mod_ssl-2.4.6-97.el7_9.4.x86_64.rpm

Red Hat Enterprise Linux ComputeNode Optional (v. 7):

Source: httpd-2.4.6-97.el7_9.4.src.rpm

noarch: httpd-manual-2.4.6-97.el7_9.4.noarch.rpm

Red Hat Enterprise Linux Server (v. 7):

Source: httpd-2.4.6-97.el7_9.4.src.rpm

noarch: httpd-manual-2.4.6-97.el7_9.4.noarch.rpm

ppc64: httpd-2.4.6-97.el7_9.4.ppc64.rpm httpd-debuginfo-2.4.6-97.el7_9.4.ppc64.rpm httpd-devel-2.4.6-97.el7_9.4.ppc64.rpm httpd-tools-2.4.6-97.el7_9.4.ppc64.rpm mod_session-2.4.6-97.el7_9.4.ppc64.rpm mod_ssl-2.4.6-97.el7_9.4.ppc64.rpm

ppc64le: httpd-2.4.6-97.el7_9.4.ppc64le.rpm httpd-debuginfo-2.4.6-97.el7_9.4.ppc64le.rpm httpd-devel-2.4.6-97.el7_9.4.ppc64le.rpm httpd-tools-2.4.6-97.el7_9.4.ppc64le.rpm mod_session-2.4.6-97.el7_9.4.ppc64le.rpm mod_ssl-2.4.6-97.el7_9.4.ppc64le.rpm

s390x: httpd-2.4.6-97.el7_9.4.s390x.rpm httpd-debuginfo-2.4.6-97.el7_9.4.s390x.rpm httpd-devel-2.4.6-97.el7_9.4.s390x.rpm httpd-tools-2.4.6-97.el7_9.4.s390x.rpm mod_session-2.4.6-97.el7_9.4.s390x.rpm mod_ssl-2.4.6-97.el7_9.4.s390x.rpm

x86_64: httpd-2.4.6-97.el7_9.4.x86_64.rpm httpd-debuginfo-2.4.6-97.el7_9.4.x86_64.rpm httpd-devel-2.4.6-97.el7_9.4.x86_64.rpm httpd-tools-2.4.6-97.el7_9.4.x86_64.rpm mod_session-2.4.6-97.el7_9.4.x86_64.rpm mod_ssl-2.4.6-97.el7_9.4.x86_64.rpm

Red Hat Enterprise Linux Server Optional (v. 7):

ppc64: httpd-debuginfo-2.4.6-97.el7_9.4.ppc64.rpm mod_ldap-2.4.6-97.el7_9.4.ppc64.rpm mod_proxy_html-2.4.6-97.el7_9.4.ppc64.rpm

ppc64le: httpd-debuginfo-2.4.6-97.el7_9.4.ppc64le.rpm mod_ldap-2.4.6-97.el7_9.4.ppc64le.rpm mod_proxy_html-2.4.6-97.el7_9.4.ppc64le.rpm

s390x: httpd-debuginfo-2.4.6-97.el7_9.4.s390x.rpm mod_ldap-2.4.6-97.el7_9.4.s390x.rpm mod_proxy_html-2.4.6-97.el7_9.4.s390x.rpm

x86_64: httpd-debuginfo-2.4.6-97.el7_9.4.x86_64.rpm mod_ldap-2.4.6-97.el7_9.4.x86_64.rpm mod_proxy_html-2.4.6-97.el7_9.4.x86_64.rpm

Red Hat Enterprise Linux Workstation (v. 7):

Source: httpd-2.4.6-97.el7_9.4.src.rpm

noarch: httpd-manual-2.4.6-97.el7_9.4.noarch.rpm

x86_64: httpd-2.4.6-97.el7_9.4.x86_64.rpm httpd-debuginfo-2.4.6-97.el7_9.4.x86_64.rpm httpd-devel-2.4.6-97.el7_9.4.x86_64.rpm httpd-tools-2.4.6-97.el7_9.4.x86_64.rpm mod_session-2.4.6-97.el7_9.4.x86_64.rpm mod_ssl-2.4.6-97.el7_9.4.x86_64.rpm

Red Hat Enterprise Linux Workstation Optional (v. 7):

x86_64: httpd-debuginfo-2.4.6-97.el7_9.4.x86_64.rpm mod_ldap-2.4.6-97.el7_9.4.x86_64.rpm mod_proxy_html-2.4.6-97.el7_9.4.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/

References:

https://access.redhat.com/security/cve/CVE-2021-26691 https://access.redhat.com/security/cve/CVE-2021-34798 https://access.redhat.com/security/cve/CVE-2021-39275 https://access.redhat.com/security/cve/CVE-2021-44790 https://access.redhat.com/security/updates/classification/#important

Contact:

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/

iQIVAwUBYeVdC9zjgjWX9erEAQgzNw/8CjsxUvDW64dwvpcYH/OWJhKqvD53sX+w ivf4+hhCsEVLvrjD0eTNkbeza+dcZqoR5swL0IjAGXKJ/0q/oh4/yxq2ydgvEYsY rAjts0tnynoswBaFo6eaBlcNxQroGID0uqgXkUFt37m4eetACuOSVRcZ7/sNsqBS iQF4l16vjNvKeOdKY8nSNe77Dt1/Lj41NoL6XbAZPuvaiLBqqGOY9xYfZSSmFHFq H4dB8cfMC4cWysFtnzffJ+dJdzcWNOxklwLlZe72JoAJYP59da2YuIoE2LsQRGPC Occ84zH/UZx4JWJhF7FEEALC/tizfFqu9qWr1OIDmSVTEAZ+6IZ/mDeF83+0Mrc4 AiV3oiJi7Fx4XTDUL8fim+FORaSI2IR7LK1Zjau1qCN04ayyFXwJdK/fwgIWJHon gYhyUsAj7F7At9m8cCVRP5K4jjmr0qrmsF1M1B6xqMLWlYNcWu3obJS/FbiSdwQJ 7jFdBagThGOzIle0eGk0iMZ+vRJSuaSMZ7GDA14o46KB+EkvYLe+wi6jBQXJeD6Q Oueenu2JiMvB8+dJNYrn9uQY+8WHyCVV1HMMmVo9LajA1FJRXgMIQN5ZmDMoDW73 qFV+VCOHtKPI2hC8ngZYy2RyEUhK4t3f7xmJgtoJ4/DuaGsRWL7xZPL7gLHxWnS4 5VjPyLrWg5U=TyMo -----END PGP SIGNATURE-----

-- RHSA-announce mailing list RHSA-announce@redhat.com https://listman.redhat.com/mailman/listinfo/rhsa-announce . 8) - aarch64, noarch, ppc64le, s390x, x86_64

========================================================================== Ubuntu Security Notice USN-5090-3 September 28, 2021

apache2 regression

A security issue affects these releases of Ubuntu and its derivatives:

Ubuntu 21.04
Ubuntu 20.04 LTS
Ubuntu 18.04 LTS

Summary:

USN-5090-1 introduced a regression in Apache HTTP Server. One of the upstream fixes introduced a regression in UDS URIs. This update fixes the problem.

Original advisory details:

James Kettle discovered that the Apache HTTP Server HTTP/2 module incorrectly handled certain crafted methods. A remote attacker could possibly use this issue to perform request splitting or cache poisoning attacks. A remote attacker could possibly use this issue to cause the server to crash, resulting in a denial of service. (CVE-2021-34798) Li Zhi Xin discovered that the Apache mod_proxy_uwsgi module incorrectly handled certain request uri-paths. A remote attacker could possibly use this issue to cause the server to crash, resulting in a denial of service. This issue only affected Ubuntu 20.04 LTS and Ubuntu 21.04. If the server was configured with third-party modules, a remote attacker could use this issue to cause the server to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2021-39275) It was discovered that the Apache mod_proxy module incorrectly handled certain request uri-paths. A remote attacker could possibly use this issue to cause the server to forward requests to arbitrary origin servers. (CVE-2021-40438)

Update instructions:

The problem can be corrected by updating your system to the following package versions:

Ubuntu 21.04: apache2 2.4.46-4ubuntu1.3 apache2-bin 2.4.46-4ubuntu1.3

Ubuntu 20.04 LTS: apache2 2.4.41-4ubuntu3.6 apache2-bin 2.4.41-4ubuntu3.6

Ubuntu 18.04 LTS: apache2 2.4.29-1ubuntu4.18 apache2-bin 2.4.29-1ubuntu4.18

In general, a standard system update will make all the necessary changes. 7) - noarch, x86_64

Bug Fix(es):

proxy rewrite to unix socket fails with CVE-2021-40438 fix (BZ#2022319)

Additional changes:

To fix CVE-2022-29404, the default value for the "LimitRequestBody" directive in the Apache HTTP Server has been changed from 0 (unlimited) to 1 GiB.

On systems where the value of "LimitRequestBody" is not explicitly specified in an httpd configuration file, updating the httpd package sets "LimitRequestBody" to the default value of 1 GiB. As a consequence, if the total size of the HTTP request body exceeds this 1 GiB default limit, httpd returns the 413 Request Entity Too Large error code.

If the new default allowed size of an HTTP request message body is insufficient for your use case, update your httpd configuration files within the respective context (server, per-directory, per-file, or per-location) and set your preferred limit in bytes. For example, to set a new 2 GiB limit, use:

LimitRequestBody 2147483648

Systems already configured to use any explicit value for the "LimitRequestBody" directive are unaffected by this change.

For the oldstable distribution (buster), these problems have been fixed in version 2.4.38-3+deb10u6.

For the stable distribution (bullseye), these problems have been fixed in version 2.4.51-1~deb11u1.

We recommend that you upgrade your apache2 packages.

For the detailed security status of apache2 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/apache2

Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmFgr44ACgkQEMKTtsN8 TjbophAAiZ+fhF2r8BUbQkL8BhpfqjA+hVsp9WEMTn8Gq6kiW0wLvK3jWPM301Ou D4gHqKmFPmYNC1KBOyk/lJdxyD7iTUweUyLi3WXzxhIDMx0kxkRw1oXlyCHzIqSJ M277bgk32h2cDCbsXjrN/8agKPcKgfwDqiyf/igfEq6V8OB2zVvJPKVFq45n54+q 4FPXSyx1g2u5ewSeXbU2uHDej6Qborui4osDdbwx8CT6aETi0cIXJ8RbXF3PUCHG 5DzZagnRq6GumPsl01jcPu7b9Ck8MlkxMSG3FRsSIJVkwpsQ2C34ywIJkFlzUZZh jhdVUrfbyfLpSdcPcipAAjl9I6gDqa9SFdMRK7ixCpQ6iTiVeDZdJ8pA4jnSweNQ THik07di9R0juX0p7peQiIyBKrEf7Y3WSvLOn0SBKXvZnzc/72rH2nP5FclsgCsV TWxptziGridC43KB8/tDJAAOXVF2lzylzF70V/UGTNo1jk9w3/p6btU1iuzKspyY Y4aPZla3DImI8mezrgFrGYNg7bZYLKuJyGDADKih2sUQpzmDZ6MJxKAE3NLRWyQa 7cCJdoNR9yVqytEw1Y/ZRXAXWfMb3Y1ts2EqR8hzLQgMYb0JC58cLMG3T0RgyPoO A4CTIoYpK1WnsykAE8M4XFrnOW3lrtse6T8N/dTVMuodElAEhc0= =/At6 -----END PGP SIGNATURE----- . - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 202208-20

                                       https://security.gentoo.org/

Severity: High Title: Apache HTTPD: Multiple Vulnerabilities Date: August 14, 2022 Bugs: #813429, #816399, #816864, #829722, #835131, #850622 ID: 202208-20

Synopsis

Multiple vulnerabilities have been discovered in Apache Webserver, the worst of which could result in remote code execution. Please review the CVE identifiers referenced below for details.

Impact

Please review the referenced CVE identifiers for details.

Workaround

There is no known workaround at this time.

Resolution

All Apache HTTPD users should upgrade to the latest version:

# emerge --sync # emerge --ask --oneshot --verbose ">=www-servers/apache-2.4.54"

All Apache HTTPD tools users should upgrade to the latest version:

# emerge --sync # emerge --ask --oneshot --verbose ">=app-admin/apache-tools-2.4.54"

References

[ 1 ] CVE-2021-33193 https://nvd.nist.gov/vuln/detail/CVE-2021-33193 [ 2 ] CVE-2021-34798 https://nvd.nist.gov/vuln/detail/CVE-2021-34798 [ 3 ] CVE-2021-36160 https://nvd.nist.gov/vuln/detail/CVE-2021-36160 [ 4 ] CVE-2021-39275 https://nvd.nist.gov/vuln/detail/CVE-2021-39275 [ 5 ] CVE-2021-40438 https://nvd.nist.gov/vuln/detail/CVE-2021-40438 [ 6 ] CVE-2021-41524 https://nvd.nist.gov/vuln/detail/CVE-2021-41524 [ 7 ] CVE-2021-41773 https://nvd.nist.gov/vuln/detail/CVE-2021-41773 [ 8 ] CVE-2021-42013 https://nvd.nist.gov/vuln/detail/CVE-2021-42013 [ 9 ] CVE-2021-44224 https://nvd.nist.gov/vuln/detail/CVE-2021-44224 [ 10 ] CVE-2021-44790 https://nvd.nist.gov/vuln/detail/CVE-2021-44790 [ 11 ] CVE-2022-22719 https://nvd.nist.gov/vuln/detail/CVE-2022-22719 [ 12 ] CVE-2022-22720 https://nvd.nist.gov/vuln/detail/CVE-2022-22720 [ 13 ] CVE-2022-22721 https://nvd.nist.gov/vuln/detail/CVE-2022-22721 [ 14 ] CVE-2022-23943 https://nvd.nist.gov/vuln/detail/CVE-2022-23943 [ 15 ] CVE-2022-26377 https://nvd.nist.gov/vuln/detail/CVE-2022-26377 [ 16 ] CVE-2022-28614 https://nvd.nist.gov/vuln/detail/CVE-2022-28614 [ 17 ] CVE-2022-28615 https://nvd.nist.gov/vuln/detail/CVE-2022-28615 [ 18 ] CVE-2022-29404 https://nvd.nist.gov/vuln/detail/CVE-2022-29404 [ 19 ] CVE-2022-30522 https://nvd.nist.gov/vuln/detail/CVE-2022-30522 [ 20 ] CVE-2022-30556 https://nvd.nist.gov/vuln/detail/CVE-2022-30556 [ 21 ] CVE-2022-31813 https://nvd.nist.gov/vuln/detail/CVE-2022-31813

Availability

This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

https://security.gentoo.org/glsa/202208-20

Concerns?

Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org.

