cvelistv5 - cve-2024-38819

cve-2024-38819

Vulnerability from cvelistv5

Published

2024-12-19 17:15

Modified

2025-01-10 13:06

Severity ?

7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Summary

Applications serving static resources through the functional web frameworks WebMvc.fn or WebFlux.fn are vulnerable to path traversal attacks. An attacker can craft malicious HTTP requests and obtain any file on the file system that is also accessible to the process in which the Spring application is running.

References

▼	URL	Tags
	security@vmware.com	https://spring.io/security/cve-2024-38819
	af854a3a-2127-422b-91ae-364da2661108	https://security.netapp.com/advisory/ntap-20250110-0010/

Impacted products

	Vendor	Product	Version
	N/A	Spring Framework	Version: Spring Framework 5.3.0 - 5.3.40, 6.0.0 - 6.0.24, 6.1.0 - 6.1.13

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            metrics: [
               {
                  other: {
                     content: {
                        id: "CVE-2024-38819",
                        options: [
                           {
                              Exploitation: "none",
                           },
                           {
                              Automatable: "yes",
                           },
                           {
                              "Technical Impact": "partial",
                           },
                        ],
                        role: "CISA Coordinator",
                        timestamp: "2024-12-20T17:53:51.980313Z",
                        version: "2.0.3",
                     },
                     type: "ssvc",
                  },
               },
            ],
            providerMetadata: {
               dateUpdated: "2024-12-20T17:54:04.143Z",
               orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0",
               shortName: "CISA-ADP",
            },
            title: "CISA ADP Vulnrichment",
         },
         {
            providerMetadata: {
               dateUpdated: "2025-01-10T13:06:45.393Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  url: "https://security.netapp.com/advisory/ntap-20250110-0010/",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               defaultStatus: "unaffected",
               product: "Spring Framework",
               vendor: "N/A",
               versions: [
                  {
                     status: "affected",
                     version: "Spring Framework 5.3.0 - 5.3.40, 6.0.0 - 6.0.24, 6.1.0 - 6.1.13",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               supportingMedia: [
                  {
                     base64: false,
                     type: "text/html",
                     value: "<span style=\"background-color: rgb(255, 255, 255);\">Applications serving static resources through the functional web frameworks WebMvc.fn or WebFlux.fn are vulnerable to path traversal attacks. An attacker can craft malicious HTTP requests and obtain any file on the file system that is also accessible to the process in which the Spring application is running.</span>",
                  },
               ],
               value: "Applications serving static resources through the functional web frameworks WebMvc.fn or WebFlux.fn are vulnerable to path traversal attacks. An attacker can craft malicious HTTP requests and obtain any file on the file system that is also accessible to the process in which the Spring application is running.",
            },
         ],
         metrics: [
            {
               cvssV3_1: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               format: "CVSS",
               scenarios: [
                  {
                     lang: "en",
                     value: "GENERAL",
                  },
               ],
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     cweId: "CWE-22",
                     description: "CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
                     lang: "en",
                     type: "CWE",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2024-12-19T17:15:12.704Z",
            orgId: "dcf2e128-44bd-42ed-91e8-88f912c1401d",
            shortName: "vmware",
         },
         references: [
            {
               url: "https://spring.io/security/cve-2024-38819",
            },
         ],
         source: {
            discovery: "UNKNOWN",
         },
         x_generator: {
            engine: "Vulnogram 0.2.0",
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "dcf2e128-44bd-42ed-91e8-88f912c1401d",
      assignerShortName: "vmware",
      cveId: "CVE-2024-38819",
      datePublished: "2024-12-19T17:15:12.704Z",
      dateReserved: "2024-06-19T22:32:06.583Z",
      dateUpdated: "2025-01-10T13:06:45.393Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
   "vulnerability-lookup:meta": {
      fkie_nvd: {
         descriptions: "[{\"lang\": \"en\", \"value\": \"Applications serving static resources through the functional web frameworks WebMvc.fn or WebFlux.fn are vulnerable to path traversal attacks. An attacker can craft malicious HTTP requests and obtain any file on the file system that is also accessible to the process in which the Spring application is running.\"}, {\"lang\": \"es\", \"value\": \"Las aplicaciones que ofrecen recursos est\\u00e1ticos a trav\\u00e9s de los marcos web funcionales WebMvc.fn o WebFlux.fn son vulnerables a ataques de path traversal. Un atacante puede manipular solicitudes HTTP maliciosas y obtener cualquier archivo del sistema de archivos al que tambi\\u00e9n pueda acceder el proceso en el que se ejecuta la aplicaci\\u00f3n Spring.\"}]",
         id: "CVE-2024-38819",
         lastModified: "2025-01-10T13:15:09.287",
         metrics: "{\"cvssMetricV31\": [{\"source\": \"security@vmware.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 3.6}]}",
         published: "2024-12-19T18:15:10.557",
         references: "[{\"url\": \"https://spring.io/security/cve-2024-38819\", \"source\": \"security@vmware.com\"}, {\"url\": \"https://security.netapp.com/advisory/ntap-20250110-0010/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
         sourceIdentifier: "security@vmware.com",
         vulnStatus: "Awaiting Analysis",
         weaknesses: "[{\"source\": \"security@vmware.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-22\"}]}]",
      },
      nvd: "{\"cve\":{\"id\":\"CVE-2024-38819\",\"sourceIdentifier\":\"security@vmware.com\",\"published\":\"2024-12-19T18:15:10.557\",\"lastModified\":\"2025-01-10T13:15:09.287\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Applications serving static resources through the functional web frameworks WebMvc.fn or WebFlux.fn are vulnerable to path traversal attacks. An attacker can craft malicious HTTP requests and obtain any file on the file system that is also accessible to the process in which the Spring application is running.\"},{\"lang\":\"es\",\"value\":\"Las aplicaciones que ofrecen recursos estáticos a través de los marcos web funcionales WebMvc.fn o WebFlux.fn son vulnerables a ataques de path traversal. Un atacante puede manipular solicitudes HTTP maliciosas y obtener cualquier archivo del sistema de archivos al que también pueda acceder el proceso en el que se ejecuta la aplicación Spring.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security@vmware.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"security@vmware.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-22\"}]}],\"references\":[{\"url\":\"https://spring.io/security/cve-2024-38819\",\"source\":\"security@vmware.com\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20250110-0010/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
      vulnrichment: {
         containers: "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://security.netapp.com/advisory/ntap-20250110-0010/\"}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2025-01-10T13:06:45.393Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-38819\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-12-20T17:53:51.980313Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-12-20T17:53:58.979Z\"}}], \"cna\": {\"source\": {\"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"N/A\", \"product\": \"Spring Framework\", \"versions\": [{\"status\": \"affected\", \"version\": \"Spring Framework 5.3.0 - 5.3.40, 6.0.0 - 6.0.24, 6.1.0 - 6.1.13\"}], \"defaultStatus\": \"unaffected\"}], \"references\": [{\"url\": \"https://spring.io/security/cve-2024-38819\"}], \"x_generator\": {\"engine\": \"Vulnogram 0.2.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Applications serving static resources through the functional web frameworks WebMvc.fn or WebFlux.fn are vulnerable to path traversal attacks. An attacker can craft malicious HTTP requests and obtain any file on the file system that is also accessible to the process in which the Spring application is running.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"<span style=\\\"background-color: rgb(255, 255, 255);\\\">Applications serving static resources through the functional web frameworks WebMvc.fn or WebFlux.fn are vulnerable to path traversal attacks. An attacker can craft malicious HTTP requests and obtain any file on the file system that is also accessible to the process in which the Spring application is running.</span>\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-22\", \"description\": \"CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')\"}]}], \"providerMetadata\": {\"orgId\": \"dcf2e128-44bd-42ed-91e8-88f912c1401d\", \"shortName\": \"vmware\", \"dateUpdated\": \"2024-12-19T17:15:12.704Z\"}}}",
         cveMetadata: "{\"cveId\": \"CVE-2024-38819\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-01-10T13:06:45.393Z\", \"dateReserved\": \"2024-06-19T22:32:06.583Z\", \"assignerOrgId\": \"dcf2e128-44bd-42ed-91e8-88f912c1401d\", \"datePublished\": \"2024-12-19T17:15:12.704Z\", \"assignerShortName\": \"vmware\"}",
         dataType: "CVE_RECORD",
         dataVersion: "5.1",
      },
   },
}

RHSA-2024:10700

Vulnerability from csaf_redhat

Published

2024-12-02 16:06

Modified

2025-03-05 22:39

Summary

Red Hat Security Advisory: Red Hat Build of Apache Camel 4.8 for Spring Boot security update.