License

The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-202109-1805",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "clustered data ontap",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "netapp",
        "version": null
      },
      {
        "model": "http server",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "oracle",
        "version": "12.2.1.3.0"
      },
      {
        "model": "sinema server",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "siemens",
        "version": "14.0"
      },
      {
        "model": "communications cloud native core network function cloud native environment",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "oracle",
        "version": "1.10.0"
      },
      {
        "model": "linux",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "debian",
        "version": "10.0"
      },
      {
        "model": "linux",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "debian",
        "version": "11.0"
      },
      {
        "model": "linux",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "debian",
        "version": "9.0"
      },
      {
        "model": "fedora",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "fedoraproject",
        "version": "34"
      },
      {
        "model": "http server",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "oracle",
        "version": "12.2.1.4.0"
      },
      {
        "model": "storagegrid",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "netapp",
        "version": null
      },
      {
        "model": "instantis enterprisetrack",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "oracle",
        "version": "17.2"
      },
      {
        "model": "zfs storage appliance kit",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "oracle",
        "version": "8.8"
      },
      {
        "model": "tenable.sc",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "tenable",
        "version": "5.19.1"
      },
      {
        "model": "peoplesoft enterprise peopletools",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "oracle",
        "version": "8.58"
      },
      {
        "model": "instantis enterprisetrack",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "oracle",
        "version": "17.3"
      },
      {
        "model": "enterprise manager base platform",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "oracle",
        "version": "13.5.0.0"
      },
      {
        "model": "instantis enterprisetrack",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "oracle",
        "version": "17.1"
      },
      {
        "model": "sinema remote connect server",
        "scope": "lt",
        "trust": 1.0,
        "vendor": "siemens",
        "version": "3.1"
      },
      {
        "model": "brocade fabric operating system",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "broadcom",
        "version": null
      },
      {
        "model": "cloud backup",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "netapp",
        "version": null
      },
      {
        "model": "ruggedcom nms",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "siemens",
        "version": "*"
      },
      {
        "model": "enterprise manager base platform",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "oracle",
        "version": "13.4.0.0"
      },
      {
        "model": "fedora",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "fedoraproject",
        "version": "35"
      },
      {
        "model": "sinec nms",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "siemens",
        "version": "*"
      },
      {
        "model": "http server",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "apache",
        "version": "2.4.48"
      },
      {
        "model": "fedora",
        "scope": null,
        "trust": 0.8,
        "vendor": "fedora",
        "version": null
      },
      {
        "model": "http server",
        "scope": null,
        "trust": 0.8,
        "vendor": "apache",
        "version": null
      },
      {
        "model": "http server",
        "scope": "lte",
        "trust": 0.6,
        "vendor": "apache",
        "version": "\u003c=2.4.48"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2022-03223"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-002671"
      },
      {
        "db": "NVD",
        "id": "CVE-2021-34798"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "2.4.48",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:netapp:storagegrid:-:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:netapp:clustered_data_ontap:-:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:tenable:tenable.sc:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "5.19.1",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:oracle:http_server:12.2.1.3.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:instantis_enterprisetrack:17.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:instantis_enterprisetrack:17.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:instantis_enterprisetrack:17.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:enterprise_manager_base_platform:13.4.0.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:enterprise_manager_base_platform:13.5.0.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:1.10.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:broadcom:brocade_fabric_operating_system_firmware:-:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:siemens:sinema_server:14.0:-:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:siemens:sinema_remote_connect_server:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "3.1",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:siemens:ruggedcom_nms:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:siemens:sinec_nms:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2021-34798"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Siemens reported these vulnerabilities to CISA.",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-202109-1109"
      }
    ],
    "trust": 0.6
  },
  "cve": "CVE-2021-34798",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "acInsufInfo": false,
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "NVD",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 10.0,
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "obtainAllPrivilege": false,
            "obtainOtherPrivilege": false,
            "obtainUserPrivilege": false,
            "severity": "MEDIUM",
            "trust": 1.0,
            "userInteractionRequired": false,
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "Low",
            "accessVector": "Network",
            "authentication": "None",
            "author": "NVD",
            "availabilityImpact": "Partial",
            "baseScore": 5.0,
            "confidentialityImpact": "None",
            "exploitabilityScore": null,
            "id": "CVE-2021-34798",
            "impactScore": null,
            "integrityImpact": "None",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "Medium",
            "trust": 0.9,
            "userInteractionRequired": null,
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "CNVD",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 10.0,
            "id": "CNVD-2022-03223",
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "severity": "MEDIUM",
            "trust": 0.6,
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 10.0,
            "id": "VHN-395042",
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "severity": "MEDIUM",
            "trust": 0.1,
            "vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:P",
            "version": "2.0"
          }
        ],
        "cvssV3": [
          {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "author": "NVD",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 3.9,
            "impactScore": 3.6,
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "trust": 1.0,
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          {
            "attackComplexity": "Low",
            "attackVector": "Network",
            "author": "NVD",
            "availabilityImpact": "High",
            "baseScore": 7.5,
            "baseSeverity": "High",
            "confidentialityImpact": "None",
            "exploitabilityScore": null,
            "id": "CVE-2021-34798",
            "impactScore": null,
            "integrityImpact": "None",
            "privilegesRequired": "None",
            "scope": "Unchanged",
            "trust": 0.8,
            "userInteraction": "None",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          }
        ],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2021-34798",
            "trust": 1.8,
            "value": "HIGH"
          },
          {
            "author": "CNVD",
            "id": "CNVD-2022-03223",
            "trust": 0.6,
            "value": "MEDIUM"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-202109-1109",
            "trust": 0.6,
            "value": "HIGH"
          },
          {
            "author": "VULHUB",
            "id": "VHN-395042",
            "trust": 0.1,
            "value": "MEDIUM"
          },
          {
            "author": "VULMON",
            "id": "CVE-2021-34798",
            "trust": 0.1,
            "value": "MEDIUM"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2022-03223"
      },
      {
        "db": "VULHUB",
        "id": "VHN-395042"
      },
      {
        "db": "VULMON",
        "id": "CVE-2021-34798"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-002671"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202109-1109"
      },
      {
        "db": "NVD",
        "id": "CVE-2021-34798"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Malformed requests may cause the server to dereference a NULL pointer. This issue affects Apache HTTP Server 2.4.48 and earlier. The server is fast, reliable and extensible through a simple API. No detailed vulnerability details are currently provided. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA256\n\n====================================================================                   \nRed Hat Security Advisory\n\nSynopsis:          Important: httpd security update\nAdvisory ID:       RHSA-2022:0143-01\nProduct:           Red Hat Enterprise Linux\nAdvisory URL:      https://access.redhat.com/errata/RHSA-2022:0143\nIssue date:        2022-01-17\nCVE Names:         CVE-2021-26691 CVE-2021-34798 CVE-2021-39275\n                   CVE-2021-44790\n====================================================================\n1. Summary:\n\nAn update for httpd is now available for Red Hat Enterprise Linux 7. \n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section. \n\n2. Relevant releases/architectures:\n\nRed Hat Enterprise Linux Client Optional (v. 7) - noarch, x86_64\nRed Hat Enterprise Linux ComputeNode Optional (v. 7) - noarch, x86_64\nRed Hat Enterprise Linux Server (v. 7) - noarch, ppc64, ppc64le, s390x, x86_64\nRed Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, s390x, x86_64\nRed Hat Enterprise Linux Workstation (v. 7) - noarch, x86_64\nRed Hat Enterprise Linux Workstation Optional (v. 7) - x86_64\n\n3. \n\nSecurity Fix(es):\n\n* httpd: mod_lua: Possible buffer overflow when parsing multipart content\n(CVE-2021-44790)\n\n* httpd: mod_session: Heap overflow via a crafted SessionHeader value\n(CVE-2021-26691)\n\n* httpd: NULL pointer dereference via malformed requests (CVE-2021-34798)\n\n* httpd: Out-of-bounds write in ap_escape_quotes() via malicious input\n(CVE-2021-39275)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE\npage(s) listed in the References section. \n\n4. Solution:\n\nFor details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, the httpd daemon will be restarted\nautomatically. \n\n5. Bugs fixed (https://bugzilla.redhat.com/):\n\n1966732 - CVE-2021-26691 httpd: mod_session: Heap overflow via a crafted SessionHeader value\n2005119 - CVE-2021-39275 httpd: Out-of-bounds write in ap_escape_quotes() via malicious input\n2005128 - CVE-2021-34798 httpd: NULL pointer dereference via malformed requests\n2034674 - CVE-2021-44790 httpd: mod_lua: Possible buffer overflow when parsing multipart content\n\n6. Package List:\n\nRed Hat Enterprise Linux Client Optional (v. 7):\n\nSource:\nhttpd-2.4.6-97.el7_9.4.src.rpm\n\nnoarch:\nhttpd-manual-2.4.6-97.el7_9.4.noarch.rpm\n\nx86_64:\nhttpd-2.4.6-97.el7_9.4.x86_64.rpm\nhttpd-debuginfo-2.4.6-97.el7_9.4.x86_64.rpm\nhttpd-devel-2.4.6-97.el7_9.4.x86_64.rpm\nhttpd-tools-2.4.6-97.el7_9.4.x86_64.rpm\nmod_ldap-2.4.6-97.el7_9.4.x86_64.rpm\nmod_proxy_html-2.4.6-97.el7_9.4.x86_64.rpm\nmod_session-2.4.6-97.el7_9.4.x86_64.rpm\nmod_ssl-2.4.6-97.el7_9.4.x86_64.rpm\n\nRed Hat Enterprise Linux ComputeNode Optional (v. 7):\n\nSource:\nhttpd-2.4.6-97.el7_9.4.src.rpm\n\nnoarch:\nhttpd-manual-2.4.6-97.el7_9.4.noarch.rpm\n\nx86_64:\nhttpd-2.4.6-97.el7_9.4.x86_64.rpm\nhttpd-debuginfo-2.4.6-97.el7_9.4.x86_64.rpm\nhttpd-devel-2.4.6-97.el7_9.4.x86_64.rpm\nhttpd-tools-2.4.6-97.el7_9.4.x86_64.rpm\nmod_ldap-2.4.6-97.el7_9.4.x86_64.rpm\nmod_proxy_html-2.4.6-97.el7_9.4.x86_64.rpm\nmod_session-2.4.6-97.el7_9.4.x86_64.rpm\nmod_ssl-2.4.6-97.el7_9.4.x86_64.rpm\n\nRed Hat Enterprise Linux Server (v. 7):\n\nSource:\nhttpd-2.4.6-97.el7_9.4.src.rpm\n\nnoarch:\nhttpd-manual-2.4.6-97.el7_9.4.noarch.rpm\n\nppc64:\nhttpd-2.4.6-97.el7_9.4.ppc64.rpm\nhttpd-debuginfo-2.4.6-97.el7_9.4.ppc64.rpm\nhttpd-devel-2.4.6-97.el7_9.4.ppc64.rpm\nhttpd-tools-2.4.6-97.el7_9.4.ppc64.rpm\nmod_session-2.4.6-97.el7_9.4.ppc64.rpm\nmod_ssl-2.4.6-97.el7_9.4.ppc64.rpm\n\nppc64le:\nhttpd-2.4.6-97.el7_9.4.ppc64le.rpm\nhttpd-debuginfo-2.4.6-97.el7_9.4.ppc64le.rpm\nhttpd-devel-2.4.6-97.el7_9.4.ppc64le.rpm\nhttpd-tools-2.4.6-97.el7_9.4.ppc64le.rpm\nmod_session-2.4.6-97.el7_9.4.ppc64le.rpm\nmod_ssl-2.4.6-97.el7_9.4.ppc64le.rpm\n\ns390x:\nhttpd-2.4.6-97.el7_9.4.s390x.rpm\nhttpd-debuginfo-2.4.6-97.el7_9.4.s390x.rpm\nhttpd-devel-2.4.6-97.el7_9.4.s390x.rpm\nhttpd-tools-2.4.6-97.el7_9.4.s390x.rpm\nmod_session-2.4.6-97.el7_9.4.s390x.rpm\nmod_ssl-2.4.6-97.el7_9.4.s390x.rpm\n\nx86_64:\nhttpd-2.4.6-97.el7_9.4.x86_64.rpm\nhttpd-debuginfo-2.4.6-97.el7_9.4.x86_64.rpm\nhttpd-devel-2.4.6-97.el7_9.4.x86_64.rpm\nhttpd-tools-2.4.6-97.el7_9.4.x86_64.rpm\nmod_session-2.4.6-97.el7_9.4.x86_64.rpm\nmod_ssl-2.4.6-97.el7_9.4.x86_64.rpm\n\nRed Hat Enterprise Linux Server Optional (v. 7):\n\nppc64:\nhttpd-debuginfo-2.4.6-97.el7_9.4.ppc64.rpm\nmod_ldap-2.4.6-97.el7_9.4.ppc64.rpm\nmod_proxy_html-2.4.6-97.el7_9.4.ppc64.rpm\n\nppc64le:\nhttpd-debuginfo-2.4.6-97.el7_9.4.ppc64le.rpm\nmod_ldap-2.4.6-97.el7_9.4.ppc64le.rpm\nmod_proxy_html-2.4.6-97.el7_9.4.ppc64le.rpm\n\ns390x:\nhttpd-debuginfo-2.4.6-97.el7_9.4.s390x.rpm\nmod_ldap-2.4.6-97.el7_9.4.s390x.rpm\nmod_proxy_html-2.4.6-97.el7_9.4.s390x.rpm\n\nx86_64:\nhttpd-debuginfo-2.4.6-97.el7_9.4.x86_64.rpm\nmod_ldap-2.4.6-97.el7_9.4.x86_64.rpm\nmod_proxy_html-2.4.6-97.el7_9.4.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation (v. 7):\n\nSource:\nhttpd-2.4.6-97.el7_9.4.src.rpm\n\nnoarch:\nhttpd-manual-2.4.6-97.el7_9.4.noarch.rpm\n\nx86_64:\nhttpd-2.4.6-97.el7_9.4.x86_64.rpm\nhttpd-debuginfo-2.4.6-97.el7_9.4.x86_64.rpm\nhttpd-devel-2.4.6-97.el7_9.4.x86_64.rpm\nhttpd-tools-2.4.6-97.el7_9.4.x86_64.rpm\nmod_session-2.4.6-97.el7_9.4.x86_64.rpm\nmod_ssl-2.4.6-97.el7_9.4.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation Optional (v. 7):\n\nx86_64:\nhttpd-debuginfo-2.4.6-97.el7_9.4.x86_64.rpm\nmod_ldap-2.4.6-97.el7_9.4.x86_64.rpm\nmod_proxy_html-2.4.6-97.el7_9.4.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security.  Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/\n\n7. References:\n\nhttps://access.redhat.com/security/cve/CVE-2021-26691\nhttps://access.redhat.com/security/cve/CVE-2021-34798\nhttps://access.redhat.com/security/cve/CVE-2021-39275\nhttps://access.redhat.com/security/cve/CVE-2021-44790\nhttps://access.redhat.com/security/updates/classification/#important\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2022 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1\n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\n5VjPyLrWg5U=TyMo\n-----END PGP SIGNATURE-----\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://listman.redhat.com/mailman/listinfo/rhsa-announce\n. 8) - aarch64, noarch, ppc64le, s390x, x86_64\n\n3. ==========================================================================\nUbuntu Security Notice USN-5090-3\nSeptember 28, 2021\n\napache2 regression\n==========================================================================\n\nA security issue affects these releases of Ubuntu and its derivatives:\n\n- Ubuntu 21.04\n- Ubuntu 20.04 LTS\n- Ubuntu 18.04 LTS\n\nSummary:\n\nUSN-5090-1 introduced a regression in Apache HTTP Server. One of the upstream\nfixes introduced a regression in UDS URIs. This update fixes the problem. \n\nOriginal advisory details:\n\n James Kettle discovered that the Apache HTTP Server HTTP/2 module\n incorrectly handled certain crafted methods. A remote attacker could\n possibly use this issue to perform request splitting or cache poisoning\n attacks. A remote attacker could possibly use this issue to\n cause the server to crash, resulting in a denial of service. \n (CVE-2021-34798)\n  Li Zhi Xin discovered that the Apache mod_proxy_uwsgi module incorrectly\n handled certain request uri-paths. A remote attacker could possibly use\n this issue to cause the server to crash, resulting in a denial of service. \n This issue only affected Ubuntu 20.04 LTS and Ubuntu 21.04. If the server was configured with third-party modules, a remote\n attacker could use this issue to cause the server to crash, resulting in a\n denial of service, or possibly execute arbitrary code. (CVE-2021-39275)\n  It was discovered that the Apache mod_proxy module incorrectly handled\n certain request uri-paths. A remote attacker could possibly use this issue\n to cause the server to forward requests to arbitrary origin servers. \n (CVE-2021-40438)\n\nUpdate instructions:\n\nThe problem can be corrected by updating your system to the following\npackage versions:\n\nUbuntu 21.04:\n  apache2                         2.4.46-4ubuntu1.3\n  apache2-bin                     2.4.46-4ubuntu1.3\n\nUbuntu 20.04 LTS:\n  apache2                         2.4.41-4ubuntu3.6\n  apache2-bin                     2.4.41-4ubuntu3.6\n\nUbuntu 18.04 LTS:\n  apache2                         2.4.29-1ubuntu4.18\n  apache2-bin                     2.4.29-1ubuntu4.18\n\nIn general, a standard system update will make all the necessary changes. 7) - noarch, x86_64\n\n3. \n\nBug Fix(es):\n\n* proxy rewrite to unix socket fails with CVE-2021-40438 fix (BZ#2022319)\n\nAdditional changes:\n\n* To fix CVE-2022-29404, the default value for the \"LimitRequestBody\"\ndirective in the Apache HTTP Server has been changed from 0 (unlimited) to\n1 GiB. \n\nOn systems where the value of \"LimitRequestBody\" is not explicitly\nspecified in an httpd configuration file, updating the httpd package sets\n\"LimitRequestBody\" to the default value of 1 GiB. As a consequence, if the\ntotal size of the HTTP request body exceeds this 1 GiB default limit, httpd\nreturns the 413 Request Entity Too Large error code. \n\nIf the new default allowed size of an HTTP request message body is\ninsufficient for your use case, update your httpd configuration files\nwithin the respective context (server, per-directory, per-file, or\nper-location) and set your preferred limit in bytes. For example, to set a\nnew 2 GiB limit, use:\n\nLimitRequestBody 2147483648\n\nSystems already configured to use any explicit value for the\n\"LimitRequestBody\" directive are unaffected by this change. \n\nFor the oldstable distribution (buster), these problems have been fixed\nin version 2.4.38-3+deb10u6. \n\nFor the stable distribution (bullseye), these problems have been fixed in\nversion 2.4.51-1~deb11u1. \n\nWe recommend that you upgrade your apache2 packages. \n\nFor the detailed security status of apache2 please refer to\nits security tracker page at:\nhttps://security-tracker.debian.org/tracker/apache2\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: https://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n-----BEGIN PGP SIGNATURE-----\n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\nA4CTIoYpK1WnsykAE8M4XFrnOW3lrtse6T8N/dTVMuodElAEhc0=\n=/At6\n-----END PGP SIGNATURE-----\n. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\nGentoo Linux Security Advisory                           GLSA 202208-20\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n                                           https://security.gentoo.org/\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\n Severity: High\n    Title: Apache HTTPD: Multiple Vulnerabilities\n     Date: August 14, 2022\n     Bugs: #813429, #816399, #816864, #829722, #835131, #850622\n       ID: 202208-20\n\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\nSynopsis\n=======\nMultiple vulnerabilities have been discovered in Apache Webserver, the\nworst of which could result in remote code execution. Please\nreview the CVE identifiers referenced below for details. \n\nImpact\n=====\nPlease review the referenced CVE identifiers for details. \n\nWorkaround\n=========\nThere is no known workaround at this time. \n\nResolution\n=========\nAll Apache HTTPD users should upgrade to the latest version:\n\n  # emerge --sync\n  # emerge --ask --oneshot --verbose \"\u003e=www-servers/apache-2.4.54\"\n\nAll Apache HTTPD tools users should upgrade to the latest version:\n\n  # emerge --sync\n  # emerge --ask --oneshot --verbose \"\u003e=app-admin/apache-tools-2.4.54\"\n\nReferences\n=========\n[ 1 ] CVE-2021-33193\n      https://nvd.nist.gov/vuln/detail/CVE-2021-33193\n[ 2 ] CVE-2021-34798\n      https://nvd.nist.gov/vuln/detail/CVE-2021-34798\n[ 3 ] CVE-2021-36160\n      https://nvd.nist.gov/vuln/detail/CVE-2021-36160\n[ 4 ] CVE-2021-39275\n      https://nvd.nist.gov/vuln/detail/CVE-2021-39275\n[ 5 ] CVE-2021-40438\n      https://nvd.nist.gov/vuln/detail/CVE-2021-40438\n[ 6 ] CVE-2021-41524\n      https://nvd.nist.gov/vuln/detail/CVE-2021-41524\n[ 7 ] CVE-2021-41773\n      https://nvd.nist.gov/vuln/detail/CVE-2021-41773\n[ 8 ] CVE-2021-42013\n      https://nvd.nist.gov/vuln/detail/CVE-2021-42013\n[ 9 ] CVE-2021-44224\n      https://nvd.nist.gov/vuln/detail/CVE-2021-44224\n[ 10 ] CVE-2021-44790\n      https://nvd.nist.gov/vuln/detail/CVE-2021-44790\n[ 11 ] CVE-2022-22719\n      https://nvd.nist.gov/vuln/detail/CVE-2022-22719\n[ 12 ] CVE-2022-22720\n      https://nvd.nist.gov/vuln/detail/CVE-2022-22720\n[ 13 ] CVE-2022-22721\n      https://nvd.nist.gov/vuln/detail/CVE-2022-22721\n[ 14 ] CVE-2022-23943\n      https://nvd.nist.gov/vuln/detail/CVE-2022-23943\n[ 15 ] CVE-2022-26377\n      https://nvd.nist.gov/vuln/detail/CVE-2022-26377\n[ 16 ] CVE-2022-28614\n      https://nvd.nist.gov/vuln/detail/CVE-2022-28614\n[ 17 ] CVE-2022-28615\n      https://nvd.nist.gov/vuln/detail/CVE-2022-28615\n[ 18 ] CVE-2022-29404\n      https://nvd.nist.gov/vuln/detail/CVE-2022-29404\n[ 19 ] CVE-2022-30522\n      https://nvd.nist.gov/vuln/detail/CVE-2022-30522\n[ 20 ] CVE-2022-30556\n      https://nvd.nist.gov/vuln/detail/CVE-2022-30556\n[ 21 ] CVE-2022-31813\n      https://nvd.nist.gov/vuln/detail/CVE-2022-31813\n\nAvailability\n===========\nThis GLSA and any updates to it are available for viewing at\nthe Gentoo Security Website:\n\n https://security.gentoo.org/glsa/202208-20\n\nConcerns?\n========\nSecurity is a primary focus of Gentoo Linux and ensuring the\nconfidentiality and security of our users\u0027 machines is of utmost\nimportance to us. Any security concerns should be addressed to\nsecurity@gentoo.org or alternatively, you may file a bug at\nhttps://bugs.gentoo.org. \n\nLicense\n======\nCopyright 2022 Gentoo Foundation, Inc; referenced text\nbelongs to its owner(s). \n\nThe contents of this document are licensed under the\nCreative Commons - Attribution / Share Alike license. \n\nhttps://creativecommons.org/licenses/by-sa/2.5\n",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2021-34798"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-002671"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2022-03223"
      },
      {
        "db": "VULHUB",
        "id": "VHN-395042"
      },
      {
        "db": "VULMON",
        "id": "CVE-2021-34798"
      },
      {
        "db": "PACKETSTORM",
        "id": "165587"
      },
      {
        "db": "PACKETSTORM",
        "id": "166321"
      },
      {
        "db": "PACKETSTORM",
        "id": "164305"
      },
      {
        "db": "PACKETSTORM",
        "id": "164329"
      },
      {
        "db": "PACKETSTORM",
        "id": "164318"
      },
      {
        "db": "PACKETSTORM",
        "id": "168565"
      },
      {
        "db": "PACKETSTORM",
        "id": "169132"
      },
      {
        "db": "PACKETSTORM",
        "id": "168072"
      }
    ],
    "trust": 3.06
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2021-34798",
        "trust": 4.0
      },
      {
        "db": "TENABLE",
        "id": "TNS-2021-17",
        "trust": 1.8
      },
      {
        "db": "MCAFEE",
        "id": "SB10379",
        "trust": 1.8
      },
      {
        "db": "SIEMENS",
        "id": "SSA-685781",
        "trust": 1.8
      },
      {
        "db": "PACKETSTORM",
        "id": "165587",
        "trust": 0.8
      },
      {
        "db": "PACKETSTORM",
        "id": "166321",
        "trust": 0.8
      },
      {
        "db": "PACKETSTORM",
        "id": "168072",
        "trust": 0.8
      },
      {
        "db": "PACKETSTORM",
        "id": "168565",
        "trust": 0.8
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-002671",
        "trust": 0.8
      },
      {
        "db": "CNVD",
        "id": "CNVD-2022-03223",
        "trust": 0.7
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202109-1109",
        "trust": 0.7
      },
      {
        "db": "ICS CERT",
        "id": "ICSA-22-167-06",
        "trust": 0.7
      },
      {
        "db": "PACKETSTORM",
        "id": "164329",
        "trust": 0.7
      },
      {
        "db": "PACKETSTORM",
        "id": "164318",
        "trust": 0.7
      },
      {
        "db": "CS-HELP",
        "id": "SB2022012040",
        "trust": 0.6
      },
      {
        "db": "CS-HELP",
        "id": "SB2021101308",
        "trust": 0.6
      },
      {
        "db": "CS-HELP",
        "id": "SB2022030119",
        "trust": 0.6
      },
      {
        "db": "CS-HELP",
        "id": "SB2021092301",
        "trust": 0.6
      },
      {
        "db": "CS-HELP",
        "id": "SB2022051316",
        "trust": 0.6
      },
      {
        "db": "CS-HELP",
        "id": "SB2022031528",
        "trust": 0.6
      },
      {
        "db": "CS-HELP",
        "id": "SB2022011749",
        "trust": 0.6
      },
      {
        "db": "CS-HELP",
        "id": "SB2021091707",
        "trust": 0.6
      },
      {
        "db": "CS-HELP",
        "id": "SB2021101513",
        "trust": 0.6
      },
      {
        "db": "CS-HELP",
        "id": "SB2021101922",
        "trust": 0.6
      },
      {