Notes

Topic

Red Hat build of Apache Camel 4.8 for Spring Boot release and security update is now available. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details

Red Hat build of Apache Camel 4.8 for Spring Boot release and security update is now available. The purpose of this text-only errata is to inform you about the security issues fixed. Security Fix(es): * org.apache.kafka/kafka-clients: privilege escalation to filesystem read-access via automatic ConfigProvider (CVE-2024-31141) * org.springframework/spring-webmvc: Path traversal vulnerability in functional web frameworks (CVE-2024-38819) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
   document: {
      aggregate_severity: {
         namespace: "https://access.redhat.com/security/updates/classification/",
         text: "Important",
      },
      category: "csaf_security_advisory",
      csaf_version: "2.0",
      distribution: {
         text: "Copyright © Red Hat, Inc. All rights reserved.",
         tlp: {
            label: "WHITE",
            url: "https://www.first.org/tlp/",
         },
      },
      lang: "en",
      notes: [
         {
            category: "summary",
            text: "Red Hat build of Apache Camel 4.8 for Spring Boot release and security update is now available.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
            title: "Topic",
         },
         {
            category: "general",
            text: "Red Hat build of Apache Camel 4.8 for Spring Boot release and security update is now available.\n\nThe purpose of this text-only errata is to inform you about the security issues fixed.\n\nSecurity Fix(es):\n\n* org.apache.kafka/kafka-clients: privilege escalation to filesystem read-access via automatic ConfigProvider (CVE-2024-31141)\n\n* org.springframework/spring-webmvc: Path traversal vulnerability in functional web frameworks (CVE-2024-38819)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
            title: "Details",
         },
         {
            category: "legal_disclaimer",
            text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
            title: "Terms of Use",
         },
      ],
      publisher: {
         category: "vendor",
         contact_details: "https://access.redhat.com/security/team/contact/",
         issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
         name: "Red Hat Product Security",
         namespace: "https://www.redhat.com",
      },
      references: [
         {
            category: "self",
            summary: "https://access.redhat.com/errata/RHSA-2024:10700",
            url: "https://access.redhat.com/errata/RHSA-2024:10700",
         },
         {
            category: "external",
            summary: "https://access.redhat.com/security/updates/classification/#important",
            url: "https://access.redhat.com/security/updates/classification/#important",
         },
         {
            category: "external",
            summary: "2327264",
            url: "https://bugzilla.redhat.com/show_bug.cgi?id=2327264",
         },
         {
            category: "external",
            summary: "2327614",
            url: "https://bugzilla.redhat.com/show_bug.cgi?id=2327614",
         },
         {
            category: "self",
            summary: "Canonical URL",
            url: "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10700.json",
         },
      ],
      title: "Red Hat Security Advisory: Red Hat Build of Apache Camel 4.8 for Spring Boot security update.",
      tracking: {
         current_release_date: "2025-03-05T22:39:56+00:00",
         generator: {
            date: "2025-03-05T22:39:56+00:00",
            engine: {
               name: "Red Hat SDEngine",
               version: "4.4.0",
            },
         },
         id: "RHSA-2024:10700",
         initial_release_date: "2024-12-02T16:06:11+00:00",
         revision_history: [
            {
               date: "2024-12-02T16:06:11+00:00",
               number: "1",
               summary: "Initial version",
            },
            {
               date: "2024-12-02T16:06:11+00:00",
               number: "2",
               summary: "Last updated version",
            },
            {
               date: "2025-03-05T22:39:56+00:00",
               number: "3",
               summary: "Last generated version",
            },
         ],
         status: "final",
         version: "3",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_name",
                        name: "Red Hat build of Apache Camel 4.8 for Spring Boot",
                        product: {
                           name: "Red Hat build of Apache Camel 4.8 for Spring Boot",
                           product_id: "Red Hat build of Apache Camel 4.8 for Spring Boot",
                           product_identification_helper: {
                              cpe: "cpe:/a:redhat:apache_camel_spring_boot:4.8",
                           },
                        },
                     },
                  ],
                  category: "product_family",
                  name: "Red Hat Build of Apache Camel",
               },
            ],
            category: "vendor",
            name: "Red Hat",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2024-31141",
         cwe: {
            id: "CWE-552",
            name: "Files or Directories Accessible to External Parties",
         },
         discovery_date: "2024-11-19T09:00:35.857468+00:00",
         ids: [
            {
               system_name: "Red Hat Bugzilla ID",
               text: "2327264",
            },
         ],
         notes: [
            {
               category: "description",
               text: "A flaw was found in Apache Kafka Clients. Apache Kafka Clients accepts configuration data for customizing behavior and includes ConfigProvider plugins to manipulate these configurations. Apache Kafka also provides FileConfigProvider, DirectoryConfigProvider, and EnvVarConfigProvider implementations, which include the ability to read from disk or environment variables. In applications where an untrusted party can specify Apache Kafka Clients configurations, attackers may use these ConfigProviders to read arbitrary contents of the disk and environment variables.",
               title: "Vulnerability description",
            },
            {
               category: "summary",
               text: "kafka-clients: privilege escalation to filesystem read-access via automatic ConfigProvider",
               title: "Vulnerability summary",
            },
            {
               category: "general",
               text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
               title: "CVSS score applicability",
            },
         ],
         product_status: {
            fixed: [
               "Red Hat build of Apache Camel 4.8 for Spring Boot",
            ],
         },
         references: [
            {
               category: "self",
               summary: "Canonical URL",
               url: "https://access.redhat.com/security/cve/CVE-2024-31141",
            },
            {
               category: "external",
               summary: "RHBZ#2327264",
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=2327264",
            },
            {
               category: "external",
               summary: "https://www.cve.org/CVERecord?id=CVE-2024-31141",
               url: "https://www.cve.org/CVERecord?id=CVE-2024-31141",
            },
            {
               category: "external",
               summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-31141",
               url: "https://nvd.nist.gov/vuln/detail/CVE-2024-31141",
            },
            {
               category: "external",
               summary: "https://lists.apache.org/thread/9whdzfr0zwdhr364604w5ssnzmg4v2lv",
               url: "https://lists.apache.org/thread/9whdzfr0zwdhr364604w5ssnzmg4v2lv",
            },
         ],
         release_date: "2024-11-19T08:40:50.695000+00:00",
         remediations: [
            {
               category: "vendor_fix",
               date: "2024-12-02T16:06:11+00:00",
               details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
               product_ids: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
               restart_required: {
                  category: "none",
               },
               url: "https://access.redhat.com/errata/RHSA-2024:10700",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "HIGH",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               details: "Moderate",
            },
         ],
         title: "kafka-clients: privilege escalation to filesystem read-access via automatic ConfigProvider",
      },
      {
         cve: "CVE-2024-38819",
         cwe: {
            id: "CWE-22",
            name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
         },
         discovery_date: "2024-11-20T14:13:08.656000+00:00",
         ids: [
            {
               system_name: "Red Hat Bugzilla ID",
               text: "2327614",
            },
         ],
         notes: [
            {
               category: "description",
               text: "A flaw was found in the Spring Framework. Applications serving static resources through the functional web frameworks WebMvc.fn or WebFlux.fn are vulnerable to path traversal attacks. This flaw allows an attacker to craft malicious HTTP requests and obtain any file on the file system that is also accessible to the process in which the Spring application is running.",
               title: "Vulnerability description",
            },
            {
               category: "summary",
               text: "org.springframework:spring-webmvc: Path traversal vulnerability in functional web frameworks",
               title: "Vulnerability summary",
            },
            {
               category: "other",
               text: "This vulnerability is of important severity because it enables path traversal attacks that allow unauthorized access to arbitrary files on the server. Exploiting this flaw could expose sensitive information such as application configuration files, authentication credentials, or environment secrets, potentially compromising the entire system. Moreover, if the application process has elevated privileges, an attacker could access system files or even gain further control over the server.",
               title: "Statement",
            },
            {
               category: "general",
               text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
               title: "CVSS score applicability",
            },
         ],
         product_status: {
            fixed: [
               "Red Hat build of Apache Camel 4.8 for Spring Boot",
            ],
         },
         references: [
            {
               category: "self",
               summary: "Canonical URL",
               url: "https://access.redhat.com/security/cve/CVE-2024-38819",
            },
            {
               category: "external",
               summary: "RHBZ#2327614",
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=2327614",
            },
            {
               category: "external",
               summary: "https://www.cve.org/CVERecord?id=CVE-2024-38819",
               url: "https://www.cve.org/CVERecord?id=CVE-2024-38819",
            },
            {
               category: "external",
               summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-38819",
               url: "https://nvd.nist.gov/vuln/detail/CVE-2024-38819",
            },
         ],
         release_date: "2024-10-17T00:00:00+00:00",
         remediations: [
            {
               category: "vendor_fix",
               date: "2024-12-02T16:06:11+00:00",
               details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
               product_ids: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
               restart_required: {
                  category: "none",
               },
               url: "https://access.redhat.com/errata/RHSA-2024:10700",
            },
            {
               category: "workaround",
               details: "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
               product_ids: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               details: "Important",
            },
         ],
         title: "org.springframework:spring-webmvc: Path traversal vulnerability in functional web frameworks",
      },
   ],
}