        "db": "CS-HELP",
        "id": "SB2021101005",
        "trust": 0.6
      },
      {
        "db": "CS-HELP",
        "id": "SB2022060624",
        "trust": 0.6
      },
      {
        "db": "CS-HELP",
        "id": "SB2021101101",
        "trust": 0.6
      },
      {
        "db": "CS-HELP",
        "id": "SB2022042112",
        "trust": 0.6
      },
      {
        "db": "CS-HELP",
        "id": "SB2021112902",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2021.3229",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2021.3405",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2021.3341",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2021.4004.7",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2021.3148",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2021.3591",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2022.0850",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2021.3482",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2022.2978",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2021.4004.5",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2021.4004.2",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2022.2352",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2022.0217",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2021.3357",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2021.3250",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2021.4004.3",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2021.3387",
        "trust": 0.6
      },
      {
        "db": "ICS CERT",
        "id": "ICSA-22-132-02",
        "trust": 0.6
      },
      {
        "db": "VULHUB",
        "id": "VHN-395042",
        "trust": 0.1
      },
      {
        "db": "VULMON",
        "id": "CVE-2021-34798",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "164305",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "169132",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2022-03223"
      },
      {
        "db": "VULHUB",
        "id": "VHN-395042"
      },
      {
        "db": "VULMON",
        "id": "CVE-2021-34798"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-002671"
      },
      {
        "db": "PACKETSTORM",
        "id": "165587"
      },
      {
        "db": "PACKETSTORM",
        "id": "166321"
      },
      {
        "db": "PACKETSTORM",
        "id": "164305"
      },
      {
        "db": "PACKETSTORM",
        "id": "164329"
      },
      {
        "db": "PACKETSTORM",
        "id": "164318"
      },
      {
        "db": "PACKETSTORM",
        "id": "168565"
      },
      {
        "db": "PACKETSTORM",
        "id": "169132"
      },
      {
        "db": "PACKETSTORM",
        "id": "168072"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202109-1109"
      },
      {
        "db": "NVD",
        "id": "CVE-2021-34798"
      }
    ]
  },
  "id": "VAR-202109-1805",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2022-03223"
      },
      {
        "db": "VULHUB",
        "id": "VHN-395042"
      }
    ],
    "trust": 1.2952380933333334
  },
  "iot_taxonomy": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "category": [
          "Network device"
        ],
        "sub_category": null,
        "trust": 0.6
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2022-03223"
      }
    ]
  },
  "last_update_date": "2024-07-23T21:51:04.963000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "FEDORA-2021-e3f6dd670d",
        "trust": 0.8,
        "url": "http://httpd.apache.org/security/vulnerabilities_24.html"
      },
      {
        "title": "Patch for Apache HTTP Server Code Issue Vulnerability",
        "trust": 0.6,
        "url": "https://www.cnvd.org.cn/patchinfo/show/313156"
      },
      {
        "title": "Apache HTTP Server Fixes for code issue vulnerabilities",
        "trust": 0.6,
        "url": "http://123.124.177.30/web/xxk/bdxqbyid.tag?id=171210"
      },
      {
        "title": "Red Hat: Moderate: httpd:2.4 security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=rhsa-20220891 - security advisory"
      },
      {
        "title": "Red Hat: CVE-2021-34798",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_cve_database\u0026qid=cve-2021-34798"
      },
      {
        "title": "Debian Security Advisories: DSA-4982-1 apache2 -- security update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=93a29f7ecf9a6aaba79d3b3320aa4b85"
      },
      {
        "title": "Arch Linux Issues: ",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=arch_linux_issues\u0026qid=cve-2021-34798 log"
      },
      {
        "title": "Red Hat: Moderate: httpd24-httpd security and bug fix update",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=rhsa-20226753 - security advisory"
      },
      {
        "title": "Tenable Security Advisories: [R1] Stand-alone Security Patch Available for Tenable.sc versions 5.16.0 to 5.19.1: Patch 202110.1",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=tenable_security_advisories\u0026qid=tns-2021-17"
      },
      {
        "title": "Brocade Security Advisories: CVE-2021-34798. NULL pointer dereference in httpd core.",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=brocade_security_advisories\u0026qid=2142ed2ad0c6564b6dfdd2779d3117ce"
      },
      {
        "title": "Brocade Security Advisories: Access Denied",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=brocade_security_advisories\u0026qid=3499da969fe529a2e6d5812690c8f102"
      },
      {
        "title": "Amazon Linux AMI: ALAS-2021-1543",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami\u0026qid=alas-2021-1543"
      },
      {
        "title": "Amazon Linux 2: ALAS2-2021-1716",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux2\u0026qid=alas2-2021-1716"
      },
      {
        "title": "Cisco: Multiple Vulnerabilities in Apache HTTP Server Affecting Cisco Products: November 2021",
        "trust": 0.1,
        "url": "https://vulmon.com/vendoradvisory?qidtp=cisco_security_advisories_and_alerts_ciscoproducts\u0026qid=cisco-sa-apache-httpd-2.4.49-vwl69swq"
      },
      {
        "title": "PROJET TUTEURE",
        "trust": 0.1,
        "url": "https://github.com/pierrechrd/py-projet-tut "
      },
      {
        "title": "Tier 0\nTier 1\nTier 2",
        "trust": 0.1,
        "url": "https://github.com/totes5706/toteshtb "
      },
      {
        "title": "Requirements\nvulnsearch-cve\nUsage\nvulnsearch\nUsage\nTest Sample",
        "trust": 0.1,
        "url": "https://github.com/kasem545/vulnsearch "
      },
      {
        "title": "Skynet",
        "trust": 0.1,
        "url": "https://github.com/bioly230/thm_skynet "
      },
      {
        "title": "Shodan Search Script",
        "trust": 0.1,
        "url": "https://github.com/firatesatoglu/shodansearch "
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2022-03223"
      },
      {
        "db": "VULMON",
        "id": "CVE-2021-34798"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-002671"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202109-1109"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-476",
        "trust": 1.1
      },
      {
        "problemtype": "NULL Pointer dereference (CWE-476) [NVD Evaluation ]",
        "trust": 0.8
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-395042"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-002671"
      },
      {
        "db": "NVD",
        "id": "CVE-2021-34798"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 2.2,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2021-34798"
      },
      {
        "trust": 1.9,
        "url": "https://security.gentoo.org/glsa/202208-20"
      },
      {
        "trust": 1.8,
        "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-685781.pdf"
      },
      {
        "trust": 1.8,
        "url": "https://security.netapp.com/advisory/ntap-20211008-0004/"
      },
      {
        "trust": 1.8,
        "url": "https://www.tenable.com/security/tns-2021-17"
      },
      {
        "trust": 1.8,
        "url": "https://www.debian.org/security/2021/dsa-4982"
      },
      {
        "trust": 1.8,
        "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
      },
      {
        "trust": 1.8,
        "url": "https://www.oracle.com/security-alerts/cpujan2022.html"
      },
      {
        "trust": 1.8,
        "url": "https://lists.debian.org/debian-lts-announce/2021/10/msg00001.html"
      },
      {
        "trust": 1.7,
        "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=sb10379"
      },
      {
        "trust": 1.2,
        "url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-apache-httpd-2.4.49-vwl69swq"
      },
      {
        "trust": 1.2,
        "url": "http://httpd.apache.org/security/vulnerabilities_24.html"
      },
      {
        "trust": 1.2,
        "url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-apache-"
      },
      {
        "trust": 1.1,
        "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/spbr6wuybjnachke65spl7tjohx7rhwd/"
      },
      {
        "trust": 1.1,
        "url": "https://lists.apache.org/thread.html/r82838efc5fa6fc4c73986399c9b71573589f78b31846aff5bd9b1697%40%3cusers.httpd.apache.org%3e"
      },
      {
        "trust": 1.1,
        "url": "https://lists.apache.org/thread.html/r82c077663f9759c7df5a6656f925b3ee4f55fcd33c889ba7cd687029%40%3cusers.httpd.apache.org%3e"
      },
      {
        "trust": 1.1,
        "url": "https://lists.apache.org/thread.html/r3925e167d5eb1c75def3750c155d753064e1d34a143028bb32910432%40%3cusers.httpd.apache.org%3e"
      },
      {
        "trust": 1.1,
        "url": "https://lists.apache.org/thread.html/r61fdbfc26ab170f4e6492ef3bd5197c20b862ce156e9d5a54d4b899c%40%3cusers.httpd.apache.org%3e"
      },
      {
        "trust": 1.1,
        "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/zncysr3bxt36fff4xtcpl3hdqk4vp45r/"
      },
      {
        "trust": 1.0,
        "url": "https://access.redhat.com/security/cve/cve-2021-34798"
      },
      {
        "trust": 0.8,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2021-39275"
      },
      {
        "trust": 0.7,
        "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/spbr6wuybjnachke65spl7tjohx7rhwd/"
      },
      {
        "trust": 0.7,
        "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/zncysr3bxt36fff4xtcpl3hdqk4vp45r/"
      },
      {
        "trust": 0.6,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2021-34798"
      },
      {
        "trust": 0.6,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2021-36160"
      },
      {
        "trust": 0.6,
        "url": "httpd.apache.org/security/vulnerabilities_24.html"
      },
      {
        "trust": 0.6,
        "url": "http://"
      },
      {
        "trust": 0.6,
        "url": "httpd.apache.org%3e"
      },
      {
        "trust": 0.6,
        "url": "https://lists.apache.org/thread.html/r82c077663f9759c7df5a6656f925b3ee4f55fcd33c889ba7cd687029@%3cusers."
      },
      {
        "trust": 0.6,
        "url": "https://lists.apache.org/thread.html/r82838efc5fa6fc4c73986399c9b71573589f78b31846aff5bd9b1697@%3cusers."
      },
      {
        "trust": 0.6,
        "url": "https://lists.apache.org/thread.html/r61fdbfc26ab170f4e6492ef3bd5197c20b862ce156e9d5a54d4b899c@%3cusers."
      },
      {
        "trust": 0.6,
        "url": "https://lists.apache.org/thread.html/r3925e167d5eb1c75def3750c155d753064e1d34a143028bb32910432@%3cusers."
      },
      {
        "trust": 0.6,
        "url": "https://www.cybersecurity-help.cz/vdb/sb2022051316"
      },
      {
        "trust": 0.6,
        "url": "https://www.cybersecurity-help.cz/vdb/sb2022030119"
      },
      {
        "trust": 0.6,
        "url": "https://www.cybersecurity-help.cz/vdb/sb2022031528"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2021.3229"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2021.3405"
      },
      {
        "trust": 0.6,
        "url": "https://packetstormsecurity.com/files/165587/red-hat-security-advisory-2022-0143-03.html"
      },
      {
        "trust": 0.6,
        "url": "https://packetstormsecurity.com/files/166321/red-hat-security-advisory-2022-0891-01.html"
      },
      {
        "trust": 0.6,
        "url": "https://www.cybersecurity-help.cz/vdb/sb2021112902"
      },
      {
        "trust": 0.6,
        "url": "https://www.cybersecurity-help.cz/vdb/sb2022060624"
      },
      {
        "trust": 0.6,
        "url": "https://www.cybersecurity-help.cz/vdb/sb2021101513"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2021.3357"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2022.2352"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2022.0217"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2021.3250"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2021.3591"
      },
      {
        "trust": 0.6,
        "url": "https://packetstormsecurity.com/files/168072/gentoo-linux-security-advisory-202208-20.html"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2021.4004.7"
      },
      {
        "trust": 0.6,
        "url": "https://packetstormsecurity.com/files/164318/ubuntu-security-notice-usn-5090-3.html"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2022.0850"
      },
      {
        "trust": 0.6,
        "url": "https://www.ibm.com/support/pages/node/6520016"
      },
      {
        "trust": 0.6,
        "url": "https://us-cert.cisa.gov/ics/advisories/icsa-22-167-06"
      },
      {
        "trust": 0.6,
        "url": "https://packetstormsecurity.com/files/168565/red-hat-security-advisory-2022-6753-01.html"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2022.2978"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2021.4004.3"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2021.4004.2"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2021.4004.5"
      },
      {
        "trust": 0.6,
        "url": "https://www.cybersecurity-help.cz/vdb/sb2022012040"
      },
      {
        "trust": 0.6,
        "url": "https://www.cybersecurity-help.cz/vdb/sb2022011749"
      },
      {
        "trust": 0.6,
        "url": "https://us-cert.cisa.gov/ics/advisories/icsa-22-132-02"
      },
      {
        "trust": 0.6,
        "url": "https://www.cybersecurity-help.cz/vdb/sb2022042112"
      },
      {
        "trust": 0.6,
        "url": "https://www.cybersecurity-help.cz/vdb/sb2021092301"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2021.3387"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2021.3341"
      },
      {
        "trust": 0.6,
        "url": "https://www.cybersecurity-help.cz/vdb/sb2021101922"
      },
      {
        "trust": 0.6,
        "url": "https://packetstormsecurity.com/files/164329/ubuntu-security-notice-usn-5090-4.html"
      },
      {
        "trust": 0.6,
        "url": "https://www.cybersecurity-help.cz/vdb/sb2021101308"
      },
      {
        "trust": 0.6,
        "url": "httpd-2.4.49-vwl69swq"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2021.3148"
      },
      {
        "trust": 0.6,
        "url": "https://www.cybersecurity-help.cz/vdb/sb2021091707"
      },
      {
        "trust": 0.6,
        "url": "https://www.cybersecurity-help.cz/vdb/sb2021101101"
      },
      {
        "trust": 0.6,
        "url": "https://vigilance.fr/vulnerability/apache-http-server-four-vulnerabilities-36444"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2021.3482"
      },
      {
        "trust": 0.6,
        "url": "https://www.cybersecurity-help.cz/vdb/sb2021101005"
      },
      {
        "trust": 0.5,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2021-33193"
      },
      {
        "trust": 0.5,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2021-40438"
      },
      {
        "trust": 0.3,
        "url": "https://listman.redhat.com/mailman/listinfo/rhsa-announce"
      },
      {
        "trust": 0.3,
        "url": "https://access.redhat.com/security/cve/cve-2021-39275"
      },
      {
        "trust": 0.3,
        "url": "https://access.redhat.com/articles/11258"
      },
      {
        "trust": 0.3,
        "url": "https://access.redhat.com/security/team/key/"
      },
      {
        "trust": 0.3,
        "url": "https://bugzilla.redhat.com/):"
      },
      {
        "trust": 0.3,
        "url": "https://access.redhat.com/security/team/contact/"
      },
      {
        "trust": 0.3,
        "url": "https://ubuntu.com/security/notices/usn-5090-1"
      },
      {
        "trust": 0.2,
        "url": "https://access.redhat.com/errata/rhsa-2022:0891"
      },
      {
        "trust": 0.2,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2021-44790"
      },
      {
        "trust": 0.2,
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "trust": 0.2,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2022-22721"
      },
      {
        "trust": 0.2,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2022-28614"
      },
      {
        "trust": 0.2,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2022-29404"
      },
      {
        "trust": 0.2,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2022-28615"
      },
      {
        "trust": 0.2,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2022-30522"
      },
      {
        "trust": 0.2,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2021-44224"
      },
      {
        "trust": 0.2,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2022-22719"
      },
      {
        "trust": 0.2,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2022-30556"
      },
      {
        "trust": 0.2,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2022-23943"
      },
      {
        "trust": 0.2,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2022-26377"
      },
      {
        "trust": 0.1,
        "url": "https://kc.mcafee.com/corporate/index?page=content\u0026amp;id=sb10379"
      },
      {
        "trust": 0.1,
        "url": "https://lists.apache.org/thread.html/r82c077663f9759c7df5a6656f925b3ee4f55fcd33c889ba7cd687029@%3cusers.httpd.apache.org%3e"
      },
      {
        "trust": 0.1,
        "url": "https://lists.apache.org/thread.html/r61fdbfc26ab170f4e6492ef3bd5197c20b862ce156e9d5a54d4b899c@%3cusers.httpd.apache.org%3e"
      },
      {
        "trust": 0.1,
        "url": "https://lists.apache.org/thread.html/r82838efc5fa6fc4c73986399c9b71573589f78b31846aff5bd9b1697@%3cusers.httpd.apache.org%3e"
      },
      {
        "trust": 0.1,
        "url": "https://lists.apache.org/thread.html/r3925e167d5eb1c75def3750c155d753064e1d34a143028bb32910432@%3cusers.httpd.apache.org%3e"
      },
      {
        "trust": 0.1,
        "url": "https://cwe.mitre.org/data/definitions/476.html"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov"
      },
      {
        "trust": 0.1,
        "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-167-06"
      },
      {
        "trust": 0.1,
        "url": "https://github.com/totes5706/toteshtb"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2021-44790"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2021-26691"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2021-26691"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/errata/rhsa-2022:0143"
      },
      {
        "trust": 0.1,
        "url": "https://launchpad.net/ubuntu/+source/apache2/2.4.29-1ubuntu4.17"
      },
      {
        "trust": 0.1,
        "url": "https://launchpad.net/ubuntu/+source/apache2/2.4.41-4ubuntu3.5"
      },
      {
        "trust": 0.1,
        "url": "https://launchpad.net/ubuntu/+source/apache2/2.4.46-4ubuntu1.2"
      },
      {
        "trust": 0.1,
        "url": "https://launchpad.net/bugs/xxxxxx"
      },
      {
        "trust": 0.1,
        "url": "https://ubuntu.com/security/notices/usn-5090-4"
      },
      {
        "trust": 0.1,
        "url": "https://ubuntu.com/security/notices/usn-5090-3"
      },
      {
        "trust": 0.1,
        "url": "https://launchpad.net/ubuntu/+source/apache2/2.4.41-4ubuntu3.6"
      },
      {
        "trust": 0.1,
        "url": "https://launchpad.net/bugs/1945311"
      },
      {
        "trust": 0.1,
        "url": "https://launchpad.net/ubuntu/+source/apache2/2.4.29-1ubuntu4.18"
      },
      {
        "trust": 0.1,
        "url": "https://launchpad.net/ubuntu/+source/apache2/2.4.46-4ubuntu1.3"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/articles/6975397"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2022-30556"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2021-36160"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2022-22719"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2022-28614"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/errata/rhsa-2022:6753"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2022-28615"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2022-31813"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2022-30522"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2021-44224"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2022-22721"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2022-29404"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2021-33193"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2022-23943"
      },
      {
        "trust": 0.1,
        "url": "https://access.redhat.com/security/cve/cve-2022-26377"
      },
      {
        "trust": 0.1,
        "url": "https://www.debian.org/security/faq"
      },
      {
        "trust": 0.1,
        "url": "https://www.debian.org/security/"
      },
      {
        "trust": 0.1,
        "url": "https://security-tracker.debian.org/tracker/apache2"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2022-31813"
      },
      {
        "trust": 0.1,
        "url": "https://bugs.gentoo.org."
      },
      {
        "trust": 0.1,
        "url": "https://creativecommons.org/licenses/by-sa/2.5"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2021-41773"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2021-41524"
      },
      {
        "trust": 0.1,
        "url": "https://security.gentoo.org/"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2021-42013"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2022-22720"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2022-03223"
      },
      {
        "db": "VULHUB",
        "id": "VHN-395042"
      },
      {
        "db": "VULMON",
        "id": "CVE-2021-34798"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-002671"
      },
      {
        "db": "PACKETSTORM",
        "id": "165587"
      },
      {
        "db": "PACKETSTORM",
        "id": "166321"
      },
      {
        "db": "PACKETSTORM",
        "id": "164305"
      },
      {
        "db": "PACKETSTORM",
        "id": "164329"
      },
      {
        "db": "PACKETSTORM",
        "id": "164318"
      },
      {
        "db": "PACKETSTORM",
        "id": "168565"
      },
      {
        "db": "PACKETSTORM",
        "id": "169132"
      },
      {
        "db": "PACKETSTORM",
        "id": "168072"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202109-1109"
      },
      {
        "db": "NVD",
        "id": "CVE-2021-34798"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "CNVD",
        "id": "CNVD-2022-03223"
      },
      {
        "db": "VULHUB",
        "id": "VHN-395042"
      },
      {
        "db": "VULMON",
        "id": "CVE-2021-34798"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-002671"
      },
      {
        "db": "PACKETSTORM",
        "id": "165587"
      },
      {
        "db": "PACKETSTORM",
        "id": "166321"
      },
      {
        "db": "PACKETSTORM",
        "id": "164305"
      },
      {
        "db": "PACKETSTORM",
        "id": "164329"
      },
      {
        "db": "PACKETSTORM",
        "id": "164318"
      },
      {
        "db": "PACKETSTORM",
        "id": "168565"
      },
      {
        "db": "PACKETSTORM",
        "id": "169132"
      },
      {
        "db": "PACKETSTORM",
        "id": "168072"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202109-1109"
      },
      {
        "db": "NVD",
        "id": "CVE-2021-34798"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2022-01-12T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2022-03223"
      },
      {
        "date": "2021-09-16T00:00:00",
        "db": "VULHUB",
        "id": "VHN-395042"
      },
      {
        "date": "2021-09-16T00:00:00",
        "db": "VULMON",
        "id": "CVE-2021-34798"
      },
      {
        "date": "2021-09-29T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2021-002671"
      },
      {
        "date": "2022-01-17T16:53:40",
        "db": "PACKETSTORM",
        "id": "165587"
      },
      {
        "date": "2022-03-15T15:50:26",
        "db": "PACKETSTORM",
        "id": "166321"
      },
      {
        "date": "2021-09-28T15:06:35",
        "db": "PACKETSTORM",
        "id": "164305"
      },
      {
        "date": "2021-09-29T14:50:01",
        "db": "PACKETSTORM",
        "id": "164329"
      },
      {
        "date": "2021-09-28T15:23:06",
        "db": "PACKETSTORM",
        "id": "164318"
      },
      {
        "date": "2022-09-30T14:51:18",
        "db": "PACKETSTORM",
        "id": "168565"
      },
      {
        "date": "2021-10-28T19:12:00",
        "db": "PACKETSTORM",
        "id": "169132"
      },
      {
        "date": "2022-08-15T16:02:48",
        "db": "PACKETSTORM",
        "id": "168072"
      },
      {
        "date": "2021-09-16T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-202109-1109"
      },
      {
        "date": "2021-09-16T15:15:07.267000",
        "db": "NVD",
        "id": "CVE-2021-34798"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2022-01-13T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2022-03223"
      },
      {
        "date": "2022-10-28T00:00:00",
        "db": "VULHUB",
        "id": "VHN-395042"
      },
      {
        "date": "2023-11-07T00:00:00",
        "db": "VULMON",
        "id": "CVE-2021-34798"
      },
      {
        "date": "2021-09-29T06:16:00",
        "db": "JVNDB",
        "id": "JVNDB-2021-002671"
      },
      {
        "date": "2023-02-22T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-202109-1109"
      },
      {
        "date": "2023-11-07T03:36:26.910000",
        "db": "NVD",
        "id": "CVE-2021-34798"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "PACKETSTORM",
        "id": "164305"
      },
      {
        "db": "PACKETSTORM",
        "id": "164329"
      },
      {
        "db": "PACKETSTORM",
        "id": "164318"
      },
      {
        "db": "PACKETSTORM",
        "id": "168072"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202109-1109"
      }
    ],
    "trust": 1.0
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Apache\u00a0HTTP\u00a0Server\u00a0 In \u00a0NULL\u00a0 Pointer dereference vulnerability",
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-002671"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "code problem",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-202109-1109"
      }
    ],
    "trust": 0.6
  }
}