rhsa-2024_10700

Vulnerability from csaf_redhat

Published

2024-12-02 16:06

Modified

2024-12-12 09:48

Summary

Red Hat Security Advisory: Red Hat Build of Apache Camel 4.8 for Spring Boot security update.

Notes

Topic

Details

JSON

To clipboard

{
   document: {
      aggregate_severity: {
         namespace: "https://access.redhat.com/security/updates/classification/",
         text: "Important",
      },
      category: "csaf_security_advisory",
      csaf_version: "2.0",
      distribution: {
         text: "Copyright © Red Hat, Inc. All rights reserved.",
         tlp: {
            label: "WHITE",
            url: "https://www.first.org/tlp/",
         },
      },
      lang: "en",
      notes: [
         {
            category: "summary",
            text: "Red Hat build of Apache Camel 4.8 for Spring Boot release and security update is now available.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
            title: "Topic",
         },
         {
            category: "general",
            text: "Red Hat build of Apache Camel 4.8 for Spring Boot release and security update is now available.\n\nThe purpose of this text-only errata is to inform you about the security issues fixed.\n\nSecurity Fix(es):\n\n* org.apache.kafka/kafka-clients: privilege escalation to filesystem read-access via automatic ConfigProvider (CVE-2024-31141)\n\n* org.springframework/spring-webmvc: Path traversal vulnerability in functional web frameworks (CVE-2024-38819)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
            title: "Details",
         },
         {
            category: "legal_disclaimer",
            text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
            title: "Terms of Use",
         },
      ],
      publisher: {
         category: "vendor",
         contact_details: "https://access.redhat.com/security/team/contact/",
         issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
         name: "Red Hat Product Security",
         namespace: "https://www.redhat.com",
      },
      references: [
         {
            category: "self",
            summary: "https://access.redhat.com/errata/RHSA-2024:10700",
            url: "https://access.redhat.com/errata/RHSA-2024:10700",
         },
         {
            category: "external",
            summary: "https://access.redhat.com/security/updates/classification/#important",
            url: "https://access.redhat.com/security/updates/classification/#important",
         },
         {
            category: "external",
            summary: "2327264",
            url: "https://bugzilla.redhat.com/show_bug.cgi?id=2327264",
         },
         {
            category: "external",
            summary: "2327614",
            url: "https://bugzilla.redhat.com/show_bug.cgi?id=2327614",
         },
         {
            category: "self",
            summary: "Canonical URL",
            url: "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10700.json",
         },
      ],
      title: "Red Hat Security Advisory: Red Hat Build of Apache Camel 4.8 for Spring Boot security update.",
      tracking: {
         current_release_date: "2024-12-12T09:48:45+00:00",
         generator: {
            date: "2024-12-12T09:48:45+00:00",
            engine: {
               name: "Red Hat SDEngine",
               version: "4.2.3",
            },
         },
         id: "RHSA-2024:10700",
         initial_release_date: "2024-12-02T16:06:11+00:00",
         revision_history: [
            {
               date: "2024-12-02T16:06:11+00:00",
               number: "1",
               summary: "Initial version",
            },
            {
               date: "2024-12-02T16:06:11+00:00",
               number: "2",
               summary: "Last updated version",
            },
            {
               date: "2024-12-12T09:48:45+00:00",
               number: "3",
               summary: "Last generated version",
            },
         ],
         status: "final",
         version: "3",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_name",
                        name: "Red Hat build of Apache Camel 4.8 for Spring Boot",
                        product: {
                           name: "Red Hat build of Apache Camel 4.8 for Spring Boot",
                           product_id: "Red Hat build of Apache Camel 4.8 for Spring Boot",
                           product_identification_helper: {
                              cpe: "cpe:/a:redhat:apache_camel_spring_boot:4.8",
                           },
                        },
                     },
                  ],
                  category: "product_family",
                  name: "Red Hat Build of Apache Camel",
               },
            ],
            category: "vendor",
            name: "Red Hat",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2024-31141",
         cwe: {
            id: "CWE-552",
            name: "Files or Directories Accessible to External Parties",
         },
         discovery_date: "2024-11-19T09:00:35.857468+00:00",
         ids: [
            {
               system_name: "Red Hat Bugzilla ID",
               text: "2327264",
            },
         ],
         notes: [
            {
               category: "description",
               text: "A flaw was found in Apache Kafka Clients. Apache Kafka Clients accepts configuration data for customizing behavior and includes ConfigProvider plugins to manipulate these configurations. Apache Kafka also provides FileConfigProvider, DirectoryConfigProvider, and EnvVarConfigProvider implementations, which include the ability to read from disk or environment variables. In applications where an untrusted party can specify Apache Kafka Clients configurations, attackers may use these ConfigProviders to read arbitrary contents of the disk and environment variables.",
               title: "Vulnerability description",
            },
            {
               category: "summary",
               text: "kafka-clients: privilege escalation to filesystem read-access via automatic ConfigProvider",
               title: "Vulnerability summary",
            },
            {
               category: "general",
               text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
               title: "CVSS score applicability",
            },
         ],
         product_status: {
            fixed: [
               "Red Hat build of Apache Camel 4.8 for Spring Boot",
            ],
         },
         references: [
            {
               category: "self",
               summary: "Canonical URL",
               url: "https://access.redhat.com/security/cve/CVE-2024-31141",
            },
            {
               category: "external",
               summary: "RHBZ#2327264",
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=2327264",
            },
            {
               category: "external",
               summary: "https://www.cve.org/CVERecord?id=CVE-2024-31141",
               url: "https://www.cve.org/CVERecord?id=CVE-2024-31141",
            },
            {
               category: "external",
               summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-31141",
               url: "https://nvd.nist.gov/vuln/detail/CVE-2024-31141",
            },
            {
               category: "external",
               summary: "https://lists.apache.org/thread/9whdzfr0zwdhr364604w5ssnzmg4v2lv",
               url: "https://lists.apache.org/thread/9whdzfr0zwdhr364604w5ssnzmg4v2lv",
            },
         ],
         release_date: "2024-11-19T08:40:50.695000+00:00",
         remediations: [
            {
               category: "vendor_fix",
               date: "2024-12-02T16:06:11+00:00",
               details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
               product_ids: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
               restart_required: {
                  category: "none",
               },
               url: "https://access.redhat.com/errata/RHSA-2024:10700",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "HIGH",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               details: "Moderate",
            },
         ],
         title: "kafka-clients: privilege escalation to filesystem read-access via automatic ConfigProvider",
      },
      {
         cve: "CVE-2024-38819",
         cwe: {
            id: "CWE-22",
            name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
         },
         discovery_date: "2024-11-20T14:13:08.656000+00:00",
         ids: [
            {
               system_name: "Red Hat Bugzilla ID",
               text: "2327614",
            },
         ],
         notes: [
            {
               category: "description",
               text: "A flaw was found in the Spring Framework. Applications serving static resources through the functional web frameworks WebMvc.fn or WebFlux.fn are vulnerable to path traversal attacks. This flaw allows an attacker to craft malicious HTTP requests and obtain any file on the file system that is also accessible to the process in which the Spring application is running.",
               title: "Vulnerability description",
            },
            {
               category: "summary",
               text: "org.springframework:spring-webmvc: Path traversal vulnerability in functional web frameworks",
               title: "Vulnerability summary",
            },
            {
               category: "other",
               text: "This vulnerability is of important severity because it enables path traversal attacks that allow unauthorized access to arbitrary files on the server. Exploiting this flaw could expose sensitive information such as application configuration files, authentication credentials, or environment secrets, potentially compromising the entire system. Moreover, if the application process has elevated privileges, an attacker could access system files or even gain further control over the server.",
               title: "Statement",
            },
            {
               category: "general",
               text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
               title: "CVSS score applicability",
            },
         ],
         product_status: {
            fixed: [
               "Red Hat build of Apache Camel 4.8 for Spring Boot",
            ],
         },
         references: [
            {
               category: "self",
               summary: "Canonical URL",
               url: "https://access.redhat.com/security/cve/CVE-2024-38819",
            },
            {
               category: "external",
               summary: "RHBZ#2327614",
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=2327614",
            },
            {
               category: "external",
               summary: "https://www.cve.org/CVERecord?id=CVE-2024-38819",
               url: "https://www.cve.org/CVERecord?id=CVE-2024-38819",
            },
            {
               category: "external",
               summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-38819",
               url: "https://nvd.nist.gov/vuln/detail/CVE-2024-38819",
            },
         ],
         release_date: "2024-10-17T00:00:00+00:00",
         remediations: [
            {
               category: "vendor_fix",
               date: "2024-12-02T16:06:11+00:00",
               details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
               product_ids: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
               restart_required: {
                  category: "none",
               },
               url: "https://access.redhat.com/errata/RHSA-2024:10700",
            },
            {
               category: "workaround",
               details: "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
               product_ids: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               details: "Important",
            },
         ],
         title: "org.springframework:spring-webmvc: Path traversal vulnerability in functional web frameworks",
      },
   ],
}

rhsa-2024:10700

Vulnerability from csaf_redhat

Published

2024-12-02 16:06

Modified

2025-03-05 22:39

Summary

Red Hat Security Advisory: Red Hat Build of Apache Camel 4.8 for Spring Boot security update.

Notes

Topic

Details

JSON

To clipboard

{
   document: {
      aggregate_severity: {
         namespace: "https://access.redhat.com/security/updates/classification/",
         text: "Important",
      },
      category: "csaf_security_advisory",
      csaf_version: "2.0",
      distribution: {
         text: "Copyright © Red Hat, Inc. All rights reserved.",
         tlp: {
            label: "WHITE",
            url: "https://www.first.org/tlp/",
         },
      },
      lang: "en",
      notes: [
         {
            category: "summary",
            text: "Red Hat build of Apache Camel 4.8 for Spring Boot release and security update is now available.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
            title: "Topic",
         },
         {
            category: "general",
            text: "Red Hat build of Apache Camel 4.8 for Spring Boot release and security update is now available.\n\nThe purpose of this text-only errata is to inform you about the security issues fixed.\n\nSecurity Fix(es):\n\n* org.apache.kafka/kafka-clients: privilege escalation to filesystem read-access via automatic ConfigProvider (CVE-2024-31141)\n\n* org.springframework/spring-webmvc: Path traversal vulnerability in functional web frameworks (CVE-2024-38819)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
            title: "Details",
         },
         {
            category: "legal_disclaimer",
            text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
            title: "Terms of Use",
         },
      ],
      publisher: {
         category: "vendor",
         contact_details: "https://access.redhat.com/security/team/contact/",
         issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
         name: "Red Hat Product Security",
         namespace: "https://www.redhat.com",
      },
      references: [
         {
            category: "self",
            summary: "https://access.redhat.com/errata/RHSA-2024:10700",
            url: "https://access.redhat.com/errata/RHSA-2024:10700",
         },
         {
            category: "external",
            summary: "https://access.redhat.com/security/updates/classification/#important",
            url: "https://access.redhat.com/security/updates/classification/#important",
         },
         {
            category: "external",
            summary: "2327264",
            url: "https://bugzilla.redhat.com/show_bug.cgi?id=2327264",
         },
         {
            category: "external",
            summary: "2327614",
            url: "https://bugzilla.redhat.com/show_bug.cgi?id=2327614",
         },
         {
            category: "self",
            summary: "Canonical URL",
            url: "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10700.json",
         },
      ],
      title: "Red Hat Security Advisory: Red Hat Build of Apache Camel 4.8 for Spring Boot security update.",
      tracking: {
         current_release_date: "2025-03-05T22:39:56+00:00",
         generator: {
            date: "2025-03-05T22:39:56+00:00",
            engine: {
               name: "Red Hat SDEngine",
               version: "4.4.0",
            },
         },
         id: "RHSA-2024:10700",
         initial_release_date: "2024-12-02T16:06:11+00:00",
         revision_history: [
            {
               date: "2024-12-02T16:06:11+00:00",
               number: "1",
               summary: "Initial version",
            },
            {
               date: "2024-12-02T16:06:11+00:00",
               number: "2",
               summary: "Last updated version",
            },
            {
               date: "2025-03-05T22:39:56+00:00",
               number: "3",
               summary: "Last generated version",
            },
         ],
         status: "final",
         version: "3",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_name",
                        name: "Red Hat build of Apache Camel 4.8 for Spring Boot",
                        product: {
                           name: "Red Hat build of Apache Camel 4.8 for Spring Boot",
                           product_id: "Red Hat build of Apache Camel 4.8 for Spring Boot",
                           product_identification_helper: {
                              cpe: "cpe:/a:redhat:apache_camel_spring_boot:4.8",
                           },
                        },
                     },
                  ],
                  category: "product_family",
                  name: "Red Hat Build of Apache Camel",
               },
            ],
            category: "vendor",
            name: "Red Hat",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2024-31141",
         cwe: {
            id: "CWE-552",
            name: "Files or Directories Accessible to External Parties",
         },
         discovery_date: "2024-11-19T09:00:35.857468+00:00",
         ids: [
            {
               system_name: "Red Hat Bugzilla ID",
               text: "2327264",
            },
         ],
         notes: [
            {
               category: "description",
               text: "A flaw was found in Apache Kafka Clients. Apache Kafka Clients accepts configuration data for customizing behavior and includes ConfigProvider plugins to manipulate these configurations. Apache Kafka also provides FileConfigProvider, DirectoryConfigProvider, and EnvVarConfigProvider implementations, which include the ability to read from disk or environment variables. In applications where an untrusted party can specify Apache Kafka Clients configurations, attackers may use these ConfigProviders to read arbitrary contents of the disk and environment variables.",
               title: "Vulnerability description",
            },
            {
               category: "summary",
               text: "kafka-clients: privilege escalation to filesystem read-access via automatic ConfigProvider",
               title: "Vulnerability summary",
            },
            {
               category: "general",
               text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
               title: "CVSS score applicability",
            },
         ],
         product_status: {
            fixed: [
               "Red Hat build of Apache Camel 4.8 for Spring Boot",
            ],
         },
         references: [
            {
               category: "self",
               summary: "Canonical URL",
               url: "https://access.redhat.com/security/cve/CVE-2024-31141",
            },
            {
               category: "external",
               summary: "RHBZ#2327264",
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=2327264",
            },
            {
               category: "external",
               summary: "https://www.cve.org/CVERecord?id=CVE-2024-31141",
               url: "https://www.cve.org/CVERecord?id=CVE-2024-31141",
            },
            {
               category: "external",
               summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-31141",
               url: "https://nvd.nist.gov/vuln/detail/CVE-2024-31141",
            },
            {
               category: "external",
               summary: "https://lists.apache.org/thread/9whdzfr0zwdhr364604w5ssnzmg4v2lv",
               url: "https://lists.apache.org/thread/9whdzfr0zwdhr364604w5ssnzmg4v2lv",
            },
         ],
         release_date: "2024-11-19T08:40:50.695000+00:00",
         remediations: [
            {
               category: "vendor_fix",
               date: "2024-12-02T16:06:11+00:00",
               details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
               product_ids: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
               restart_required: {
                  category: "none",
               },
               url: "https://access.redhat.com/errata/RHSA-2024:10700",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "HIGH",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               details: "Moderate",
            },
         ],
         title: "kafka-clients: privilege escalation to filesystem read-access via automatic ConfigProvider",
      },
      {
         cve: "CVE-2024-38819",
         cwe: {
            id: "CWE-22",
            name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
         },
         discovery_date: "2024-11-20T14:13:08.656000+00:00",
         ids: [
            {
               system_name: "Red Hat Bugzilla ID",
               text: "2327614",
            },
         ],
         notes: [
            {
               category: "description",
               text: "A flaw was found in the Spring Framework. Applications serving static resources through the functional web frameworks WebMvc.fn or WebFlux.fn are vulnerable to path traversal attacks. This flaw allows an attacker to craft malicious HTTP requests and obtain any file on the file system that is also accessible to the process in which the Spring application is running.",
               title: "Vulnerability description",
            },
            {
               category: "summary",
               text: "org.springframework:spring-webmvc: Path traversal vulnerability in functional web frameworks",
               title: "Vulnerability summary",
            },
            {
               category: "other",
               text: "This vulnerability is of important severity because it enables path traversal attacks that allow unauthorized access to arbitrary files on the server. Exploiting this flaw could expose sensitive information such as application configuration files, authentication credentials, or environment secrets, potentially compromising the entire system. Moreover, if the application process has elevated privileges, an attacker could access system files or even gain further control over the server.",
               title: "Statement",
            },
            {
               category: "general",
               text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
               title: "CVSS score applicability",
            },
         ],
         product_status: {
            fixed: [
               "Red Hat build of Apache Camel 4.8 for Spring Boot",
            ],
         },
         references: [
            {
               category: "self",
               summary: "Canonical URL",
               url: "https://access.redhat.com/security/cve/CVE-2024-38819",
            },
            {
               category: "external",
               summary: "RHBZ#2327614",
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=2327614",
            },
            {
               category: "external",
               summary: "https://www.cve.org/CVERecord?id=CVE-2024-38819",
               url: "https://www.cve.org/CVERecord?id=CVE-2024-38819",
            },
            {
               category: "external",
               summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-38819",
               url: "https://nvd.nist.gov/vuln/detail/CVE-2024-38819",
            },
         ],
         release_date: "2024-10-17T00:00:00+00:00",
         remediations: [
            {
               category: "vendor_fix",
               date: "2024-12-02T16:06:11+00:00",
               details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
               product_ids: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
               restart_required: {
                  category: "none",
               },
               url: "https://access.redhat.com/errata/RHSA-2024:10700",
            },
            {
               category: "workaround",
               details: "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
               product_ids: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               details: "Important",
            },
         ],
         title: "org.springframework:spring-webmvc: Path traversal vulnerability in functional web frameworks",
      },
   ],
}