WID-SEC-W-2022-0724

Vulnerability from csaf_certbund - Published: 2021-09-16 22:00 - Updated: 2025-01-29 23:00

Summary

Apache HTTP Server: Mehrere Schwachstellen

Severity

Hoch

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Apache ist ein Webserver für verschiedene Plattformen.

Angriff: Ein entfernter Angreifer kann mehrere Schwachstellen in Apache HTTP Server ausnutzen, um Sicherheitsvorkehrungen zu umgehen, vertrauliche Informationen offenzulegen und einen Denial of Service Zustand herzustellen.

Betroffene Betriebssysteme: - CISCO Appliance - F5 Networks - Hardware Appliance - Linux - Sonstiges - UNIX - Windows

CVE-2021-20325

In Apache HTTP Server existieren mehrere Schwachstellen. Die Schwachstellen bestehen aufgrund einer NULL-Zeiger-Dereferenz im "httpd core", eines Pufferüberlaufs in "ap_escape_quotes" bei böswilliger Eingabe und einer Server Side Request Forgery (SSRF) bei der Verwendung von "mod_proxy". Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um Sicherheitsmaßnahmen zu umgehen.

Affected products

Known affected 37 products

Product	Identifier	Version
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Hitachi Command Suite Hitachi	`cpe:/a:hitachi:command_suite:-`	—
Broadcom Brocade Switch Broadcom	`cpe:/h:brocade:switch:-`	—
Apache HTTP Server <2.4.49 Apache / HTTP Server		<2.4.49
Avaya Aura Session Manager Avaya	`cpe:/a:avaya:session_manager:-`	—
Avaya Aura Communication Manager Avaya	`cpe:/a:avaya:communication_manager:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Cisco TelePresence Video Communication Server Cisco / TelePresence	`cpe:/h:cisco:telepresence:video_communication_server`	Video Communication Server
Cisco Prime Infrastructure Cisco	`cpe:/a:cisco:prime_infrastructure:-`	—
Hitachi Configuration Manager Hitachi	`cpe:/a:hitachi:configuration_manager:-`	—
F5 BIG-IP F5 / BIG-IP	`cpe:/a:f5:big-ip:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Cisco Unified Computing System (UCS) Cisco	`cpe:/h:cisco:unified_computing_system:-`	—
Avaya Aura Experience Portal Avaya	`cpe:/a:avaya:aura_experience_portal:-`	—
Avaya Aura System Manager Avaya	`cpe:/a:avaya:aura_system_manager:-`	—
Cisco Expressway Cisco	`cpe:/a:cisco:expressway_software:-`	—
Avaya Aura Application Enablement Services Avaya	`cpe:/a:avaya:aura_application_enablement_services:-`	—
Cisco Firepower Cisco	`cpe:/a:cisco:firepower:-`	—
NetApp Data ONTAP NetApp	`cpe:/a:netapp:data_ontap:-`	—
HPE Switch HPE	`cpe:/h:hp:switch:-`	—
Cisco Wide Area Application Services Cisco	`cpe:/a:cisco:wide_area_application_services:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Avaya Web License Manager Avaya	`cpe:/a:avaya:web_license_manager:-`	—
Hitachi Ops Center Hitachi	`cpe:/a:hitachi:ops_center:-`	—
HPE Fabric OS HPE	`cpe:/o:hpe:fabric_os:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Cisco Prime Collaboration Provisioning Cisco / Prime Collaboration	`cpe:/a:cisco:prime_collaboration:::provisioning`	Provisioning
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Cisco FXOS Cisco	`cpe:/o:cisco:fxos:-`	—
Cisco Security Manager (CSM) Cisco	`cpe:/a:cisco:security_manager:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
NetApp StorageGRID NetApp	`cpe:/a:netapp:storagegrid:-`	—
F5 BIG-IP <16.1.4 F5 / BIG-IP		<16.1.4
Open Source CentOS Open Source	`cpe:/o:centos:centos:-`	—
F5 BIG-IP <17.0.0 F5 / BIG-IP		<17.0.0
F5 BIG-IP <15.1.7 F5 / BIG-IP		<15.1.7

CVE-2021-34798

Affected products

Known affected 37 products

Product	Identifier	Version
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Hitachi Command Suite Hitachi	`cpe:/a:hitachi:command_suite:-`	—
Broadcom Brocade Switch Broadcom	`cpe:/h:brocade:switch:-`	—
Apache HTTP Server <2.4.49 Apache / HTTP Server		<2.4.49
Avaya Aura Session Manager Avaya	`cpe:/a:avaya:session_manager:-`	—
Avaya Aura Communication Manager Avaya	`cpe:/a:avaya:communication_manager:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Cisco TelePresence Video Communication Server Cisco / TelePresence	`cpe:/h:cisco:telepresence:video_communication_server`	Video Communication Server
Cisco Prime Infrastructure Cisco	`cpe:/a:cisco:prime_infrastructure:-`	—
Hitachi Configuration Manager Hitachi	`cpe:/a:hitachi:configuration_manager:-`	—
F5 BIG-IP F5 / BIG-IP	`cpe:/a:f5:big-ip:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Cisco Unified Computing System (UCS) Cisco	`cpe:/h:cisco:unified_computing_system:-`	—
Avaya Aura Experience Portal Avaya	`cpe:/a:avaya:aura_experience_portal:-`	—
Avaya Aura System Manager Avaya	`cpe:/a:avaya:aura_system_manager:-`	—
Cisco Expressway Cisco	`cpe:/a:cisco:expressway_software:-`	—
Avaya Aura Application Enablement Services Avaya	`cpe:/a:avaya:aura_application_enablement_services:-`	—
Cisco Firepower Cisco	`cpe:/a:cisco:firepower:-`	—
NetApp Data ONTAP NetApp	`cpe:/a:netapp:data_ontap:-`	—
HPE Switch HPE	`cpe:/h:hp:switch:-`	—
Cisco Wide Area Application Services Cisco	`cpe:/a:cisco:wide_area_application_services:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Avaya Web License Manager Avaya	`cpe:/a:avaya:web_license_manager:-`	—
Hitachi Ops Center Hitachi	`cpe:/a:hitachi:ops_center:-`	—
HPE Fabric OS HPE	`cpe:/o:hpe:fabric_os:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Cisco Prime Collaboration Provisioning Cisco / Prime Collaboration	`cpe:/a:cisco:prime_collaboration:::provisioning`	Provisioning
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Cisco FXOS Cisco	`cpe:/o:cisco:fxos:-`	—
Cisco Security Manager (CSM) Cisco	`cpe:/a:cisco:security_manager:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
NetApp StorageGRID NetApp	`cpe:/a:netapp:storagegrid:-`	—
F5 BIG-IP <16.1.4 F5 / BIG-IP		<16.1.4
Open Source CentOS Open Source	`cpe:/o:centos:centos:-`	—
F5 BIG-IP <17.0.0 F5 / BIG-IP		<17.0.0
F5 BIG-IP <15.1.7 F5 / BIG-IP		<15.1.7

CVE-2021-39275

Affected products

Known affected 37 products

Product	Identifier	Version
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Hitachi Command Suite Hitachi	`cpe:/a:hitachi:command_suite:-`	—
Broadcom Brocade Switch Broadcom	`cpe:/h:brocade:switch:-`	—
Apache HTTP Server <2.4.49 Apache / HTTP Server		<2.4.49
Avaya Aura Session Manager Avaya	`cpe:/a:avaya:session_manager:-`	—
Avaya Aura Communication Manager Avaya	`cpe:/a:avaya:communication_manager:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Cisco TelePresence Video Communication Server Cisco / TelePresence	`cpe:/h:cisco:telepresence:video_communication_server`	Video Communication Server
Cisco Prime Infrastructure Cisco	`cpe:/a:cisco:prime_infrastructure:-`	—
Hitachi Configuration Manager Hitachi	`cpe:/a:hitachi:configuration_manager:-`	—
F5 BIG-IP F5 / BIG-IP	`cpe:/a:f5:big-ip:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Cisco Unified Computing System (UCS) Cisco	`cpe:/h:cisco:unified_computing_system:-`	—
Avaya Aura Experience Portal Avaya	`cpe:/a:avaya:aura_experience_portal:-`	—
Avaya Aura System Manager Avaya	`cpe:/a:avaya:aura_system_manager:-`	—
Cisco Expressway Cisco	`cpe:/a:cisco:expressway_software:-`	—
Avaya Aura Application Enablement Services Avaya	`cpe:/a:avaya:aura_application_enablement_services:-`	—
Cisco Firepower Cisco	`cpe:/a:cisco:firepower:-`	—
NetApp Data ONTAP NetApp	`cpe:/a:netapp:data_ontap:-`	—
HPE Switch HPE	`cpe:/h:hp:switch:-`	—
Cisco Wide Area Application Services Cisco	`cpe:/a:cisco:wide_area_application_services:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Avaya Web License Manager Avaya	`cpe:/a:avaya:web_license_manager:-`	—
Hitachi Ops Center Hitachi	`cpe:/a:hitachi:ops_center:-`	—
HPE Fabric OS HPE	`cpe:/o:hpe:fabric_os:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Cisco Prime Collaboration Provisioning Cisco / Prime Collaboration	`cpe:/a:cisco:prime_collaboration:::provisioning`	Provisioning
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Cisco FXOS Cisco	`cpe:/o:cisco:fxos:-`	—
Cisco Security Manager (CSM) Cisco	`cpe:/a:cisco:security_manager:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
NetApp StorageGRID NetApp	`cpe:/a:netapp:storagegrid:-`	—
F5 BIG-IP <16.1.4 F5 / BIG-IP		<16.1.4
Open Source CentOS Open Source	`cpe:/o:centos:centos:-`	—
F5 BIG-IP <17.0.0 F5 / BIG-IP		<17.0.0
F5 BIG-IP <15.1.7 F5 / BIG-IP		<15.1.7

CVE-2021-40438

Affected products

Known affected 37 products

Product	Identifier	Version
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Hitachi Command Suite Hitachi	`cpe:/a:hitachi:command_suite:-`	—
Broadcom Brocade Switch Broadcom	`cpe:/h:brocade:switch:-`	—
Apache HTTP Server <2.4.49 Apache / HTTP Server		<2.4.49
Avaya Aura Session Manager Avaya	`cpe:/a:avaya:session_manager:-`	—
Avaya Aura Communication Manager Avaya	`cpe:/a:avaya:communication_manager:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Cisco TelePresence Video Communication Server Cisco / TelePresence	`cpe:/h:cisco:telepresence:video_communication_server`	Video Communication Server
Cisco Prime Infrastructure Cisco	`cpe:/a:cisco:prime_infrastructure:-`	—
Hitachi Configuration Manager Hitachi	`cpe:/a:hitachi:configuration_manager:-`	—
F5 BIG-IP F5 / BIG-IP	`cpe:/a:f5:big-ip:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Cisco Unified Computing System (UCS) Cisco	`cpe:/h:cisco:unified_computing_system:-`	—
Avaya Aura Experience Portal Avaya	`cpe:/a:avaya:aura_experience_portal:-`	—
Avaya Aura System Manager Avaya	`cpe:/a:avaya:aura_system_manager:-`	—
Cisco Expressway Cisco	`cpe:/a:cisco:expressway_software:-`	—
Avaya Aura Application Enablement Services Avaya	`cpe:/a:avaya:aura_application_enablement_services:-`	—
Cisco Firepower Cisco	`cpe:/a:cisco:firepower:-`	—
NetApp Data ONTAP NetApp	`cpe:/a:netapp:data_ontap:-`	—
HPE Switch HPE	`cpe:/h:hp:switch:-`	—
Cisco Wide Area Application Services Cisco	`cpe:/a:cisco:wide_area_application_services:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Avaya Web License Manager Avaya	`cpe:/a:avaya:web_license_manager:-`	—
Hitachi Ops Center Hitachi	`cpe:/a:hitachi:ops_center:-`	—
HPE Fabric OS HPE	`cpe:/o:hpe:fabric_os:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Cisco Prime Collaboration Provisioning Cisco / Prime Collaboration	`cpe:/a:cisco:prime_collaboration:::provisioning`	Provisioning
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Cisco FXOS Cisco	`cpe:/o:cisco:fxos:-`	—
Cisco Security Manager (CSM) Cisco	`cpe:/a:cisco:security_manager:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
NetApp StorageGRID NetApp	`cpe:/a:netapp:storagegrid:-`	—
F5 BIG-IP <16.1.4 F5 / BIG-IP		<16.1.4
Open Source CentOS Open Source	`cpe:/o:centos:centos:-`	—
F5 BIG-IP <17.0.0 F5 / BIG-IP		<17.0.0
F5 BIG-IP <15.1.7 F5 / BIG-IP		<15.1.7

CVE-2021-36160

Es existiert eine Schwachstelle in Apache HTTP Server. Der Fehler besteht aufgrund eines Out-of-Bound Read in "mod_proxy_uwsgi". Ein entfernter Angreifer kann diese Schwachstelle ausnutzen, um den zugewiesenen Speicher zu lesen und einen Denial-of-Service-Zustand zu verursachen.

Affected products

Known affected 37 products

Product	Identifier	Version
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Hitachi Command Suite Hitachi	`cpe:/a:hitachi:command_suite:-`	—
Broadcom Brocade Switch Broadcom	`cpe:/h:brocade:switch:-`	—
Apache HTTP Server <2.4.49 Apache / HTTP Server		<2.4.49
Avaya Aura Session Manager Avaya	`cpe:/a:avaya:session_manager:-`	—
Avaya Aura Communication Manager Avaya	`cpe:/a:avaya:communication_manager:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Cisco TelePresence Video Communication Server Cisco / TelePresence	`cpe:/h:cisco:telepresence:video_communication_server`	Video Communication Server
Cisco Prime Infrastructure Cisco	`cpe:/a:cisco:prime_infrastructure:-`	—
Hitachi Configuration Manager Hitachi	`cpe:/a:hitachi:configuration_manager:-`	—
F5 BIG-IP F5 / BIG-IP	`cpe:/a:f5:big-ip:-`	—
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Cisco Unified Computing System (UCS) Cisco	`cpe:/h:cisco:unified_computing_system:-`	—
Avaya Aura Experience Portal Avaya	`cpe:/a:avaya:aura_experience_portal:-`	—
Avaya Aura System Manager Avaya	`cpe:/a:avaya:aura_system_manager:-`	—
Cisco Expressway Cisco	`cpe:/a:cisco:expressway_software:-`	—
Avaya Aura Application Enablement Services Avaya	`cpe:/a:avaya:aura_application_enablement_services:-`	—
Cisco Firepower Cisco	`cpe:/a:cisco:firepower:-`	—
NetApp Data ONTAP NetApp	`cpe:/a:netapp:data_ontap:-`	—
HPE Switch HPE	`cpe:/h:hp:switch:-`	—
Cisco Wide Area Application Services Cisco	`cpe:/a:cisco:wide_area_application_services:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Avaya Web License Manager Avaya	`cpe:/a:avaya:web_license_manager:-`	—
Hitachi Ops Center Hitachi	`cpe:/a:hitachi:ops_center:-`	—
HPE Fabric OS HPE	`cpe:/o:hpe:fabric_os:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Cisco Prime Collaboration Provisioning Cisco / Prime Collaboration	`cpe:/a:cisco:prime_collaboration:::provisioning`	Provisioning
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Cisco FXOS Cisco	`cpe:/o:cisco:fxos:-`	—
Cisco Security Manager (CSM) Cisco	`cpe:/a:cisco:security_manager:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
NetApp StorageGRID NetApp	`cpe:/a:netapp:storagegrid:-`	—
F5 BIG-IP <16.1.4 F5 / BIG-IP		<16.1.4
Open Source CentOS Open Source	`cpe:/o:centos:centos:-`	—
F5 BIG-IP <17.0.0 F5 / BIG-IP		<17.0.0
F5 BIG-IP <15.1.7 F5 / BIG-IP		<15.1.7