ncsc-2025-0045

Vulnerability from csaf_ncscnl

Published

2025-02-11 09:08

Modified

2025-02-11 09:08

Summary

Kwetsbaarheden verholpen in SAP producten

Notes

The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions: NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein. NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory. This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.

Feiten

SAP heeft kwetsbaarheden verholpen in onder andere SAP NetWeaver, BusinessObjects Business Intelligence platform, Enterprise Project Connection en Commerce.

Interpretaties

De kwetsbaarheden in SAP NetWeaver omvatten een gebrek aan toegangscontrole, wat ongeauthenticeerde aanvallers in staat stelt om toegang te krijgen tot gevoelige serverinstellingen en gegevens. Daarnaast zijn er Cross-Site Scripting kwetsbaarheden in SAP producten die de vertrouwelijkheid van gegevens ernstig kunnen aantasten. De kwetsbaarheden kunnen worden misbruikt door aanvallers om ongeautoriseerde toegang te verkrijgen tot gevoelige informatie, wat kan leiden tot datalekken en andere beveiligingsincidenten.

Oplossingen

SAP heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.

Kans

medium

Schade

high

CWE-921

Storage of Sensitive Data in a Mechanism without Access Control

CWE-1021

Improper Restriction of Rendered UI Layers or Frames

CWE-1188

Initialization of a Resource with an Insecure Default

CWE-178

Improper Handling of Case Sensitivity

CWE-732

Incorrect Permission Assignment for Critical Resource

CWE-601

URL Redirection to Untrusted Site ('Open Redirect')

CWE-644

Improper Neutralization of HTTP Headers for Scripting Syntax

CWE-204

Observable Response Discrepancy

CWE-404

Improper Resource Shutdown or Release

CWE-306

Missing Authentication for Critical Function

CWE-862

Missing Authorization

CWE-352

Cross-Site Request Forgery (CSRF)