References

59 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://httpd.apache.org/security/vulnerabilities…	external
https://ubuntu.com/security/notices/USN-5090-1	external
https://ubuntu.com/security/notices/USN-5090-2	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://ubuntu.com/security/notices/USN-5090-3	external
https://ubuntu.com/security/notices/USN-5090-4	external
https://lists.debian.org/debian-lts-announce/2021…	external
https://lists.debian.org/debian-lts-announce/2021…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://access.redhat.com/errata/RHSA-2021:3745	external
https://access.redhat.com/errata/RHSA-2021:3746	external
https://www.debian.org/security/2021/dsa-4982	external
https://access.redhat.com/errata/RHSA-2021:3754	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://support.f5.com/csp/article/K72382141?utm_…	external
https://access.redhat.com/errata/RHSA-2021:3816	external
https://access.redhat.com/errata/RHSA-2021:3837	external
https://access.redhat.com/errata/RHSA-2021:3836	external
http://linux.oracle.com/errata/ELSA-2021-3816.html	external
https://access.redhat.com/errata/RHSA-2021:3856	external
http://linux.oracle.com/errata/ELSA-2021-3856.html	external
https://downloads.avaya.com/css/P8/documents/101078189	external
https://alas.aws.amazon.com/ALAS-2021-1543.html	external
https://alas.aws.amazon.com/AL2/ALAS-2021-1716.html	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://access.redhat.com/errata/RHSA-2021:4537	external
https://www.hitachi.co.jp/Prod/comp/soft1/global/…	external
https://lists.centos.org/pipermail/centos-announc…	external
https://linux.oracle.com/errata/ELSA-2021-4537.html	external
https://tools.cisco.com/security/center/content/C…	external
https://securityaffairs.co/wordpress/125107/hacki…	external
http://linux.oracle.com/errata/ELSA-2021-9619.html	external
https://tools.cisco.com/security/center/content/C…	external
https://security.netapp.com/advisory/ntap-2021100…	external
https://linux.oracle.com/errata/ELSA-2022-9005.html	external
https://access.redhat.com/errata/RHSA-2022:0143	external
http://linux.oracle.com/errata/ELSA-2022-0143.html	external
http://linux.oracle.com/errata/ELSA-2022-0258.html	external
https://lists.centos.org/pipermail/centos-announc…	external
https://downloads.avaya.com/css/P8/documents/101079910	external
https://access.redhat.com/errata/RHSA-2022:0891	external
http://linux.oracle.com/errata/ELSA-2022-0891.html	external
https://downloads.avaya.com/css/P8/documents/101080898	external
https://support.hcltechsw.com/csm?id=kb_article&s…	external
https://access.redhat.com/errata/RHSA-2022:1915	external
https://linux.oracle.com/errata/ELSA-2022-1915.html	external
https://downloads.avaya.com/css/P8/documents/101082704	external
https://security.gentoo.org/glsa/202208-20	external
https://www.broadcom.com/support/fibre-channel-ne…	external
https://www.broadcom.com/support/fibre-channel-ne…	external
https://support.hpe.com/hpesc/public/docDisplay?d…	external
https://access.redhat.com/errata/RHSA-2022:6753	external
https://access.redhat.com/errata/RHSA-2022:7143	external
https://access.redhat.com/errata/RHSA-2022:7144	external
https://support.hpe.com/hpesc/public/docDisplay?d…	external
https://my.f5.com/manage/s/article/K72382141	external
https://lists.opensuse.org/archives/list/security…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Apache ist ein Webserver f\u00fcr verschiedene Plattformen.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter Angreifer kann mehrere Schwachstellen in Apache HTTP Server ausnutzen, um Sicherheitsvorkehrungen zu umgehen, vertrauliche Informationen offenzulegen und einen Denial of Service Zustand herzustellen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- CISCO Appliance\n- F5 Networks\n- Hardware Appliance\n- Linux\n- Sonstiges\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2022-0724 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2021/wid-sec-w-2022-0724.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2022-0724 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0724"
      },
      {
        "category": "external",
        "summary": "Apache Security Advisory vom 2021-09-16",
        "url": "https://httpd.apache.org/security/vulnerabilities_24.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-5090-1 vom 2021-09-27",
        "url": "https://ubuntu.com/security/notices/USN-5090-1"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-5090-2 vom 2021-09-27",
        "url": "https://ubuntu.com/security/notices/USN-5090-2"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2021:14811-1 vom 2021-09-27",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2021-September/009511.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-5090-3 vom 2021-09-28",
        "url": "https://ubuntu.com/security/notices/USN-5090-3"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-5090-4 vom 2021-09-28",
        "url": "https://ubuntu.com/security/notices/USN-5090-4"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-2768 vom 2021-09-30",
        "url": "https://lists.debian.org/debian-lts-announce/2021/09/msg00016.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-2776 vom 2021-10-02",
        "url": "https://lists.debian.org/debian-lts-announce/2021/10/msg00001.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2021:3299-1 vom 2021-10-06",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2021-October/009537.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2021:3745 vom 2021-10-07",
        "url": "https://access.redhat.com/errata/RHSA-2021:3745"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2021:3746 vom 2021-10-07",
        "url": "https://access.redhat.com/errata/RHSA-2021:3746"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-4982 vom 2021-10-10",
        "url": "https://www.debian.org/security/2021/dsa-4982"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2021:3754 vom 2021-10-11",
        "url": "https://access.redhat.com/errata/RHSA-2021:3754"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2021:3335-1 vom 2021-10-12",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2021-October/009564.html"
      },
      {
        "category": "external",
        "summary": "F5 Security Advisory K72382141 vom 2021-10-13",
        "url": "https://support.f5.com/csp/article/K72382141?utm_source=f5support\u0026utm_medium=RSS"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2021:3816 vom 2021-10-12",
        "url": "https://access.redhat.com/errata/RHSA-2021:3816"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2021:3837 vom 2021-10-13",
        "url": "https://access.redhat.com/errata/RHSA-2021:3837"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2021:3836 vom 2021-10-13",
        "url": "https://access.redhat.com/errata/RHSA-2021:3836"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2021-3816 vom 2021-10-13",
        "url": "http://linux.oracle.com/errata/ELSA-2021-3816.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2021:3856 vom 2021-10-14",
        "url": "https://access.redhat.com/errata/RHSA-2021:3856"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2021-3856 vom 2021-10-15",
        "url": "http://linux.oracle.com/errata/ELSA-2021-3856.html"
      },
      {
        "category": "external",
        "summary": "AVAYA Security Advisory ASA-2021-119 vom 2021-10-15",
        "url": "https://downloads.avaya.com/css/P8/documents/101078189"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS-2021-1543 vom 2021-10-15",
        "url": "https://alas.aws.amazon.com/ALAS-2021-1543.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS-2021-1716 vom 2021-10-15",
        "url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1716.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2021:3522-1 vom 2021-10-26",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2021-October/009646.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2021:4537 vom 2021-11-10",
        "url": "https://access.redhat.com/errata/RHSA-2021:4537"
      },
      {
        "category": "external",
        "summary": "Hitachi Vulnerability Information HITACHI-SEC-2021-139 vom 2021-11-12",
        "url": "https://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/hitachi-sec-2021-139/index.html"
      },
      {
        "category": "external",
        "summary": "CentOS Security Advisory CESA-2021:3856 vom 2021-11-17",
        "url": "https://lists.centos.org/pipermail/centos-announce/2021-November/048391.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2021-4537 vom 2021-11-18",
        "url": "https://linux.oracle.com/errata/ELSA-2021-4537.html"
      },
      {
        "category": "external",
        "summary": "Cisco Security Advisory CISCO-SA-APACHE-HTTPD-2 vom 2021-11-24",
        "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-httpd-2.4.49-VWL69sWQ"
      },
      {
        "category": "external",
        "summary": "Security Affairs vom 2021-11-29",
        "url": "https://securityaffairs.co/wordpress/125107/hacking/cve-2021-40438-apache-http-server-attacks.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2021-9619 vom 2021-12-16",
        "url": "http://linux.oracle.com/errata/ELSA-2021-9619.html"
      },
      {
        "category": "external",
        "summary": "Cisco Security Advisory CISCO-SA-APACHE-HTTPD-2.4.49-VWL69SWQ vom 2021-12-21",
        "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apache-httpd-2.4.49-VWL69sWQ"
      },
      {
        "category": "external",
        "summary": "NetApp Security Advisory NTAP-20211008-0004 vom 2021-12-22",
        "url": "https://security.netapp.com/advisory/ntap-20211008-0004/"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-9005 vom 2022-01-06",
        "url": "https://linux.oracle.com/errata/ELSA-2022-9005.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:0143 vom 2022-01-17",
        "url": "https://access.redhat.com/errata/RHSA-2022:0143"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-0143 vom 2022-01-19",
        "url": "http://linux.oracle.com/errata/ELSA-2022-0143.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-0258 vom 2022-01-26",
        "url": "http://linux.oracle.com/errata/ELSA-2022-0258.html"
      },
      {
        "category": "external",
        "summary": "CentOS Security Advisory CESA-2022:0143 vom 2022-01-25",
        "url": "https://lists.centos.org/pipermail/centos-announce/2022-January/073551.html"
      },
      {
        "category": "external",
        "summary": "AVAYA Security Advisory ASA-2022-003 vom 2027-01-18",
        "url": "https://downloads.avaya.com/css/P8/documents/101079910"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:0891 vom 2022-03-15",
        "url": "https://access.redhat.com/errata/RHSA-2022:0891"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-0891 vom 2022-03-16",
        "url": "http://linux.oracle.com/errata/ELSA-2022-0891.html"
      },
      {
        "category": "external",
        "summary": "AVAYA Security Advisory ASA-2022-029 vom 2022-03-15",
        "url": "https://downloads.avaya.com/css/P8/documents/101080898"
      },
      {
        "category": "external",
        "summary": "HCL Article KB0097639 vom 2022-04-23",
        "url": "https://support.hcltechsw.com/csm?id=kb_article\u0026sysparm_article=KB0097639"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:1915 vom 2022-05-10",
        "url": "https://access.redhat.com/errata/RHSA-2022:1915"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-1915 vom 2022-05-17",
        "url": "https://linux.oracle.com/errata/ELSA-2022-1915.html"
      },
      {
        "category": "external",
        "summary": "AVAYA Security Advisory ASA-2022-053 vom 2022-07-18",
        "url": "https://downloads.avaya.com/css/P8/documents/101082704"
      },
      {
        "category": "external",
        "summary": "Gentoo Linux Security Advisory GLSA-202208-20 vom 2022-08-14",
        "url": "https://security.gentoo.org/glsa/202208-20"
      },
      {
        "category": "external",
        "summary": "Brocade Security Advisory BSA-2022-1599 vom 2022-09-14",
        "url": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2022-1599"
      },
      {
        "category": "external",
        "summary": "Brocade Security Advisory BSA-2022-1597 vom 2022-09-14",
        "url": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2022-1597"
      },
      {
        "category": "external",
        "summary": "HPE SECURITY BULLETIN HPESBST04367 rev.1 vom 2022-09-21",
        "url": "https://support.hpe.com/hpesc/public/docDisplay?docId=emr_na-hpesbst04367en_us"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:6753 vom 2022-09-29",
        "url": "https://access.redhat.com/errata/RHSA-2022:6753"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:7143 vom 2022-10-27",
        "url": "https://access.redhat.com/errata/RHSA-2022:7143"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:7144 vom 2022-10-27",
        "url": "https://access.redhat.com/errata/RHSA-2022:7144"
      },
      {
        "category": "external",
        "summary": "HPE Security Bulletin",
        "url": "https://support.hpe.com/hpesc/public/docDisplay?docId=emr_na-hpesbst04494en_us"
      },
      {
        "category": "external",
        "summary": "F5 Security Advisory K72382141 vom 2023-08-17",
        "url": "https://my.f5.com/manage/s/article/K72382141"
      },
      {
        "category": "external",
        "summary": "openSUSE Security Update OPENSUSE-SU-2025:14708-1 vom 2025-01-29",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/5RZA3QZZUTFNFHPJESYW5I7GDZGWBEQF/"
      }
    ],
    "source_lang": "en-US",
    "title": "Apache HTTP Server: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-01-29T23:00:00.000+00:00",
      "generator": {
        "date": "2025-01-30T10:27:35.706+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.10"
        }
      },
      "id": "WID-SEC-W-2022-0724",
      "initial_release_date": "2021-09-16T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2021-09-16T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2021-09-20T22:00:00.000+00:00",
          "number": "2",
          "summary": "Korrektur"
        },
        {
          "date": "2021-09-27T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Ubuntu und SUSE aufgenommen"
        },
        {
          "date": "2021-09-28T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2021-09-29T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2021-10-03T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2021-10-06T22:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2021-10-07T22:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2021-10-10T22:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2021-10-12T22:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von SUSE, F5 und Red Hat aufgenommen"
        },
        {
          "date": "2021-10-13T22:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von Red Hat und Oracle Linux aufgenommen"
        },
        {
          "date": "2021-10-14T22:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2021-10-17T22:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von AVAYA und Amazon aufgenommen"
        },
        {
          "date": "2021-10-26T22:00:00.000+00:00",
          "number": "14",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2021-11-09T23:00:00.000+00:00",
          "number": "15",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2021-11-11T23:00:00.000+00:00",
          "number": "16",
          "summary": "Neue Updates von HITACHI aufgenommen"
        },
        {
          "date": "2021-11-17T23:00:00.000+00:00",
          "number": "17",
          "summary": "Neue Updates von CentOS aufgenommen"
        },
        {
          "date": "2021-11-18T23:00:00.000+00:00",
          "number": "18",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2021-11-24T23:00:00.000+00:00",
          "number": "19",
          "summary": "Neue Updates von Cisco aufgenommen"
        },
        {
          "date": "2021-11-29T23:00:00.000+00:00",
          "number": "20",
          "summary": "Exploit aufgenommen"
        },
        {
          "date": "2021-12-15T23:00:00.000+00:00",
          "number": "21",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2021-12-20T23:00:00.000+00:00",
          "number": "22",
          "summary": "Neue Updates von Cisco aufgenommen"
        },
        {
          "date": "2021-12-22T23:00:00.000+00:00",
          "number": "23",
          "summary": "Neue Updates von NetApp aufgenommen"
        },
        {
          "date": "2022-01-05T23:00:00.000+00:00",
          "number": "24",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2022-01-16T23:00:00.000+00:00",
          "number": "25",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2022-01-19T23:00:00.000+00:00",
          "number": "26",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2022-01-25T23:00:00.000+00:00",
          "number": "27",
          "summary": "Neue Updates von Oracle Linux und CentOS aufgenommen"
        },
        {
          "date": "2022-01-27T23:00:00.000+00:00",
          "number": "28",
          "summary": "Neue Updates von AVAYA aufgenommen"
        },
        {
          "date": "2022-03-15T23:00:00.000+00:00",
          "number": "29",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2022-03-16T23:00:00.000+00:00",
          "number": "30",
          "summary": "Neue Updates von Oracle Linux und AVAYA aufgenommen"
        },
        {
          "date": "2022-04-24T22:00:00.000+00:00",
          "number": "31",
          "summary": "Neue Updates von HCL aufgenommen"
        },
        {
          "date": "2022-05-10T22:00:00.000+00:00",
          "number": "32",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2022-05-17T22:00:00.000+00:00",
          "number": "33",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2022-07-19T22:00:00.000+00:00",
          "number": "34",
          "summary": "Neue Updates von AVAYA aufgenommen"
        },
        {
          "date": "2022-08-14T22:00:00.000+00:00",
          "number": "35",
          "summary": "Neue Updates von Gentoo aufgenommen"
        },
        {
          "date": "2022-09-13T22:00:00.000+00:00",
          "number": "36",
          "summary": "Neue Updates von BROCADE aufgenommen"
        },
        {
          "date": "2022-09-20T22:00:00.000+00:00",
          "number": "37",
          "summary": "Neue Updates von HP aufgenommen"
        },
        {
          "date": "2022-09-29T22:00:00.000+00:00",
          "number": "38",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2022-10-26T22:00:00.000+00:00",
          "number": "39",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-08-13T22:00:00.000+00:00",
          "number": "40",
          "summary": "Neue Updates von HP aufgenommen"
        },
        {
          "date": "2023-08-17T22:00:00.000+00:00",
          "number": "41",
          "summary": "Neue Updates von F5 aufgenommen"
        },
        {
          "date": "2025-01-29T23:00:00.000+00:00",
          "number": "42",
          "summary": "Neue Updates von openSUSE aufgenommen"
        }
      ],
      "status": "final",
      "version": "42"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Amazon Linux 2",
            "product": {
              "name": "Amazon Linux 2",
              "product_id": "398363",
              "product_identification_helper": {
                "cpe": "cpe:/o:amazon:linux_2:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Amazon"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c2.4.49",
                "product": {
                  "name": "Apache HTTP Server \u003c2.4.49",
                  "product_id": "67869"
                }
              },
              {
                "category": "product_version",
                "name": "2.4.49",
                "product": {
                  "name": "Apache HTTP Server 2.4.49",
                  "product_id": "67869-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:apache:http_server:-"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "HTTP Server"
          }
        ],
        "category": "vendor",
        "name": "Apache"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Avaya Aura Application Enablement Services",
            "product": {
              "name": "Avaya Aura Application Enablement Services",
              "product_id": "T015516",
              "product_identification_helper": {
                "cpe": "cpe:/a:avaya:aura_application_enablement_services:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Avaya Aura Communication Manager",
            "product": {
              "name": "Avaya Aura Communication Manager",
              "product_id": "T015126",
              "product_identification_helper": {
                "cpe": "cpe:/a:avaya:communication_manager:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Avaya Aura Experience Portal",
            "product": {
              "name": "Avaya Aura Experience Portal",
              "product_id": "T015519",
              "product_identification_helper": {
                "cpe": "cpe:/a:avaya:aura_experience_portal:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Avaya Aura Session Manager",
            "product": {
              "name": "Avaya Aura Session Manager",
              "product_id": "T015127",
              "product_identification_helper": {
                "cpe": "cpe:/a:avaya:session_manager:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Avaya Aura System Manager",
            "product": {
              "name": "Avaya Aura System Manager",
              "product_id": "T015518",
              "product_identification_helper": {
                "cpe": "cpe:/a:avaya:aura_system_manager:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Avaya Web License Manager",
            "product": {
              "name": "Avaya Web License Manager",
              "product_id": "T016243",
              "product_identification_helper": {
                "cpe": "cpe:/a:avaya:web_license_manager:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Avaya"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Broadcom Brocade Switch",
            "product": {
              "name": "Broadcom Brocade Switch",
              "product_id": "T015844",
              "product_identification_helper": {
                "cpe": "cpe:/h:brocade:switch:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Broadcom"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Cisco Expressway",
            "product": {
              "name": "Cisco Expressway",
              "product_id": "T014329",
              "product_identification_helper": {
                "cpe": "cpe:/a:cisco:expressway_software:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Cisco FXOS",
            "product": {
              "name": "Cisco FXOS",
              "product_id": "660564",
              "product_identification_helper": {
                "cpe": "cpe:/o:cisco:fxos:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Cisco Firepower",
            "product": {
              "name": "Cisco Firepower",
              "product_id": "T011337",
              "product_identification_helper": {
                "cpe": "cpe:/a:cisco:firepower:-"
              }
            }
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "Provisioning",
                "product": {
                  "name": "Cisco Prime Collaboration Provisioning",
                  "product_id": "T021406",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:cisco:prime_collaboration:::provisioning"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Prime Collaboration"
          },
          {
            "category": "product_name",
            "name": "Cisco Prime Infrastructure",
            "product": {
              "name": "Cisco Prime Infrastructure",
              "product_id": "T000756",
              "product_identification_helper": {
                "cpe": "cpe:/a:cisco:prime_infrastructure:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Cisco Security Manager (CSM)",
            "product": {
              "name": "Cisco Security Manager (CSM)",
              "product_id": "95918",
              "product_identification_helper": {
                "cpe": "cpe:/a:cisco:security_manager:-"
              }
            }
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "Video Communication Server",
                "product": {
                  "name": "Cisco TelePresence Video Communication Server",
                  "product_id": "T018121",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:cisco:telepresence:video_communication_server"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "TelePresence"
          },
          {
            "category": "product_name",
            "name": "Cisco Unified Computing System (UCS)",
            "product": {
              "name": "Cisco Unified Computing System (UCS)",
              "product_id": "163824",
              "product_identification_helper": {
                "cpe": "cpe:/h:cisco:unified_computing_system:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Cisco Wide Area Application Services",
            "product": {
              "name": "Cisco Wide Area Application Services",
              "product_id": "2186",
              "product_identification_helper": {
                "cpe": "cpe:/a:cisco:wide_area_application_services:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Cisco"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "F5 BIG-IP",
                "product": {
                  "name": "F5 BIG-IP",
                  "product_id": "T001663",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:f5:big-ip:-"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c17.0.0",
                "product": {
                  "name": "F5 BIG-IP \u003c17.0.0",
                  "product_id": "T025087"
                }
              },
              {
                "category": "product_version",
                "name": "17.0.0",
                "product": {
                  "name": "F5 BIG-IP 17.0.0",
                  "product_id": "T025087-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:f5:big-ip:17.0.0"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c15.1.7",
                "product": {
                  "name": "F5 BIG-IP \u003c15.1.7",
                  "product_id": "T026110"
                }
              },
              {
                "category": "product_version",
                "name": "15.1.7",
                "product": {
                  "name": "F5 BIG-IP 15.1.7",
                  "product_id": "T026110-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:f5:big-ip:15.1.7"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c16.1.4",
                "product": {
                  "name": "F5 BIG-IP \u003c16.1.4",
                  "product_id": "T029403"
                }
              },
              {
                "category": "product_version",
                "name": "16.1.4",
                "product": {
                  "name": "F5 BIG-IP 16.1.4",
                  "product_id": "T029403-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:f5:big-ip:16.1.4"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "BIG-IP"
          }
        ],
        "category": "vendor",
        "name": "F5"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Gentoo Linux",
            "product": {
              "name": "Gentoo Linux",
              "product_id": "T012167",
              "product_identification_helper": {
                "cpe": "cpe:/o:gentoo:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Gentoo"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "HPE Fabric OS",
            "product": {
              "name": "HPE Fabric OS",
              "product_id": "T019403",
              "product_identification_helper": {
                "cpe": "cpe:/o:hpe:fabric_os:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "HPE Switch",
            "product": {
              "name": "HPE Switch",
              "product_id": "T005119",
              "product_identification_helper": {
                "cpe": "cpe:/h:hp:switch:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "HPE"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Hitachi Command Suite",
            "product": {
              "name": "Hitachi Command Suite",
              "product_id": "T010951",
              "product_identification_helper": {
                "cpe": "cpe:/a:hitachi:command_suite:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Hitachi Configuration Manager",
            "product": {
              "name": "Hitachi Configuration Manager",
              "product_id": "T020304",
              "product_identification_helper": {
                "cpe": "cpe:/a:hitachi:configuration_manager:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Hitachi Ops Center",
            "product": {
              "name": "Hitachi Ops Center",
              "product_id": "T017562",
              "product_identification_helper": {
                "cpe": "cpe:/a:hitachi:ops_center:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Hitachi"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "NetApp Data ONTAP",
            "product": {
              "name": "NetApp Data ONTAP",
              "product_id": "7654",
              "product_identification_helper": {
                "cpe": "cpe:/a:netapp:data_ontap:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "NetApp StorageGRID",
            "product": {
              "name": "NetApp StorageGRID",
              "product_id": "920206",
              "product_identification_helper": {
                "cpe": "cpe:/a:netapp:storagegrid:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "NetApp"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Open Source CentOS",
            "product": {
              "name": "Open Source CentOS",
              "product_id": "1727",
              "product_identification_helper": {
                "cpe": "cpe:/o:centos:centos:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Red Hat Enterprise Linux",
            "product": {
              "name": "Red Hat Enterprise Linux",
              "product_id": "67646",
              "product_identification_helper": {
                "cpe": "cpe:/o:redhat:enterprise_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "SUSE openSUSE",
            "product": {
              "name": "SUSE openSUSE",
              "product_id": "T027843",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:opensuse:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Ubuntu Linux",
            "product": {
              "name": "Ubuntu Linux",
              "product_id": "T000126",
              "product_identification_helper": {
                "cpe": "cpe:/o:canonical:ubuntu_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-20325",
      "notes": [
        {
          "category": "description",
          "text": "In Apache HTTP Server existieren mehrere Schwachstellen. Die Schwachstellen bestehen aufgrund einer NULL-Zeiger-Dereferenz im \"httpd core\", eines Puffer\u00fcberlaufs in \"ap_escape_quotes\" bei b\u00f6swilliger Eingabe und einer Server Side Request Forgery (SSRF) bei der Verwendung von \"mod_proxy\". Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um Sicherheitsma\u00dfnahmen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "67646",
          "T010951",
          "T015844",
          "67869",
          "T015127",
          "T015126",
          "T004914",
          "T018121",
          "T000756",
          "T020304",
          "T001663",
          "398363",
          "163824",
          "T015519",
          "T015518",
          "T014329",
          "T015516",
          "T011337",
          "7654",
          "T005119",
          "2186",
          "T012167",
          "T016243",
          "T017562",
          "T019403",
          "2951",
          "T002207",
          "T021406",
          "T000126",
          "660564",
          "95918",
          "T027843",
          "920206",
          "T029403",
          "1727",
          "T025087",
          "T026110"
        ]
      },
      "release_date": "2021-09-16T22:00:00.000+00:00",
      "title": "CVE-2021-20325"
    },
    {
      "cve": "CVE-2021-34798",
      "notes": [
        {
          "category": "description",
          "text": "In Apache HTTP Server existieren mehrere Schwachstellen. Die Schwachstellen bestehen aufgrund einer NULL-Zeiger-Dereferenz im \"httpd core\", eines Puffer\u00fcberlaufs in \"ap_escape_quotes\" bei b\u00f6swilliger Eingabe und einer Server Side Request Forgery (SSRF) bei der Verwendung von \"mod_proxy\". Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um Sicherheitsma\u00dfnahmen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "67646",
          "T010951",
          "T015844",
          "67869",
          "T015127",
          "T015126",
          "T004914",
          "T018121",
          "T000756",
          "T020304",
          "T001663",
          "398363",
          "163824",
          "T015519",
          "T015518",
          "T014329",
          "T015516",
          "T011337",
          "7654",
          "T005119",
          "2186",
          "T012167",
          "T016243",
          "T017562",
          "T019403",
          "2951",
          "T002207",
          "T021406",
          "T000126",
          "660564",
          "95918",
          "T027843",
          "920206",
          "T029403",
          "1727",
          "T025087",
          "T026110"
        ]
      },
      "release_date": "2021-09-16T22:00:00.000+00:00",
      "title": "CVE-2021-34798"
    },
    {
      "cve": "CVE-2021-39275",
      "notes": [
        {
          "category": "description",
          "text": "In Apache HTTP Server existieren mehrere Schwachstellen. Die Schwachstellen bestehen aufgrund einer NULL-Zeiger-Dereferenz im \"httpd core\", eines Puffer\u00fcberlaufs in \"ap_escape_quotes\" bei b\u00f6swilliger Eingabe und einer Server Side Request Forgery (SSRF) bei der Verwendung von \"mod_proxy\". Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um Sicherheitsma\u00dfnahmen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "67646",
          "T010951",
          "T015844",
          "67869",
          "T015127",
          "T015126",
          "T004914",
          "T018121",
          "T000756",
          "T020304",
          "T001663",
          "398363",
          "163824",
          "T015519",
          "T015518",
          "T014329",
          "T015516",
          "T011337",
          "7654",
          "T005119",
          "2186",
          "T012167",
          "T016243",
          "T017562",
          "T019403",
          "2951",
          "T002207",
          "T021406",
          "T000126",
          "660564",
          "95918",
          "T027843",
          "920206",
          "T029403",
          "1727",
          "T025087",
          "T026110"
        ]
      },
      "release_date": "2021-09-16T22:00:00.000+00:00",
      "title": "CVE-2021-39275"
    },
    {
      "cve": "CVE-2021-40438",
      "notes": [
        {
          "category": "description",
          "text": "In Apache HTTP Server existieren mehrere Schwachstellen. Die Schwachstellen bestehen aufgrund einer NULL-Zeiger-Dereferenz im \"httpd core\", eines Puffer\u00fcberlaufs in \"ap_escape_quotes\" bei b\u00f6swilliger Eingabe und einer Server Side Request Forgery (SSRF) bei der Verwendung von \"mod_proxy\". Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um Sicherheitsma\u00dfnahmen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "67646",
          "T010951",
          "T015844",
          "67869",
          "T015127",
          "T015126",
          "T004914",
          "T018121",
          "T000756",
          "T020304",
          "T001663",
          "398363",
          "163824",
          "T015519",
          "T015518",
          "T014329",
          "T015516",
          "T011337",
          "7654",
          "T005119",
          "2186",
          "T012167",
          "T016243",
          "T017562",
          "T019403",
          "2951",
          "T002207",
          "T021406",
          "T000126",
          "660564",
          "95918",
          "T027843",
          "920206",
          "T029403",
          "1727",
          "T025087",
          "T026110"
        ]
      },
      "release_date": "2021-09-16T22:00:00.000+00:00",
      "title": "CVE-2021-40438"
    },
    {
      "cve": "CVE-2021-36160",
      "notes": [
        {
          "category": "description",
          "text": "Es existiert eine Schwachstelle in Apache HTTP Server. Der Fehler besteht aufgrund eines Out-of-Bound Read in \"mod_proxy_uwsgi\". Ein entfernter Angreifer kann diese Schwachstelle ausnutzen, um den zugewiesenen Speicher zu lesen und einen Denial-of-Service-Zustand zu verursachen."
        }
      ],
      "product_status": {
        "known_affected": [
          "67646",
          "T010951",
          "T015844",
          "67869",
          "T015127",
          "T015126",
          "T004914",
          "T018121",
          "T000756",
          "T020304",
          "T001663",
          "398363",
          "163824",
          "T015519",
          "T015518",
          "T014329",
          "T015516",
          "T011337",
          "7654",
          "T005119",
          "2186",
          "T012167",
          "T016243",
          "T017562",
          "T019403",
          "2951",
          "T002207",
          "T021406",
          "T000126",
          "660564",
          "95918",
          "T027843",
          "920206",
          "T029403",
          "1727",
          "T025087",
          "T026110"
        ]
      },
      "release_date": "2021-09-16T22:00:00.000+00:00",
      "title": "CVE-2021-36160"
    }
  ]
}

WID-SEC-W-2023-1016

Vulnerability from csaf_certbund - Published: 2023-04-18 22:00 - Updated: 2023-12-26 23:00

Summary

Oracle Fusion Middleware: Mehrere Schwachstellen

Severity

Hoch

Notes

Produktbeschreibung: Oracle Fusion Middleware bündelt mehrere Produkte zur Erstellung, Betrieb und Management von intelligenten Business Anwendungen.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle Fusion Middleware ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.

Betroffene Betriebssysteme: - UNIX - Linux - Windows

CVE-2023-24998

In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "HIGH" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "HOCH" für die Schadenshöhe.

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-22899

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-21996

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-21979

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-21964

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-21960

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-21956

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2023-21931

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-46908

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-45693

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-45685

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-45047

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-43551

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-42890

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-42003

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-41966

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-41881

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-40304

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-40152

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-40151

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-40149

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-37434

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-36033

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-34305

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-33980

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-31160

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-29599

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2022-22965

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2021-37533

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2021-36374

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2021-36090

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2021-34798

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2021-31684

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2021-22569

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2020-6950

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2020-25638

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2020-13954

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2019-20916

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

CVE-2018-14371

Affected products

Known affected 4 products

Product	Identifier	Version
Oracle Fusion Middleware 8.5.6 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:8.5.6`	—
Oracle Fusion Middleware 12.2.1.3.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.3.0`	—
Oracle Fusion Middleware 12.2.1.4.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:12.2.1.4.0`	—
Oracle Fusion Middleware 14.1.1.0.0 Oracle / Fusion Middleware	`cpe:/a:oracle:fusion_middleware:14.1.1.0.0`	—

References

4 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.oracle.com/security-alerts/cpuapr2023…	external
https://www.dell.com/support/kbdoc/000220669/dsa-2023-=	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Oracle Fusion Middleware b\u00fcndelt mehrere Produkte zur Erstellung, Betrieb und Management von intelligenten Business Anwendungen.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle Fusion Middleware ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- UNIX\n- Linux\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-1016 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1016.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-1016 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1016"
      },
      {
        "category": "external",
        "summary": "Oracle Critical Patch Update Advisory - April 2023 - Appendix Oracle Fusion Middleware vom 2023-04-18",
        "url": "https://www.oracle.com/security-alerts/cpuapr2023.html#AppendixFMW"
      },
      {
        "category": "external",
        "summary": "Dell Security Advisory DSA-2023-409 vom 2023-12-23",
        "url": "https://www.dell.com/support/kbdoc/000220669/dsa-2023-="
      }
    ],
    "source_lang": "en-US",
    "title": "Oracle Fusion Middleware: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2023-12-26T23:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T17:49:14.060+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2023-1016",
      "initial_release_date": "2023-04-18T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-04-18T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2023-12-26T23:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Dell aufgenommen"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Oracle Fusion Middleware 12.2.1.3.0",
                "product": {
                  "name": "Oracle Fusion Middleware 12.2.1.3.0",
                  "product_id": "618028",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:fusion_middleware:12.2.1.3.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Fusion Middleware 12.2.1.4.0",
                "product": {
                  "name": "Oracle Fusion Middleware 12.2.1.4.0",
                  "product_id": "751674",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:fusion_middleware:12.2.1.4.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Fusion Middleware 14.1.1.0.0",
                "product": {
                  "name": "Oracle Fusion Middleware 14.1.1.0.0",
                  "product_id": "829576",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:fusion_middleware:14.1.1.0.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Oracle Fusion Middleware 8.5.6",
                "product": {
                  "name": "Oracle Fusion Middleware 8.5.6",
                  "product_id": "T024993",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:oracle:fusion_middleware:8.5.6"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Fusion Middleware"
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-24998",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2023-24998"
    },
    {
      "cve": "CVE-2023-22899",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2023-22899"
    },
    {
      "cve": "CVE-2023-21996",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2023-21996"
    },
    {
      "cve": "CVE-2023-21979",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2023-21979"
    },
    {
      "cve": "CVE-2023-21964",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2023-21964"
    },
    {
      "cve": "CVE-2023-21960",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2023-21960"
    },
    {
      "cve": "CVE-2023-21956",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2023-21956"
    },
    {
      "cve": "CVE-2023-21931",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2023-21931"
    },
    {
      "cve": "CVE-2022-46908",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-46908"
    },
    {
      "cve": "CVE-2022-45693",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-45693"
    },
    {
      "cve": "CVE-2022-45685",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-45685"
    },
    {
      "cve": "CVE-2022-45047",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-45047"
    },
    {
      "cve": "CVE-2022-43551",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-43551"
    },
    {
      "cve": "CVE-2022-42890",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-42890"
    },
    {
      "cve": "CVE-2022-42003",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-42003"
    },
    {
      "cve": "CVE-2022-41966",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-41966"
    },
    {
      "cve": "CVE-2022-41881",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-41881"
    },
    {
      "cve": "CVE-2022-40304",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-40304"
    },
    {
      "cve": "CVE-2022-40152",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-40152"
    },
    {
      "cve": "CVE-2022-40151",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-40151"
    },
    {
      "cve": "CVE-2022-40149",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-40149"
    },
    {
      "cve": "CVE-2022-37434",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-37434"
    },
    {
      "cve": "CVE-2022-36033",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-36033"
    },
    {
      "cve": "CVE-2022-34305",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-34305"
    },
    {
      "cve": "CVE-2022-33980",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-33980"
    },
    {
      "cve": "CVE-2022-31160",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-31160"
    },
    {
      "cve": "CVE-2022-29599",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-29599"
    },
    {
      "cve": "CVE-2022-22965",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2022-22965"
    },
    {
      "cve": "CVE-2021-37533",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2021-37533"
    },
    {
      "cve": "CVE-2021-36374",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2021-36374"
    },
    {
      "cve": "CVE-2021-36090",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2021-36090"
    },
    {
      "cve": "CVE-2021-34798",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2021-34798"
    },
    {
      "cve": "CVE-2021-31684",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2021-31684"
    },
    {
      "cve": "CVE-2021-22569",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2021-22569"
    },
    {
      "cve": "CVE-2020-6950",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2020-6950"
    },
    {
      "cve": "CVE-2020-25638",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2020-25638"
    },
    {
      "cve": "CVE-2020-13954",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2020-13954"
    },
    {
      "cve": "CVE-2019-20916",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2019-20916"
    },
    {
      "cve": "CVE-2018-14371",
      "notes": [
        {
          "category": "description",
          "text": "In Oracle Fusion Middleware existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"HIGH\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" f\u00fcr die Schadensh\u00f6he."
        }
      ],
      "product_status": {
        "known_affected": [
          "T024993",
          "618028",
          "751674",
          "829576"
        ]
      },
      "release_date": "2023-04-18T22:00:00.000+00:00",
      "title": "CVE-2018-14371"
    }
  ]
}

WID-SEC-W-2024-0064

Vulnerability from csaf_certbund - Published: 2024-01-10 23:00 - Updated: 2025-04-10 22:00

Summary

Juniper Produkte: Mehrere Schwachstellen

Severity

Hoch

Notes

Produktbeschreibung: JUNOS ist das "Juniper Network Operating System", das in Juniper Appliances verwendet wird. SRX Series Services Gateways ist ein Next-Generation Anti-Threat Firewall von Juniper. Bei den Switches der Juniper EX-Serie handelt es sich um Access- und Aggregations-/Core-Layer-Switches. Die Switches der QFX-Serie von Juniper sichern und automatisieren Netzwerke in Rechenzentren. Die Juniper MX-Serie ist eine Produktfamilie von Routern.

Angriff: Ein Angreifer aus dem angrenzenden Netzwerk oder ein entfernter, anonymer, authentisierter, lokaler oder physischer Angreifer kann mehrere Schwachstellen in Juniper JUNOS, Juniper JUNOS Evolved, Juniper SRX Series, Juniper EX Series, Juniper QFX Series, Juniper ACX Series, Juniper PTX Series und Juniper MX Series ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen und seine Berechtigungen zu erweitern.

Betroffene Betriebssysteme: - Appliance - BIOS/Firmware

CVE-2016-2183

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2019-17571

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2020-0465

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2020-0466

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2020-12321

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2020-9493

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2021-0920

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2021-25220

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2021-26341

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2021-26691

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2021-33655

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2021-33656

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2021-34798

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2021-3564

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2021-3573

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2021-3621

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2021-3752

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2021-39275

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2021-4155

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2021-44228

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2021-44790

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2021-44832

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-0330

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-0934

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-1462

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-1679

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-1789

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-20141

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-21699

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-2196

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-22942

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-23302

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-23305

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-23307

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-25265

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-2663

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-2795

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-2873

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-2964

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-3028

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-30594

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-3239

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-3524

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-3564

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-3566

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-3567

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-3619

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-3623

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-3625

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-3628

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-3707

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-37434

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-38023

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-39188

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-39189

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-41218

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-41222

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-4129

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-4139

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-41674

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-41974

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-4254

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-4269

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-42703

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-42720

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-42721

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-42722

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-42896

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-43750

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-4378

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-43945

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2022-47929

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-0266

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-0286

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-0386

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-0394

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-0461

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-0767

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-1195

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-1281

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-1582

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-1829

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-20569

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-20593

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-2124

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-21830

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-21843

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-21930

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-21937

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-21938

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-21939

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-2194

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-21954

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-21967

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-21968

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-22045

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-22049

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-22081

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-2235

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-22809

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-23454

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-23918

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-23920

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-24329

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-26464

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-2650

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-2828

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-32067

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-32360

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-3341

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-3446

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-36842

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-3817

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-38408

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2023-38802

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2024-21585

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2024-21587

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2024-21589

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2024-21591

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2024-21594

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2024-21595

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2024-21596

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2024-21597

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2024-21599

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2024-21600

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2024-21601

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2024-21602

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2024-21603

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2024-21604

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2024-21606

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2024-21607

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2024-21611

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2024-21612

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2024-21613

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2024-21614

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2024-21616

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

CVE-2024-21617

Affected products

Known affected 15 products

Product	Identifier	Version
Juniper EX Series 4100 Juniper / EX Series	`cpe:/h:juniper:ex:4100`	4100
Juniper JUNOS ACX7100-32C Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-32c`	ACX7100-32C
Juniper EX Series 4400 Juniper / EX Series	`cpe:/h:juniper:ex:4400`	4400
Juniper JUNOS ACX7024 Juniper / JUNOS	`cpe:/o:juniper:junos:acx7024`	ACX7024
Juniper EX Series EX9200 Juniper / EX Series	`cpe:/h:juniper:ex:ex9200`	EX9200
Juniper JUNOS ACX7100-48L Juniper / JUNOS	`cpe:/o:juniper:junos:acx7100-48l`	ACX7100-48L
Juniper MX Series Juniper	`cpe:/h:juniper:mx:-`	—
Juniper JUNOS Juniper / JUNOS	`cpe:/o:juniper:junos:-`	—
Juniper EX Series 4600 Juniper / EX Series	`cpe:/h:juniper:ex:ex4600`	4600
Juniper Junos Space <24.1R2 Juniper / Junos Space		<24.1R2
Juniper JUNOS Evolved Juniper / JUNOS	`cpe:/o:juniper:junos:evolved`	Evolved
Juniper QFX Series 5000 Juniper / QFX Series	`cpe:/h:juniper:qfx:qfx5000`	5000
Juniper EX Series Juniper / EX Series	`cpe:/h:juniper:ex:-`	—
Juniper JUNOS PTX Series Juniper / JUNOS	`cpe:/o:juniper:junos:ptx_series`	PTX Series
Juniper SRX Series Juniper	`cpe:/h:juniper:srx_service_gateways:-`	—