CWE-284

Improper Access Control

CWE-863

Incorrect Authorization

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CWE-287

Improper Authentication

CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

JSON

To clipboard

{
   document: {
      category: "csaf_security_advisory",
      csaf_version: "2.0",
      distribution: {
         tlp: {
            label: "WHITE",
         },
      },
      lang: "nl",
      notes: [
         {
            category: "legal_disclaimer",
            text: "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n    NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n    NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n    This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.",
         },
         {
            category: "description",
            text: "SAP heeft kwetsbaarheden verholpen in onder andere SAP NetWeaver, BusinessObjects Business Intelligence platform, Enterprise Project Connection en Commerce.",
            title: "Feiten",
         },
         {
            category: "description",
            text: "De kwetsbaarheden in SAP NetWeaver omvatten een gebrek aan toegangscontrole, wat ongeauthenticeerde aanvallers in staat stelt om toegang te krijgen tot gevoelige serverinstellingen en gegevens. Daarnaast zijn er Cross-Site Scripting kwetsbaarheden in SAP producten die de vertrouwelijkheid van gegevens ernstig kunnen aantasten. De kwetsbaarheden kunnen worden misbruikt door aanvallers om ongeautoriseerde toegang te verkrijgen tot gevoelige informatie, wat kan leiden tot datalekken en andere beveiligingsincidenten.",
            title: "Interpretaties",
         },
         {
            category: "description",
            text: "SAP heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
            title: "Oplossingen",
         },
         {
            category: "general",
            text: "medium",
            title: "Kans",
         },
         {
            category: "general",
            text: "high",
            title: "Schade",
         },
         {
            category: "general",
            text: "Storage of Sensitive Data in a Mechanism without Access Control",
            title: "CWE-921",
         },
         {
            category: "general",
            text: "Improper Restriction of Rendered UI Layers or Frames",
            title: "CWE-1021",
         },
         {
            category: "general",
            text: "Initialization of a Resource with an Insecure Default",
            title: "CWE-1188",
         },
         {
            category: "general",
            text: "Improper Handling of Case Sensitivity",
            title: "CWE-178",
         },
         {
            category: "general",
            text: "Incorrect Permission Assignment for Critical Resource",
            title: "CWE-732",
         },
         {
            category: "general",
            text: "URL Redirection to Untrusted Site ('Open Redirect')",
            title: "CWE-601",
         },
         {
            category: "general",
            text: "Improper Neutralization of HTTP Headers for Scripting Syntax",
            title: "CWE-644",
         },
         {
            category: "general",
            text: "Observable Response Discrepancy",
            title: "CWE-204",
         },
         {
            category: "general",
            text: "Improper Resource Shutdown or Release",
            title: "CWE-404",
         },
         {
            category: "general",
            text: "Missing Authentication for Critical Function",
            title: "CWE-306",
         },
         {
            category: "general",
            text: "Missing Authorization",
            title: "CWE-862",
         },
         {
            category: "general",
            text: "Cross-Site Request Forgery (CSRF)",
            title: "CWE-352",
         },
         {
            category: "general",
            text: "Improper Access Control",
            title: "CWE-284",
         },
         {
            category: "general",
            text: "Incorrect Authorization",
            title: "CWE-863",
         },
         {
            category: "general",
            text: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
            title: "CWE-22",
         },
         {
            category: "general",
            text: "Improper Authentication",
            title: "CWE-287",
         },
         {
            category: "general",
            text: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
            title: "CWE-79",
         },
      ],
      publisher: {
         category: "coordinator",
         contact_details: "cert@ncsc.nl",
         name: "Nationaal Cyber Security Centrum",
         namespace: "https://www.ncsc.nl/",
      },
      references: [
         {
            category: "external",
            summary: "Reference - ncscclear",
            url: "https://support.sap.com/en/my-support/knowledge-base/security-notes-news/february-2025.html",
         },
      ],
      title: "Kwetsbaarheden verholpen in SAP producten",
      tracking: {
         current_release_date: "2025-02-11T09:08:48.427126Z",
         id: "NCSC-2025-0045",
         initial_release_date: "2025-02-11T09:08:48.427126Z",
         revision_history: [
            {
               date: "2025-02-11T09:08:48.427126Z",
               number: "0",
               summary: "Initiele versie",
            },
         ],
         status: "final",
         version: "1.0.0",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  category: "product_name",
                  name: "supplier_relationship_management",
                  product: {
                     name: "supplier_relationship_management",
                     product_id: "CSAFPID-1760711",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:sap:supplier_relationship_management:7.52:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "netweaver",
                  product: {
                     name: "netweaver",
                     product_id: "CSAFPID-16504",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:sap:netweaver:application_server_java:7.50:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "netweaver_server_abap",
                  product: {
                     name: "netweaver_server_abap",
                     product_id: "CSAFPID-1760738",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:sap:netweaver_server_abap:758:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "netweaver_java_application_server",
                  product: {
                     name: "netweaver_java_application_server",
                     product_id: "CSAFPID-406035",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:sap:netweaver_java_application_server:7.5:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "netweaver_as_java",
                  product: {
                     name: "netweaver_as_java",
                     product_id: "CSAFPID-837776",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:sap:netweaver_as_java:7.50:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "netweaver_application_server_java",
                  product: {
                     name: "netweaver_application_server_java",
                     product_id: "CSAFPID-1760739",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:sap:netweaver_application_server_java:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "netweaver_as_java_for_deploy_service",
                  product: {
                     name: "netweaver_as_java_for_deploy_service",
                     product_id: "CSAFPID-1759878",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:sap:netweaver_as_java_for_deploy_service:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "abap_platform",
                  product: {
                     name: "abap_platform",
                     product_id: "CSAFPID-340940",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:sap:abap_platform:758:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "commerce_backoffice",
                  product: {
                     name: "commerce_backoffice",
                     product_id: "CSAFPID-1760724",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:sap:commerce_backoffice:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "commerce",
                  product: {
                     name: "commerce",
                     product_id: "CSAFPID-234320",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:sap:commerce:*:*:*:*:*:*:*:*",
                     },
                  },
               },
            ],
            category: "vendor",
            name: "sap",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2023-24527",
         cwe: {
            id: "CWE-306",
            name: "Missing Authentication for Critical Function",
         },
         notes: [
            {
               category: "other",
               text: "Missing Authentication for Critical Function",
               title: "CWE-306",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1760711",
               "CSAFPID-16504",
               "CSAFPID-1760738",
               "CSAFPID-406035",
               "CSAFPID-837776",
               "CSAFPID-1760739",
               "CSAFPID-1759878",
               "CSAFPID-340940",
               "CSAFPID-1760724",
               "CSAFPID-234320",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2023-24527",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-24527.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1760711",
                  "CSAFPID-16504",
                  "CSAFPID-1760738",
                  "CSAFPID-406035",
                  "CSAFPID-837776",
                  "CSAFPID-1760739",
                  "CSAFPID-1759878",
                  "CSAFPID-340940",
                  "CSAFPID-1760724",
                  "CSAFPID-234320",
               ],
            },
         ],
         title: "CVE-2023-24527",
      },
      {
         cve: "CVE-2024-22126",
         cwe: {
            id: "CWE-79",
            name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
         },
         notes: [
            {
               category: "other",
               text: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
               title: "CWE-79",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1760711",
               "CSAFPID-16504",
               "CSAFPID-1760738",
               "CSAFPID-406035",
               "CSAFPID-837776",
               "CSAFPID-1760739",
               "CSAFPID-1759878",
               "CSAFPID-340940",
               "CSAFPID-1760724",
               "CSAFPID-234320",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-22126",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-22126.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.8,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L",
                  version: "3.0",
               },
               products: [
                  "CSAFPID-1760711",
                  "CSAFPID-16504",
                  "CSAFPID-1760738",
                  "CSAFPID-406035",
                  "CSAFPID-837776",
                  "CSAFPID-1760739",
                  "CSAFPID-1759878",
                  "CSAFPID-340940",
                  "CSAFPID-1760724",
                  "CSAFPID-234320",
               ],
            },
         ],
         title: "CVE-2024-22126",
      },
      {
         cve: "CVE-2024-38819",
         cwe: {
            id: "CWE-22",
            name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
         },
         notes: [
            {
               category: "other",
               text: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
               title: "CWE-22",
            },
            {
               category: "general",
               text: "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
               title: "CVSSV4",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1760711",
               "CSAFPID-16504",
               "CSAFPID-1760738",
               "CSAFPID-406035",
               "CSAFPID-837776",
               "CSAFPID-1760739",
               "CSAFPID-1759878",
               "CSAFPID-340940",
               "CSAFPID-1760724",
               "CSAFPID-234320",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38819",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38819.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1760711",
                  "CSAFPID-16504",
                  "CSAFPID-1760738",
                  "CSAFPID-406035",
                  "CSAFPID-837776",
                  "CSAFPID-1760739",
                  "CSAFPID-1759878",
                  "CSAFPID-340940",
                  "CSAFPID-1760724",
                  "CSAFPID-234320",
               ],
            },
         ],
         title: "CVE-2024-38819",
      },
      {
         cve: "CVE-2024-38820",
         cwe: {
            id: "CWE-284",
            name: "Improper Access Control",
         },
         notes: [
            {
               category: "other",
               text: "Improper Access Control",
               title: "CWE-284",
            },
            {
               category: "other",
               text: "Improper Handling of Case Sensitivity",
               title: "CWE-178",
            },
            {
               category: "general",
               text: "CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
               title: "CVSSV4",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1760711",
               "CSAFPID-16504",
               "CSAFPID-1760738",
               "CSAFPID-406035",
               "CSAFPID-837776",
               "CSAFPID-1760739",
               "CSAFPID-1759878",
               "CSAFPID-340940",
               "CSAFPID-1760724",
               "CSAFPID-234320",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38820",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38820.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1760711",
                  "CSAFPID-16504",
                  "CSAFPID-1760738",
                  "CSAFPID-406035",
                  "CSAFPID-837776",
                  "CSAFPID-1760739",
                  "CSAFPID-1759878",
                  "CSAFPID-340940",
                  "CSAFPID-1760724",
                  "CSAFPID-234320",
               ],
            },
         ],
         title: "CVE-2024-38820",
      },
      {
         cve: "CVE-2024-38828",
         cwe: {
            id: "CWE-404",
            name: "Improper Resource Shutdown or Release",
         },
         notes: [
            {
               category: "other",
               text: "Improper Resource Shutdown or Release",
               title: "CWE-404",
            },
            {
               category: "general",
               text: "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
               title: "CVSSV4",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1760711",
               "CSAFPID-16504",
               "CSAFPID-1760738",
               "CSAFPID-406035",
               "CSAFPID-837776",
               "CSAFPID-1760739",
               "CSAFPID-1759878",
               "CSAFPID-340940",
               "CSAFPID-1760724",
               "CSAFPID-234320",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38828",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38828.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1760711",
                  "CSAFPID-16504",
                  "CSAFPID-1760738",
                  "CSAFPID-406035",
                  "CSAFPID-837776",
                  "CSAFPID-1760739",
                  "CSAFPID-1759878",
                  "CSAFPID-340940",
                  "CSAFPID-1760724",
                  "CSAFPID-234320",
               ],
            },
         ],
         title: "CVE-2024-38828",
      },
      {
         cve: "CVE-2024-45216",
         cwe: {
            id: "CWE-287",
            name: "Improper Authentication",
         },
         notes: [
            {
               category: "other",
               text: "Improper Authentication",
               title: "CWE-287",
            },
            {
               category: "other",
               text: "Incorrect Authorization",
               title: "CWE-863",
            },
            {
               category: "general",
               text: "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
               title: "CVSSV4",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1760711",
               "CSAFPID-16504",
               "CSAFPID-1760738",
               "CSAFPID-406035",
               "CSAFPID-837776",
               "CSAFPID-1760739",
               "CSAFPID-1759878",
               "CSAFPID-340940",
               "CSAFPID-1760724",
               "CSAFPID-234320",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-45216",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-45216.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1760711",
                  "CSAFPID-16504",
                  "CSAFPID-1760738",
                  "CSAFPID-406035",
                  "CSAFPID-837776",
                  "CSAFPID-1760739",
                  "CSAFPID-1759878",
                  "CSAFPID-340940",
                  "CSAFPID-1760724",
                  "CSAFPID-234320",
               ],
            },
         ],
         title: "CVE-2024-45216",
      },
      {
         cve: "CVE-2024-45217",
         cwe: {
            id: "CWE-1188",
            name: "Initialization of a Resource with an Insecure Default",
         },
         notes: [
            {
               category: "other",
               text: "Initialization of a Resource with an Insecure Default",
               title: "CWE-1188",
            },
            {
               category: "general",
               text: "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
               title: "CVSSV4",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1760711",
               "CSAFPID-16504",
               "CSAFPID-1760738",
               "CSAFPID-406035",
               "CSAFPID-837776",
               "CSAFPID-1760739",
               "CSAFPID-1759878",
               "CSAFPID-340940",
               "CSAFPID-1760724",
               "CSAFPID-234320",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-45217",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-45217.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.1,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1760711",
                  "CSAFPID-16504",
                  "CSAFPID-1760738",
                  "CSAFPID-406035",
                  "CSAFPID-837776",
                  "CSAFPID-1760739",
                  "CSAFPID-1759878",
                  "CSAFPID-340940",
                  "CSAFPID-1760724",
                  "CSAFPID-234320",
               ],
            },
         ],
         title: "CVE-2024-45217",
      },
      {
         cve: "CVE-2025-0054",
         cwe: {
            id: "CWE-79",
            name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
         },
         notes: [
            {
               category: "other",
               text: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
               title: "CWE-79",
            },
            {
               category: "general",
               text: "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
               title: "CVSSV4",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1760711",
               "CSAFPID-16504",
               "CSAFPID-1760738",
               "CSAFPID-406035",
               "CSAFPID-837776",
               "CSAFPID-1760739",
               "CSAFPID-1759878",
               "CSAFPID-340940",
               "CSAFPID-1760724",
               "CSAFPID-234320",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2025-0054",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-0054.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.4,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1760711",
                  "CSAFPID-16504",
                  "CSAFPID-1760738",
                  "CSAFPID-406035",
                  "CSAFPID-837776",
                  "CSAFPID-1760739",
                  "CSAFPID-1759878",
                  "CSAFPID-340940",
                  "CSAFPID-1760724",
                  "CSAFPID-234320",
               ],
            },
         ],
         title: "CVE-2025-0054",
      },
      {
         cve: "CVE-2025-0064",
         cwe: {
            id: "CWE-732",
            name: "Incorrect Permission Assignment for Critical Resource",
         },
         notes: [
            {
               category: "other",
               text: "Incorrect Permission Assignment for Critical Resource",
               title: "CWE-732",
            },
            {
               category: "general",
               text: "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
               title: "CVSSV4",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1760711",
               "CSAFPID-16504",
               "CSAFPID-1760738",
               "CSAFPID-406035",
               "CSAFPID-837776",
               "CSAFPID-1760739",
               "CSAFPID-1759878",
               "CSAFPID-340940",
               "CSAFPID-1760724",
               "CSAFPID-234320",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2025-0064",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-0064.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.7,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1760711",
                  "CSAFPID-16504",
                  "CSAFPID-1760738",
                  "CSAFPID-406035",
                  "CSAFPID-837776",
                  "CSAFPID-1760739",
                  "CSAFPID-1759878",
                  "CSAFPID-340940",
                  "CSAFPID-1760724",
                  "CSAFPID-234320",
               ],
            },
         ],
         title: "CVE-2025-0064",
      },
      {
         cve: "CVE-2025-23187",
         cwe: {
            id: "CWE-862",
            name: "Missing Authorization",
         },
         notes: [
            {
               category: "other",
               text: "Missing Authorization",
               title: "CWE-862",
            },
            {
               category: "general",
               text: "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
               title: "CVSSV4",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1760711",
               "CSAFPID-16504",
               "CSAFPID-1760738",
               "CSAFPID-406035",
               "CSAFPID-837776",
               "CSAFPID-1760739",
               "CSAFPID-1759878",
               "CSAFPID-340940",
               "CSAFPID-1760724",
               "CSAFPID-234320",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2025-23187",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-23187.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1760711",
                  "CSAFPID-16504",
                  "CSAFPID-1760738",
                  "CSAFPID-406035",
                  "CSAFPID-837776",
                  "CSAFPID-1760739",
                  "CSAFPID-1759878",
                  "CSAFPID-340940",
                  "CSAFPID-1760724",
                  "CSAFPID-234320",
               ],
            },
         ],
         title: "CVE-2025-23187",
      },
      {
         cve: "CVE-2025-23189",
         cwe: {
            id: "CWE-862",
            name: "Missing Authorization",
         },
         notes: [