References

31 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://supportportal.juniper.net/JSA11272	external
https://supportportal.juniper.net/JSA75233	external
https://supportportal.juniper.net/JSA75721	external
https://supportportal.juniper.net/JSA75723	external
https://supportportal.juniper.net/JSA75725	external
https://supportportal.juniper.net/JSA75727	external
https://supportportal.juniper.net/JSA75729	external
https://supportportal.juniper.net/JSA75730	external
https://supportportal.juniper.net/JSA75733	external
https://supportportal.juniper.net/JSA75734	external
https://supportportal.juniper.net/JSA75735	external
https://supportportal.juniper.net/JSA75736	external
https://supportportal.juniper.net/JSA75737	external
https://supportportal.juniper.net/JSA75738	external
https://supportportal.juniper.net/JSA75740	external
https://supportportal.juniper.net/JSA75741	external
https://supportportal.juniper.net/JSA75742	external
https://supportportal.juniper.net/JSA75743	external
https://supportportal.juniper.net/JSA75744	external
https://supportportal.juniper.net/JSA75745	external
https://supportportal.juniper.net/JSA75747	external
https://supportportal.juniper.net/JSA75748	external
https://supportportal.juniper.net/JSA75752	external
https://supportportal.juniper.net/JSA75753	external
https://supportportal.juniper.net/JSA75754	external
https://supportportal.juniper.net/JSA75755	external
https://supportportal.juniper.net/JSA75757	external
https://supportportal.juniper.net/JSA75758	external
https://supportportal.juniper.net/s/article/2025-…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "JUNOS ist das \"Juniper Network Operating System\", das in Juniper Appliances verwendet wird.\r\nSRX Series Services Gateways ist ein Next-Generation Anti-Threat Firewall von Juniper.\r\nBei den Switches der Juniper EX-Serie handelt es sich um Access- und Aggregations-/Core-Layer-Switches.\r\nDie Switches der QFX-Serie von Juniper sichern und automatisieren Netzwerke in Rechenzentren. \r\nDie Juniper MX-Serie ist eine Produktfamilie von Routern.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer aus dem angrenzenden Netzwerk oder ein entfernter, anonymer, authentisierter, lokaler oder physischer Angreifer kann mehrere Schwachstellen in Juniper JUNOS, Juniper JUNOS Evolved, Juniper SRX Series, Juniper EX Series, Juniper QFX Series, Juniper ACX Series, Juniper PTX Series und Juniper MX Series ausnutzen, um beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren und seine Berechtigungen zu erweitern.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Appliance\n- BIOS/Firmware",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-0064 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0064.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-0064 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0064"
      },
      {
        "category": "external",
        "summary": "Juniper Security Advisory JSA11272 vom 2024-01-10",
        "url": "https://supportportal.juniper.net/JSA11272"
      },
      {
        "category": "external",
        "summary": "Juniper Security Advisory JSA75233 vom 2024-01-10",
        "url": "https://supportportal.juniper.net/JSA75233"
      },
      {
        "category": "external",
        "summary": "Juniper Security Advisory JSA75721 vom 2024-01-10",
        "url": "https://supportportal.juniper.net/JSA75721"
      },
      {
        "category": "external",
        "summary": "Juniper Security Advisory JSA75723 vom 2024-01-10",
        "url": "https://supportportal.juniper.net/JSA75723"
      },
      {
        "category": "external",
        "summary": "Juniper Security Advisory JSA75725 vom 2024-01-10",
        "url": "https://supportportal.juniper.net/JSA75725"
      },
      {
        "category": "external",
        "summary": "Juniper Security Advisory JSA75727 vom 2024-01-10",
        "url": "https://supportportal.juniper.net/JSA75727"
      },
      {
        "category": "external",
        "summary": "Juniper Security Advisory JSA75729 vom 2024-01-10",
        "url": "https://supportportal.juniper.net/JSA75729"
      },
      {
        "category": "external",
        "summary": "Juniper Security Advisory JSA75730 vom 2024-01-10",
        "url": "https://supportportal.juniper.net/JSA75730"
      },
      {
        "category": "external",
        "summary": "Juniper Security Advisory JSA75733 vom 2024-01-10",
        "url": "https://supportportal.juniper.net/JSA75733"
      },
      {
        "category": "external",
        "summary": "Juniper Security Advisory JSA75734 vom 2024-01-10",
        "url": "https://supportportal.juniper.net/JSA75734"
      },
      {
        "category": "external",
        "summary": "Juniper Security Advisory JSA75735 vom 2024-01-10",
        "url": "https://supportportal.juniper.net/JSA75735"
      },
      {
        "category": "external",
        "summary": "Juniper Security Advisory JSA75736 vom 2024-01-10",
        "url": "https://supportportal.juniper.net/JSA75736"
      },
      {
        "category": "external",
        "summary": "Juniper Security Advisory JSA75737 vom 2024-01-10",
        "url": "https://supportportal.juniper.net/JSA75737"
      },
      {
        "category": "external",
        "summary": "Juniper Security Advisory JSA75738 vom 2024-01-10",
        "url": "https://supportportal.juniper.net/JSA75738"
      },
      {
        "category": "external",
        "summary": "Juniper Security Advisory JSA75740 vom 2024-01-10",
        "url": "https://supportportal.juniper.net/JSA75740"
      },
      {
        "category": "external",
        "summary": "Juniper Security Advisory JSA75741 vom 2024-01-10",
        "url": "https://supportportal.juniper.net/JSA75741"
      },
      {
        "category": "external",
        "summary": "Juniper Security Advisory JSA75742 vom 2024-01-10",
        "url": "https://supportportal.juniper.net/JSA75742"
      },
      {
        "category": "external",
        "summary": "Juniper Security Advisory JSA75743 vom 2024-01-10",
        "url": "https://supportportal.juniper.net/JSA75743"
      },
      {
        "category": "external",
        "summary": "Juniper Security Advisory JSA75744 vom 2024-01-10",
        "url": "https://supportportal.juniper.net/JSA75744"
      },
      {
        "category": "external",
        "summary": "Juniper Security Advisory JSA75745 vom 2024-01-10",
        "url": "https://supportportal.juniper.net/JSA75745"
      },
      {
        "category": "external",
        "summary": "Juniper Security Advisory JSA75747 vom 2024-01-10",
        "url": "https://supportportal.juniper.net/JSA75747"
      },
      {
        "category": "external",
        "summary": "Juniper Security Advisory JSA75748 vom 2024-01-10",
        "url": "https://supportportal.juniper.net/JSA75748"
      },
      {
        "category": "external",
        "summary": "Juniper Security Advisory JSA75752 vom 2024-01-10",
        "url": "https://supportportal.juniper.net/JSA75752"
      },
      {
        "category": "external",
        "summary": "Juniper Security Advisory JSA75753 vom 2024-01-10",
        "url": "https://supportportal.juniper.net/JSA75753"
      },
      {
        "category": "external",
        "summary": "Juniper Security Advisory JSA75754 vom 2024-01-10",
        "url": "https://supportportal.juniper.net/JSA75754"
      },
      {
        "category": "external",
        "summary": "Juniper Security Advisory JSA75755 vom 2024-01-10",
        "url": "https://supportportal.juniper.net/JSA75755"
      },
      {
        "category": "external",
        "summary": "Juniper Security Advisory JSA75757 vom 2024-01-10",
        "url": "https://supportportal.juniper.net/JSA75757"
      },
      {
        "category": "external",
        "summary": "Juniper Security Advisory JSA75758 vom 2024-01-10",
        "url": "https://supportportal.juniper.net/JSA75758"
      },
      {
        "category": "external",
        "summary": "Juniper Security Bulletin",
        "url": "https://supportportal.juniper.net/s/article/2025-01-Security-Bulletin-Junos-Space-Multiple-vulnerabilities-resolved-in-24-1R2-release?language=en_US"
      }
    ],
    "source_lang": "en-US",
    "title": "Juniper Produkte: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-04-10T22:00:00.000+00:00",
      "generator": {
        "date": "2025-04-11T08:49:58.286+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.12"
        }
      },
      "id": "WID-SEC-W-2024-0064",
      "initial_release_date": "2024-01-10T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-01-10T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2025-04-10T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates aufgenommen"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Juniper EX Series",
                "product": {
                  "name": "Juniper EX Series",
                  "product_id": "T019811",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:juniper:ex:-"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "4600",
                "product": {
                  "name": "Juniper EX Series 4600",
                  "product_id": "T021598",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:juniper:ex:ex4600"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "4100",
                "product": {
                  "name": "Juniper EX Series 4100",
                  "product_id": "T030475",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:juniper:ex:4100"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "4400",
                "product": {
                  "name": "Juniper EX Series 4400",
                  "product_id": "T030476",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:juniper:ex:4400"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "EX9200",
                "product": {
                  "name": "Juniper EX Series EX9200",
                  "product_id": "T031997",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:juniper:ex:ex9200"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "EX Series"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "Evolved",
                "product": {
                  "name": "Juniper JUNOS Evolved",
                  "product_id": "T018886",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:juniper:junos:evolved"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "PTX Series",
                "product": {
                  "name": "Juniper JUNOS PTX Series",
                  "product_id": "T023853",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:juniper:junos:ptx_series"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Juniper JUNOS",
                "product": {
                  "name": "Juniper JUNOS",
                  "product_id": "T030471",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:juniper:junos:-"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ACX7024",
                "product": {
                  "name": "Juniper JUNOS ACX7024",
                  "product_id": "T031994",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:juniper:junos:acx7024"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ACX7100-32C",
                "product": {
                  "name": "Juniper JUNOS ACX7100-32C",
                  "product_id": "T031995",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:juniper:junos:acx7100-32c"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ACX7100-48L",
                "product": {
                  "name": "Juniper JUNOS ACX7100-48L",
                  "product_id": "T031996",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:juniper:junos:acx7100-48l"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "JUNOS"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c24.1R2",
                "product": {
                  "name": "Juniper Junos Space \u003c24.1R2",
                  "product_id": "T040074"
                }
              },
              {
                "category": "product_version",
                "name": "24.1R2",
                "product": {
                  "name": "Juniper Junos Space 24.1R2",
                  "product_id": "T040074-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:juniper:junos_space:24.1r2"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Junos Space"
          },
          {
            "category": "product_name",
            "name": "Juniper MX Series",
            "product": {
              "name": "Juniper MX Series",
              "product_id": "918766",
              "product_identification_helper": {
                "cpe": "cpe:/h:juniper:mx:-"
              }
            }
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "5000",
                "product": {
                  "name": "Juniper QFX Series 5000",
                  "product_id": "T021597",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:juniper:qfx:qfx5000"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "QFX Series"
          },
          {
            "category": "product_name",
            "name": "Juniper SRX Series",
            "product": {
              "name": "Juniper SRX Series",
              "product_id": "T021593",
              "product_identification_helper": {
                "cpe": "cpe:/h:juniper:srx_service_gateways:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Juniper"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2016-2183",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2016-2183"
    },
    {
      "cve": "CVE-2019-17571",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2019-17571"
    },
    {
      "cve": "CVE-2020-0465",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2020-0465"
    },
    {
      "cve": "CVE-2020-0466",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2020-0466"
    },
    {
      "cve": "CVE-2020-12321",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2020-12321"
    },
    {
      "cve": "CVE-2020-9493",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2020-9493"
    },
    {
      "cve": "CVE-2021-0920",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2021-0920"
    },
    {
      "cve": "CVE-2021-25220",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2021-25220"
    },
    {
      "cve": "CVE-2021-26341",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2021-26341"
    },
    {
      "cve": "CVE-2021-26691",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2021-26691"
    },
    {
      "cve": "CVE-2021-33655",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2021-33655"
    },
    {
      "cve": "CVE-2021-33656",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2021-33656"
    },
    {
      "cve": "CVE-2021-34798",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2021-34798"
    },
    {
      "cve": "CVE-2021-3564",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2021-3564"
    },
    {
      "cve": "CVE-2021-3573",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2021-3573"
    },
    {
      "cve": "CVE-2021-3621",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2021-3621"
    },
    {
      "cve": "CVE-2021-3752",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2021-3752"
    },
    {
      "cve": "CVE-2021-39275",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2021-39275"
    },
    {
      "cve": "CVE-2021-4155",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2021-4155"
    },
    {
      "cve": "CVE-2021-44228",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2021-44228"
    },
    {
      "cve": "CVE-2021-44790",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2021-44790"
    },
    {
      "cve": "CVE-2021-44832",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2021-44832"
    },
    {
      "cve": "CVE-2022-0330",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-0330"
    },
    {
      "cve": "CVE-2022-0934",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-0934"
    },
    {
      "cve": "CVE-2022-1462",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-1462"
    },
    {
      "cve": "CVE-2022-1679",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-1679"
    },
    {
      "cve": "CVE-2022-1789",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-1789"
    },
    {
      "cve": "CVE-2022-20141",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-20141"
    },
    {
      "cve": "CVE-2022-21699",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-21699"
    },
    {
      "cve": "CVE-2022-2196",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-2196"
    },
    {
      "cve": "CVE-2022-22942",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-22942"
    },
    {
      "cve": "CVE-2022-23302",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-23302"
    },
    {
      "cve": "CVE-2022-23305",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-23305"
    },
    {
      "cve": "CVE-2022-23307",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-23307"
    },
    {
      "cve": "CVE-2022-25265",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-25265"
    },
    {
      "cve": "CVE-2022-2663",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-2663"
    },
    {
      "cve": "CVE-2022-2795",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-2795"
    },
    {
      "cve": "CVE-2022-2873",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-2873"
    },
    {
      "cve": "CVE-2022-2964",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-2964"
    },
    {
      "cve": "CVE-2022-3028",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-3028"
    },
    {
      "cve": "CVE-2022-30594",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-30594"
    },
    {
      "cve": "CVE-2022-3239",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-3239"
    },
    {
      "cve": "CVE-2022-3524",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-3524"
    },
    {
      "cve": "CVE-2022-3564",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-3564"
    },
    {
      "cve": "CVE-2022-3566",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-3566"
    },
    {
      "cve": "CVE-2022-3567",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-3567"
    },
    {
      "cve": "CVE-2022-3619",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-3619"
    },
    {
      "cve": "CVE-2022-3623",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-3623"
    },
    {
      "cve": "CVE-2022-3625",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-3625"
    },
    {
      "cve": "CVE-2022-3628",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-3628"
    },
    {
      "cve": "CVE-2022-3707",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-3707"
    },
    {
      "cve": "CVE-2022-37434",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-37434"
    },
    {
      "cve": "CVE-2022-38023",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-38023"
    },
    {
      "cve": "CVE-2022-39188",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-39188"
    },
    {
      "cve": "CVE-2022-39189",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-39189"
    },
    {
      "cve": "CVE-2022-41218",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-41218"
    },
    {
      "cve": "CVE-2022-41222",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-41222"
    },
    {
      "cve": "CVE-2022-4129",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-4129"
    },
    {
      "cve": "CVE-2022-4139",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-4139"
    },
    {
      "cve": "CVE-2022-41674",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-41674"
    },
    {
      "cve": "CVE-2022-41974",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-41974"
    },
    {
      "cve": "CVE-2022-4254",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-4254"
    },
    {
      "cve": "CVE-2022-4269",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-4269"
    },
    {
      "cve": "CVE-2022-42703",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-42703"
    },
    {
      "cve": "CVE-2022-42720",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-42720"
    },
    {
      "cve": "CVE-2022-42721",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-42721"
    },
    {
      "cve": "CVE-2022-42722",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-42722"
    },
    {
      "cve": "CVE-2022-42896",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-42896"
    },
    {
      "cve": "CVE-2022-43750",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-43750"
    },
    {
      "cve": "CVE-2022-4378",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-4378"
    },
    {
      "cve": "CVE-2022-43945",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-43945"
    },
    {
      "cve": "CVE-2022-47929",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2022-47929"
    },
    {
      "cve": "CVE-2023-0266",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-0266"
    },
    {
      "cve": "CVE-2023-0286",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-0286"
    },
    {
      "cve": "CVE-2023-0386",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-0386"
    },
    {
      "cve": "CVE-2023-0394",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-0394"
    },
    {
      "cve": "CVE-2023-0461",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-0461"
    },
    {
      "cve": "CVE-2023-0767",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-0767"
    },
    {
      "cve": "CVE-2023-1195",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-1195"
    },
    {
      "cve": "CVE-2023-1281",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-1281"
    },
    {
      "cve": "CVE-2023-1582",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-1582"
    },
    {
      "cve": "CVE-2023-1829",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-1829"
    },
    {
      "cve": "CVE-2023-20569",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-20569"
    },
    {
      "cve": "CVE-2023-20593",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-20593"
    },
    {
      "cve": "CVE-2023-2124",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-2124"
    },
    {
      "cve": "CVE-2023-21830",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-21830"
    },
    {
      "cve": "CVE-2023-21843",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-21843"
    },
    {
      "cve": "CVE-2023-21930",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-21930"
    },
    {
      "cve": "CVE-2023-21937",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-21937"
    },
    {
      "cve": "CVE-2023-21938",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-21938"
    },
    {
      "cve": "CVE-2023-21939",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-21939"
    },
    {
      "cve": "CVE-2023-2194",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-2194"
    },
    {
      "cve": "CVE-2023-21954",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-21954"
    },
    {
      "cve": "CVE-2023-21967",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-21967"
    },
    {
      "cve": "CVE-2023-21968",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-21968"
    },
    {
      "cve": "CVE-2023-22045",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-22045"
    },
    {
      "cve": "CVE-2023-22049",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-22049"
    },
    {
      "cve": "CVE-2023-22081",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-22081"
    },
    {
      "cve": "CVE-2023-2235",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-2235"
    },
    {
      "cve": "CVE-2023-22809",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-22809"
    },
    {
      "cve": "CVE-2023-23454",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-23454"
    },
    {
      "cve": "CVE-2023-23918",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-23918"
    },
    {
      "cve": "CVE-2023-23920",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-23920"
    },
    {
      "cve": "CVE-2023-24329",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-24329"
    },
    {
      "cve": "CVE-2023-26464",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-26464"
    },
    {
      "cve": "CVE-2023-2650",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-2650"
    },
    {
      "cve": "CVE-2023-2828",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-2828"
    },
    {
      "cve": "CVE-2023-32067",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-32067"
    },
    {
      "cve": "CVE-2023-32360",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-32360"
    },
    {
      "cve": "CVE-2023-3341",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-3341"
    },
    {
      "cve": "CVE-2023-3446",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-3446"
    },
    {
      "cve": "CVE-2023-36842",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-36842"
    },
    {
      "cve": "CVE-2023-3817",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-3817"
    },
    {
      "cve": "CVE-2023-38408",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-38408"
    },
    {
      "cve": "CVE-2023-38802",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2023-38802"
    },
    {
      "cve": "CVE-2024-21585",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2024-21585"
    },
    {
      "cve": "CVE-2024-21587",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2024-21587"
    },
    {
      "cve": "CVE-2024-21589",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2024-21589"
    },
    {
      "cve": "CVE-2024-21591",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2024-21591"
    },
    {
      "cve": "CVE-2024-21594",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2024-21594"
    },
    {
      "cve": "CVE-2024-21595",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2024-21595"
    },
    {
      "cve": "CVE-2024-21596",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2024-21596"
    },
    {
      "cve": "CVE-2024-21597",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2024-21597"
    },
    {
      "cve": "CVE-2024-21599",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2024-21599"
    },
    {
      "cve": "CVE-2024-21600",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2024-21600"
    },
    {
      "cve": "CVE-2024-21601",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2024-21601"
    },
    {
      "cve": "CVE-2024-21602",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2024-21602"
    },
    {
      "cve": "CVE-2024-21603",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2024-21603"
    },
    {
      "cve": "CVE-2024-21604",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2024-21604"
    },
    {
      "cve": "CVE-2024-21606",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2024-21606"
    },
    {
      "cve": "CVE-2024-21607",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2024-21607"
    },
    {
      "cve": "CVE-2024-21611",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2024-21611"
    },
    {
      "cve": "CVE-2024-21612",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2024-21612"
    },
    {
      "cve": "CVE-2024-21613",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2024-21613"
    },
    {
      "cve": "CVE-2024-21614",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2024-21614"
    },
    {
      "cve": "CVE-2024-21616",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2024-21616"
    },
    {
      "cve": "CVE-2024-21617",
      "product_status": {
        "known_affected": [
          "T030475",
          "T031995",
          "T030476",
          "T031994",
          "T031997",
          "T031996",
          "918766",
          "T030471",
          "T021598",
          "T040074",
          "T018886",
          "T021597",
          "T019811",
          "T023853",
          "T021593"
        ]
      },
      "release_date": "2024-01-10T23:00:00.000+00:00",
      "title": "CVE-2024-21617"
    }
  ]
}

WID-SEC-W-2024-1591

Vulnerability from csaf_certbund - Published: 2024-07-10 22:00 - Updated: 2024-11-11 23:00

Summary

Juniper JUNOS: Mehrere Schwachstellen

Severity

Mittel

Notes

Produktbeschreibung: JUNOS ist das "Juniper Network Operating System", das in Juniper Appliances verwendet wird.

Angriff: Ein Angreifer kann mehrere Schwachstellen in Juniper JUNOS ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen, Privilegien zu erweitern und Sicherheitsmechanismen inklusive zu umgehen.

Betroffene Betriebssysteme: - Sonstiges

CVE-2006-20001

Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungenügende Eingabeüberprüfungen, Unsachgemäße Überprüfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgemäße Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Pufferüberläufe. Diese Schwachstellen ermöglichen Angreifern Denial of Service Zustände zu verursachen, Informationen offenzulegen, Code auszuführen, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalität zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig.

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2007-5846

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2008-6123

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2011-1473

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2011-5094

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2012-6151

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2014-10064

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2014-2285

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2014-2310

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2014-3565

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2014-7191

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2014-8882

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2015-5621

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2015-8100

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2015-9262

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2016-1000232

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2016-10540

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2016-4658

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2017-1000048

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2017-15010

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2018-18065

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2018-20834

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2018-3737

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2018-7408

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2019-10081

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2019-10082

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2019-10092

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2019-10097

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2019-10098

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2019-11719

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2019-11727

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2019-11756

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2019-16775

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2019-16776

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2019-16777

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2019-17006

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2019-17023

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2019-17567

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2019-20149

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2019-20892

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2019-9517

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2020-11668

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2020-11984

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2020-11993

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2020-12362

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2020-12400

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2020-12401

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2020-12402

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2020-12403

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2020-13938

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2020-13950

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2020-14145

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2020-15861

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2020-15862

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2020-1927

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2020-1934

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2020-28469

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2020-28502

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2020-35452

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2020-36049

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2020-6829

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2020-7660

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2020-7754

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2020-7774

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2020-8648

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2020-9490

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-22543

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-2342

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-23440

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-2356

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-2372

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-2385

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-2389

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-2390

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-25745

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-25746

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-25748

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-26690

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-26691

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-27290

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-29469

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-30641

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-31535

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-31618

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-3177

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-32803

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-32804

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-33033

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-33034

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-33193

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-3347

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-33909

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-34798

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-35604

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-35624

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-36160

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-37701

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-37712

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-37713

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-3803

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-39275

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-40438

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-41524

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-41773

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-42013

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-43527

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-44224

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-44225

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-44790

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2021-44906

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-21245

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-21270

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-21303

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-21304

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-21344

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-21367

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-21417

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-21427

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-21444

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-21451

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-21454

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-21460

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-21589

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-21592

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-21595

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-21608

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-21617

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-22719

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-22720

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-22721

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-22822

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-22823

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-22824

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-23471

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-23524

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-23525

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-23526

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-23852

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-23943

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-25147

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-25235

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-25236

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-2526

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-25315

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-26377

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-28330

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-28614

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-28615

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-29167

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-29404

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-30522

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-30556

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-31813

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-3517

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-3564

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-36760

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-37434

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-37436

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-40674

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-41741

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-41742

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-4203

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-4304

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-4450

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-46663

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2022-4886

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-0215

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-0216

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-0217

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-0286

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-0401

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-0464

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-0465

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-0466

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-0767

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-1255

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-2002

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-20593

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-21830

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-21840

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-21843

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-21912

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-21963

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-21980

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-22025

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-22067

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-22081

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-22652

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-24329

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-25153

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-25173

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-25690

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-2700

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-27522

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-2828

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-28840

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-28841

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-28842

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-2975

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-30079

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-30630

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-3090

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-32067

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-32360

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-32435

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-32439

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-32732

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-3341

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-3390

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-33953

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-34058

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-34059

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-3446

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-34969

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-35001

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-35788

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-3611

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-37450

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-3776

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-3817

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-4004

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-4206

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-4207

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-4208

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-42753

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-4785

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-4807

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-4863

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-5043

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-5129

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2023-5363

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-20918

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-20919

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-20921

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-20926

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-20932

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-20945

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-20952

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39511

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39512

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39513

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39514

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39517

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39518

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39519

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39520

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39521

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39522

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39523

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39524

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39528

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39529

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39530

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39531

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39532

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39533

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39535

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39536

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39537

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39538

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39539

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39540

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39541

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39542

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39543

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39545

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39546

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39548

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39549

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39550

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39551

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39553

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39554

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39555

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39556

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39557

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39558

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39559

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39560

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39561

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

CVE-2024-39565

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Juniper JUNOS Juniper	`cpe:/o:juniper:junos:-`	—

References

3 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://supportportal.juniper.net/s/global-search…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "JUNOS ist das \"Juniper Network Operating System\", das in Juniper Appliances verwendet wird.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen in Juniper JUNOS ausnutzen, um einen Denial of Service  zu verursachen, Informationen offenzulegen, Privilegien zu erweitern und Sicherheitsmechanismen inklusive zu umgehen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Sonstiges",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-1591 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1591.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-1591 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1591"
      },
      {
        "category": "external",
        "summary": "Juniper Patchday July 2024 vom 2024-07-10",
        "url": "https://supportportal.juniper.net/s/global-search/%40uri?language=en_US#sort=%40sfcec_community_publish_date_formula__c%20descending\u0026numberOfResults=100\u0026f:ctype=%5BSecurity%20Advisories%5D"
      }
    ],
    "source_lang": "en-US",
    "title": "Juniper JUNOS: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2024-11-11T23:00:00.000+00:00",
      "generator": {
        "date": "2024-11-12T09:31:28.569+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.8"
        }
      },
      "id": "WID-SEC-W-2024-1591",
      "initial_release_date": "2024-07-10T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-07-10T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2024-11-11T23:00:00.000+00:00",
          "number": "2",
          "summary": "URL Kodierung angepasst"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Juniper JUNOS",
            "product": {
              "name": "Juniper JUNOS",
              "product_id": "T036093",
              "product_identification_helper": {
                "cpe": "cpe:/o:juniper:junos:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Juniper"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2006-20001",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2006-20001"
    },
    {
      "cve": "CVE-2007-5846",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2007-5846"
    },
    {
      "cve": "CVE-2008-6123",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2008-6123"
    },
    {
      "cve": "CVE-2011-1473",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2011-1473"
    },
    {
      "cve": "CVE-2011-5094",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2011-5094"
    },
    {
      "cve": "CVE-2012-6151",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2012-6151"
    },
    {
      "cve": "CVE-2014-10064",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2014-10064"
    },
    {
      "cve": "CVE-2014-2285",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2014-2285"
    },
    {
      "cve": "CVE-2014-2310",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2014-2310"
    },
    {
      "cve": "CVE-2014-3565",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2014-3565"
    },
    {
      "cve": "CVE-2014-7191",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2014-7191"
    },
    {
      "cve": "CVE-2014-8882",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2014-8882"
    },
    {
      "cve": "CVE-2015-5621",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2015-5621"
    },
    {
      "cve": "CVE-2015-8100",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2015-8100"
    },
    {
      "cve": "CVE-2015-9262",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2015-9262"
    },
    {
      "cve": "CVE-2016-1000232",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2016-1000232"
    },
    {
      "cve": "CVE-2016-10540",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2016-10540"
    },
    {
      "cve": "CVE-2016-4658",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2016-4658"
    },
    {
      "cve": "CVE-2017-1000048",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2017-1000048"
    },
    {
      "cve": "CVE-2017-15010",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2017-15010"
    },
    {
      "cve": "CVE-2018-18065",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2018-18065"
    },
    {
      "cve": "CVE-2018-20834",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2018-20834"
    },
    {
      "cve": "CVE-2018-3737",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2018-3737"
    },
    {
      "cve": "CVE-2018-7408",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2018-7408"
    },
    {
      "cve": "CVE-2019-10081",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2019-10081"
    },
    {
      "cve": "CVE-2019-10082",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2019-10082"
    },
    {
      "cve": "CVE-2019-10092",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2019-10092"
    },
    {
      "cve": "CVE-2019-10097",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2019-10097"
    },
    {
      "cve": "CVE-2019-10098",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2019-10098"
    },
    {
      "cve": "CVE-2019-11719",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2019-11719"
    },
    {
      "cve": "CVE-2019-11727",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2019-11727"
    },
    {
      "cve": "CVE-2019-11756",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2019-11756"
    },
    {
      "cve": "CVE-2019-16775",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2019-16775"
    },
    {
      "cve": "CVE-2019-16776",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2019-16776"
    },
    {
      "cve": "CVE-2019-16777",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2019-16777"
    },
    {
      "cve": "CVE-2019-17006",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2019-17006"
    },
    {
      "cve": "CVE-2019-17023",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2019-17023"
    },
    {
      "cve": "CVE-2019-17567",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2019-17567"
    },
    {
      "cve": "CVE-2019-20149",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2019-20149"
    },
    {
      "cve": "CVE-2019-20892",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2019-20892"
    },
    {
      "cve": "CVE-2019-9517",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2019-9517"
    },
    {
      "cve": "CVE-2020-11668",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2020-11668"
    },
    {
      "cve": "CVE-2020-11984",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2020-11984"
    },
    {
      "cve": "CVE-2020-11993",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2020-11993"
    },
    {
      "cve": "CVE-2020-12362",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2020-12362"
    },
    {
      "cve": "CVE-2020-12400",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2020-12400"
    },
    {
      "cve": "CVE-2020-12401",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2020-12401"
    },
    {
      "cve": "CVE-2020-12402",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2020-12402"
    },
    {
      "cve": "CVE-2020-12403",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2020-12403"
    },
    {
      "cve": "CVE-2020-13938",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2020-13938"
    },
    {
      "cve": "CVE-2020-13950",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2020-13950"
    },
    {
      "cve": "CVE-2020-14145",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2020-14145"
    },
    {
      "cve": "CVE-2020-15861",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2020-15861"
    },
    {
      "cve": "CVE-2020-15862",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2020-15862"
    },
    {
      "cve": "CVE-2020-1927",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2020-1927"
    },
    {
      "cve": "CVE-2020-1934",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2020-1934"
    },
    {
      "cve": "CVE-2020-28469",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2020-28469"
    },
    {
      "cve": "CVE-2020-28502",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2020-28502"
    },
    {
      "cve": "CVE-2020-35452",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2020-35452"
    },
    {
      "cve": "CVE-2020-36049",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2020-36049"
    },
    {
      "cve": "CVE-2020-6829",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2020-6829"
    },
    {
      "cve": "CVE-2020-7660",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2020-7660"
    },
    {
      "cve": "CVE-2020-7754",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2020-7754"
    },
    {
      "cve": "CVE-2020-7774",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2020-7774"
    },
    {
      "cve": "CVE-2020-8648",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2020-8648"
    },
    {
      "cve": "CVE-2020-9490",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2020-9490"
    },
    {
      "cve": "CVE-2021-22543",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-22543"
    },
    {
      "cve": "CVE-2021-2342",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-2342"
    },
    {
      "cve": "CVE-2021-23440",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-23440"
    },
    {
      "cve": "CVE-2021-2356",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-2356"
    },
    {
      "cve": "CVE-2021-2372",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-2372"
    },
    {
      "cve": "CVE-2021-2385",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-2385"
    },
    {
      "cve": "CVE-2021-2389",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-2389"
    },
    {
      "cve": "CVE-2021-2390",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-2390"
    },
    {
      "cve": "CVE-2021-25745",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-25745"
    },
    {
      "cve": "CVE-2021-25746",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-25746"
    },
    {
      "cve": "CVE-2021-25748",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-25748"
    },
    {
      "cve": "CVE-2021-26690",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-26690"
    },
    {
      "cve": "CVE-2021-26691",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-26691"
    },
    {
      "cve": "CVE-2021-27290",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-27290"
    },
    {
      "cve": "CVE-2021-29469",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-29469"
    },
    {
      "cve": "CVE-2021-30641",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-30641"
    },
    {
      "cve": "CVE-2021-31535",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-31535"
    },
    {
      "cve": "CVE-2021-31618",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-31618"
    },
    {
      "cve": "CVE-2021-3177",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-3177"
    },
    {
      "cve": "CVE-2021-32803",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-32803"
    },
    {
      "cve": "CVE-2021-32804",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-32804"
    },
    {
      "cve": "CVE-2021-33033",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-33033"
    },
    {
      "cve": "CVE-2021-33034",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-33034"
    },
    {
      "cve": "CVE-2021-33193",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-33193"
    },
    {
      "cve": "CVE-2021-3347",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-3347"
    },
    {
      "cve": "CVE-2021-33909",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-33909"
    },
    {
      "cve": "CVE-2021-34798",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-34798"
    },
    {
      "cve": "CVE-2021-35604",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-35604"
    },
    {
      "cve": "CVE-2021-35624",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-35624"
    },
    {
      "cve": "CVE-2021-36160",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-36160"
    },
    {
      "cve": "CVE-2021-37701",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-37701"
    },
    {
      "cve": "CVE-2021-37712",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-37712"
    },
    {
      "cve": "CVE-2021-37713",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-37713"
    },
    {
      "cve": "CVE-2021-3803",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-3803"
    },
    {
      "cve": "CVE-2021-39275",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-39275"
    },
    {
      "cve": "CVE-2021-40438",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-40438"
    },
    {
      "cve": "CVE-2021-41524",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-41524"
    },
    {
      "cve": "CVE-2021-41773",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-41773"
    },
    {
      "cve": "CVE-2021-42013",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-42013"
    },
    {
      "cve": "CVE-2021-43527",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-43527"
    },
    {
      "cve": "CVE-2021-44224",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-44224"
    },
    {
      "cve": "CVE-2021-44225",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-44225"
    },
    {
      "cve": "CVE-2021-44790",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-44790"
    },
    {
      "cve": "CVE-2021-44906",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2021-44906"
    },
    {
      "cve": "CVE-2022-21245",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-21245"
    },
    {
      "cve": "CVE-2022-21270",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-21270"
    },
    {
      "cve": "CVE-2022-21303",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-21303"
    },
    {
      "cve": "CVE-2022-21304",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-21304"
    },
    {
      "cve": "CVE-2022-21344",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-21344"
    },
    {
      "cve": "CVE-2022-21367",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-21367"
    },
    {
      "cve": "CVE-2022-21417",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-21417"
    },
    {
      "cve": "CVE-2022-21427",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-21427"
    },
    {
      "cve": "CVE-2022-21444",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-21444"
    },
    {
      "cve": "CVE-2022-21451",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-21451"
    },
    {
      "cve": "CVE-2022-21454",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-21454"
    },
    {
      "cve": "CVE-2022-21460",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-21460"
    },
    {
      "cve": "CVE-2022-21589",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-21589"
    },
    {
      "cve": "CVE-2022-21592",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-21592"
    },
    {
      "cve": "CVE-2022-21595",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-21595"
    },
    {
      "cve": "CVE-2022-21608",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-21608"
    },
    {
      "cve": "CVE-2022-21617",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-21617"
    },
    {
      "cve": "CVE-2022-22719",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-22719"
    },
    {
      "cve": "CVE-2022-22720",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-22720"
    },
    {
      "cve": "CVE-2022-22721",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-22721"
    },
    {
      "cve": "CVE-2022-22822",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-22822"
    },
    {
      "cve": "CVE-2022-22823",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-22823"
    },
    {
      "cve": "CVE-2022-22824",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-22824"
    },
    {
      "cve": "CVE-2022-23471",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-23471"
    },
    {
      "cve": "CVE-2022-23524",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-23524"
    },
    {
      "cve": "CVE-2022-23525",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-23525"
    },
    {
      "cve": "CVE-2022-23526",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-23526"
    },
    {
      "cve": "CVE-2022-23852",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-23852"
    },
    {
      "cve": "CVE-2022-23943",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-23943"
    },
    {
      "cve": "CVE-2022-25147",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-25147"
    },
    {
      "cve": "CVE-2022-25235",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-25235"
    },
    {
      "cve": "CVE-2022-25236",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-25236"
    },
    {
      "cve": "CVE-2022-2526",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-2526"
    },
    {
      "cve": "CVE-2022-25315",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-25315"
    },
    {
      "cve": "CVE-2022-26377",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-26377"
    },
    {
      "cve": "CVE-2022-28330",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-28330"
    },
    {
      "cve": "CVE-2022-28614",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-28614"
    },
    {
      "cve": "CVE-2022-28615",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-28615"
    },
    {
      "cve": "CVE-2022-29167",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-29167"
    },
    {
      "cve": "CVE-2022-29404",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-29404"
    },
    {
      "cve": "CVE-2022-30522",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-30522"
    },
    {
      "cve": "CVE-2022-30556",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-30556"
    },
    {
      "cve": "CVE-2022-31813",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-31813"
    },
    {
      "cve": "CVE-2022-3517",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-3517"
    },
    {
      "cve": "CVE-2022-3564",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-3564"
    },
    {
      "cve": "CVE-2022-36760",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-36760"
    },
    {
      "cve": "CVE-2022-37434",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-37434"
    },
    {
      "cve": "CVE-2022-37436",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-37436"
    },
    {
      "cve": "CVE-2022-40674",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-40674"
    },
    {
      "cve": "CVE-2022-41741",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-41741"
    },
    {
      "cve": "CVE-2022-41742",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-41742"
    },
    {
      "cve": "CVE-2022-4203",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-4203"
    },
    {
      "cve": "CVE-2022-4304",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-4304"
    },
    {
      "cve": "CVE-2022-4450",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-4450"
    },
    {
      "cve": "CVE-2022-46663",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-46663"
    },
    {
      "cve": "CVE-2022-4886",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2022-4886"
    },
    {
      "cve": "CVE-2023-0215",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-0215"
    },
    {
      "cve": "CVE-2023-0216",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-0216"
    },
    {
      "cve": "CVE-2023-0217",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-0217"
    },
    {
      "cve": "CVE-2023-0286",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-0286"
    },
    {
      "cve": "CVE-2023-0401",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-0401"
    },
    {
      "cve": "CVE-2023-0464",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-0464"
    },
    {
      "cve": "CVE-2023-0465",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-0465"
    },
    {
      "cve": "CVE-2023-0466",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-0466"
    },
    {
      "cve": "CVE-2023-0767",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-0767"
    },
    {
      "cve": "CVE-2023-1255",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-1255"
    },
    {
      "cve": "CVE-2023-2002",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-2002"
    },
    {
      "cve": "CVE-2023-20593",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-20593"
    },
    {
      "cve": "CVE-2023-21830",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-21830"
    },
    {
      "cve": "CVE-2023-21840",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-21840"
    },
    {
      "cve": "CVE-2023-21843",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-21843"
    },
    {
      "cve": "CVE-2023-21912",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-21912"
    },
    {
      "cve": "CVE-2023-21963",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-21963"
    },
    {
      "cve": "CVE-2023-21980",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-21980"
    },
    {
      "cve": "CVE-2023-22025",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-22025"
    },
    {
      "cve": "CVE-2023-22067",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-22067"
    },
    {
      "cve": "CVE-2023-22081",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-22081"
    },
    {
      "cve": "CVE-2023-22652",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-22652"
    },
    {
      "cve": "CVE-2023-24329",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-24329"
    },
    {
      "cve": "CVE-2023-25153",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-25153"
    },
    {
      "cve": "CVE-2023-25173",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-25173"
    },
    {
      "cve": "CVE-2023-25690",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-25690"
    },
    {
      "cve": "CVE-2023-2700",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-2700"
    },
    {
      "cve": "CVE-2023-27522",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-27522"
    },
    {
      "cve": "CVE-2023-2828",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-2828"
    },
    {
      "cve": "CVE-2023-28840",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-28840"
    },
    {
      "cve": "CVE-2023-28841",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-28841"
    },
    {
      "cve": "CVE-2023-28842",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-28842"
    },
    {
      "cve": "CVE-2023-2975",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-2975"
    },
    {
      "cve": "CVE-2023-30079",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-30079"
    },
    {
      "cve": "CVE-2023-30630",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-30630"
    },
    {
      "cve": "CVE-2023-3090",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-3090"
    },
    {
      "cve": "CVE-2023-32067",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-32067"
    },
    {
      "cve": "CVE-2023-32360",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-32360"
    },
    {
      "cve": "CVE-2023-32435",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-32435"
    },
    {
      "cve": "CVE-2023-32439",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-32439"
    },
    {
      "cve": "CVE-2023-32732",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-32732"
    },
    {
      "cve": "CVE-2023-3341",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-3341"
    },
    {
      "cve": "CVE-2023-3390",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-3390"
    },
    {
      "cve": "CVE-2023-33953",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-33953"
    },
    {
      "cve": "CVE-2023-34058",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-34058"
    },
    {
      "cve": "CVE-2023-34059",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-34059"
    },
    {
      "cve": "CVE-2023-3446",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-3446"
    },
    {
      "cve": "CVE-2023-34969",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-34969"
    },
    {
      "cve": "CVE-2023-35001",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-35001"
    },
    {
      "cve": "CVE-2023-35788",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-35788"
    },
    {
      "cve": "CVE-2023-3611",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-3611"
    },
    {
      "cve": "CVE-2023-37450",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-37450"
    },
    {
      "cve": "CVE-2023-3776",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-3776"
    },
    {
      "cve": "CVE-2023-3817",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-3817"
    },
    {
      "cve": "CVE-2023-4004",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-4004"
    },
    {
      "cve": "CVE-2023-4206",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-4206"
    },
    {
      "cve": "CVE-2023-4207",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-4207"
    },
    {
      "cve": "CVE-2023-4208",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-4208"
    },
    {
      "cve": "CVE-2023-42753",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-42753"
    },
    {
      "cve": "CVE-2023-4785",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-4785"
    },
    {
      "cve": "CVE-2023-4807",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-4807"
    },
    {
      "cve": "CVE-2023-4863",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-4863"
    },
    {
      "cve": "CVE-2023-5043",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-5043"
    },
    {
      "cve": "CVE-2023-5129",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-5129"
    },
    {
      "cve": "CVE-2023-5363",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2023-5363"
    },
    {
      "cve": "CVE-2024-20918",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-20918"
    },
    {
      "cve": "CVE-2024-20919",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-20919"
    },
    {
      "cve": "CVE-2024-20921",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-20921"
    },
    {
      "cve": "CVE-2024-20926",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-20926"
    },
    {
      "cve": "CVE-2024-20932",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-20932"
    },
    {
      "cve": "CVE-2024-20945",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-20945"
    },
    {
      "cve": "CVE-2024-20952",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-20952"
    },
    {
      "cve": "CVE-2024-39511",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39511"
    },
    {
      "cve": "CVE-2024-39512",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39512"
    },
    {
      "cve": "CVE-2024-39513",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39513"
    },
    {
      "cve": "CVE-2024-39514",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39514"
    },
    {
      "cve": "CVE-2024-39517",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39517"
    },
    {
      "cve": "CVE-2024-39518",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39518"
    },
    {
      "cve": "CVE-2024-39519",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39519"
    },
    {
      "cve": "CVE-2024-39520",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39520"
    },
    {
      "cve": "CVE-2024-39521",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39521"
    },
    {
      "cve": "CVE-2024-39522",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39522"
    },
    {
      "cve": "CVE-2024-39523",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39523"
    },
    {
      "cve": "CVE-2024-39524",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39524"
    },
    {
      "cve": "CVE-2024-39528",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39528"
    },
    {
      "cve": "CVE-2024-39529",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39529"
    },
    {
      "cve": "CVE-2024-39530",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39530"
    },
    {
      "cve": "CVE-2024-39531",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39531"
    },
    {
      "cve": "CVE-2024-39532",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39532"
    },
    {
      "cve": "CVE-2024-39533",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39533"
    },
    {
      "cve": "CVE-2024-39535",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39535"
    },
    {
      "cve": "CVE-2024-39536",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39536"
    },
    {
      "cve": "CVE-2024-39537",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39537"
    },
    {
      "cve": "CVE-2024-39538",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39538"
    },
    {
      "cve": "CVE-2024-39539",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39539"
    },
    {
      "cve": "CVE-2024-39540",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39540"
    },
    {
      "cve": "CVE-2024-39541",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39541"
    },
    {
      "cve": "CVE-2024-39542",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39542"
    },
    {
      "cve": "CVE-2024-39543",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39543"
    },
    {
      "cve": "CVE-2024-39545",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39545"
    },
    {
      "cve": "CVE-2024-39546",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39546"
    },
    {
      "cve": "CVE-2024-39548",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39548"
    },
    {
      "cve": "CVE-2024-39549",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39549"
    },
    {
      "cve": "CVE-2024-39550",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39550"
    },
    {
      "cve": "CVE-2024-39551",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39551"
    },
    {
      "cve": "CVE-2024-39553",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39553"
    },
    {
      "cve": "CVE-2024-39554",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39554"
    },
    {
      "cve": "CVE-2024-39555",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39555"
    },
    {
      "cve": "CVE-2024-39556",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39556"
    },
    {
      "cve": "CVE-2024-39557",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39557"
    },
    {
      "cve": "CVE-2024-39558",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39558"
    },
    {
      "cve": "CVE-2024-39559",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39559"
    },
    {
      "cve": "CVE-2024-39560",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39560"
    },
    {
      "cve": "CVE-2024-39561",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39561"
    },
    {
      "cve": "CVE-2024-39565",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Juniper-Produkten. Ursachen sind unter Anderem Ungen\u00fcgende Eingabe\u00fcberpr\u00fcfungen, Unsachgem\u00e4\u00dfe \u00dcberpr\u00fcfung und Verarbeitung von Paketen, fehlende Speicherfreigaben, fehlerhafte Behandlung von Ausnahmen, Unsachgem\u00e4\u00dfe Speicherbehandlung, unkontrollierter Ressourcenverbrauch, Klartextspeicherung von Daten und Puffer\u00fcberl\u00e4ufe. Diese Schwachstellen erm\u00f6glichen Angreifern Denial of Service Zust\u00e4nde zu verursachen, Informationen offenzulegen, Code auszuf\u00fchren, Privilegien zu erweitern und Sicherheitsmechanismen inklusive der Firewall Funktionalit\u00e4t zu umgehen. Zu einer erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Anmeldung oder eine Interaktion des Nutzers notwendig."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036093"
        ]
      },
      "release_date": "2024-07-10T22:00:00.000+00:00",
      "title": "CVE-2024-39565"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2021-34798 (GCVE-0-2021-34798)

apache2 regression

Synopsis

Impact

Workaround

Resolution

References

Availability

Concerns?

License

Tags

Sightings

Nomenclature