            {
               category: "other",
               text: "Missing Authorization",
               title: "CWE-862",
            },
            {
               category: "general",
               text: "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
               title: "CVSSV4",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1760711",
               "CSAFPID-16504",
               "CSAFPID-1760738",
               "CSAFPID-406035",
               "CSAFPID-837776",
               "CSAFPID-1760739",
               "CSAFPID-1759878",
               "CSAFPID-340940",
               "CSAFPID-1760724",
               "CSAFPID-234320",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2025-23189",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-23189.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 4.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1760711",
                  "CSAFPID-16504",
                  "CSAFPID-1760738",
                  "CSAFPID-406035",
                  "CSAFPID-837776",
                  "CSAFPID-1760739",
                  "CSAFPID-1759878",
                  "CSAFPID-340940",
                  "CSAFPID-1760724",
                  "CSAFPID-234320",
               ],
            },
         ],
         title: "CVE-2025-23189",
      },
      {
         cve: "CVE-2025-23190",
         cwe: {
            id: "CWE-862",
            name: "Missing Authorization",
         },
         notes: [
            {
               category: "other",
               text: "Missing Authorization",
               title: "CWE-862",
            },
            {
               category: "general",
               text: "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
               title: "CVSSV4",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1760711",
               "CSAFPID-16504",
               "CSAFPID-1760738",
               "CSAFPID-406035",
               "CSAFPID-837776",
               "CSAFPID-1760739",
               "CSAFPID-1759878",
               "CSAFPID-340940",
               "CSAFPID-1760724",
               "CSAFPID-234320",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2025-23190",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-23190.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 4.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1760711",
                  "CSAFPID-16504",
                  "CSAFPID-1760738",
                  "CSAFPID-406035",
                  "CSAFPID-837776",
                  "CSAFPID-1760739",
                  "CSAFPID-1759878",
                  "CSAFPID-340940",
                  "CSAFPID-1760724",
                  "CSAFPID-234320",
               ],
            },
         ],
         title: "CVE-2025-23190",
      },
      {
         cve: "CVE-2025-23191",
         cwe: {
            id: "CWE-644",
            name: "Improper Neutralization of HTTP Headers for Scripting Syntax",
         },
         notes: [
            {
               category: "other",
               text: "Improper Neutralization of HTTP Headers for Scripting Syntax",
               title: "CWE-644",
            },
            {
               category: "general",
               text: "CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
               title: "CVSSV4",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1760711",
               "CSAFPID-16504",
               "CSAFPID-1760738",
               "CSAFPID-406035",
               "CSAFPID-837776",
               "CSAFPID-1760739",
               "CSAFPID-1759878",
               "CSAFPID-340940",
               "CSAFPID-1760724",
               "CSAFPID-234320",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2025-23191",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-23191.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 3.1,
                  baseSeverity: "LOW",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1760711",
                  "CSAFPID-16504",
                  "CSAFPID-1760738",
                  "CSAFPID-406035",
                  "CSAFPID-837776",
                  "CSAFPID-1760739",
                  "CSAFPID-1759878",
                  "CSAFPID-340940",
                  "CSAFPID-1760724",
                  "CSAFPID-234320",
               ],
            },
         ],
         title: "CVE-2025-23191",
      },
      {
         cve: "CVE-2025-23193",
         cwe: {
            id: "CWE-204",
            name: "Observable Response Discrepancy",
         },
         notes: [
            {
               category: "other",
               text: "Observable Response Discrepancy",
               title: "CWE-204",
            },
            {
               category: "general",
               text: "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
               title: "CVSSV4",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1760711",
               "CSAFPID-16504",
               "CSAFPID-1760738",
               "CSAFPID-406035",
               "CSAFPID-837776",
               "CSAFPID-1760739",
               "CSAFPID-1759878",
               "CSAFPID-340940",
               "CSAFPID-1760724",
               "CSAFPID-234320",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2025-23193",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-23193.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1760711",
                  "CSAFPID-16504",
                  "CSAFPID-1760738",
                  "CSAFPID-406035",
                  "CSAFPID-837776",
                  "CSAFPID-1760739",
                  "CSAFPID-1759878",
                  "CSAFPID-340940",
                  "CSAFPID-1760724",
                  "CSAFPID-234320",
               ],
            },
         ],
         title: "CVE-2025-23193",
      },
      {
         cve: "CVE-2025-24867",
         cwe: {
            id: "CWE-79",
            name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
         },
         notes: [
            {
               category: "other",
               text: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
               title: "CWE-79",
            },
            {
               category: "general",
               text: "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
               title: "CVSSV4",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1760711",
               "CSAFPID-16504",
               "CSAFPID-1760738",
               "CSAFPID-406035",
               "CSAFPID-837776",
               "CSAFPID-1760739",
               "CSAFPID-1759878",
               "CSAFPID-340940",
               "CSAFPID-1760724",
               "CSAFPID-234320",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2025-24867",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24867.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6.1,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1760711",
                  "CSAFPID-16504",
                  "CSAFPID-1760738",
                  "CSAFPID-406035",
                  "CSAFPID-837776",
                  "CSAFPID-1760739",
                  "CSAFPID-1759878",
                  "CSAFPID-340940",
                  "CSAFPID-1760724",
                  "CSAFPID-234320",
               ],
            },
         ],
         title: "CVE-2025-24867",
      },
      {
         cve: "CVE-2025-24868",
         cwe: {
            id: "CWE-601",
            name: "URL Redirection to Untrusted Site ('Open Redirect')",
         },
         notes: [
            {
               category: "other",
               text: "URL Redirection to Untrusted Site ('Open Redirect')",
               title: "CWE-601",
            },
            {
               category: "general",
               text: "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
               title: "CVSSV4",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1760711",
               "CSAFPID-16504",
               "CSAFPID-1760738",
               "CSAFPID-406035",
               "CSAFPID-837776",
               "CSAFPID-1760739",
               "CSAFPID-1759878",
               "CSAFPID-340940",
               "CSAFPID-1760724",
               "CSAFPID-234320",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2025-24868",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24868.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.1,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1760711",
                  "CSAFPID-16504",
                  "CSAFPID-1760738",
                  "CSAFPID-406035",
                  "CSAFPID-837776",
                  "CSAFPID-1760739",
                  "CSAFPID-1759878",
                  "CSAFPID-340940",
                  "CSAFPID-1760724",
                  "CSAFPID-234320",
               ],
            },
         ],
         title: "CVE-2025-24868",
      },
      {
         cve: "CVE-2025-24869",
         cwe: {
            id: "CWE-863",
            name: "Incorrect Authorization",
         },
         notes: [
            {
               category: "other",
               text: "Incorrect Authorization",
               title: "CWE-863",
            },
            {
               category: "general",
               text: "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
               title: "CVSSV4",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1760711",
               "CSAFPID-16504",
               "CSAFPID-1760738",
               "CSAFPID-406035",
               "CSAFPID-837776",
               "CSAFPID-1760739",
               "CSAFPID-1759878",
               "CSAFPID-340940",
               "CSAFPID-1760724",
               "CSAFPID-234320",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2025-24869",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24869.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 4.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1760711",
                  "CSAFPID-16504",
                  "CSAFPID-1760738",
                  "CSAFPID-406035",
                  "CSAFPID-837776",
                  "CSAFPID-1760739",
                  "CSAFPID-1759878",
                  "CSAFPID-340940",
                  "CSAFPID-1760724",
                  "CSAFPID-234320",
               ],
            },
         ],
         title: "CVE-2025-24869",
      },
      {
         cve: "CVE-2025-24870",
         cwe: {
            id: "CWE-921",
            name: "Storage of Sensitive Data in a Mechanism without Access Control",
         },
         notes: [
            {
               category: "other",
               text: "Storage of Sensitive Data in a Mechanism without Access Control",
               title: "CWE-921",
            },
            {
               category: "general",
               text: "CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
               title: "CVSSV4",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1760711",
               "CSAFPID-16504",
               "CSAFPID-1760738",
               "CSAFPID-406035",
               "CSAFPID-837776",
               "CSAFPID-1760739",
               "CSAFPID-1759878",
               "CSAFPID-340940",
               "CSAFPID-1760724",
               "CSAFPID-234320",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2025-24870",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24870.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1760711",
                  "CSAFPID-16504",
                  "CSAFPID-1760738",
                  "CSAFPID-406035",
                  "CSAFPID-837776",
                  "CSAFPID-1760739",
                  "CSAFPID-1759878",
                  "CSAFPID-340940",
                  "CSAFPID-1760724",
                  "CSAFPID-234320",
               ],
            },
         ],
         title: "CVE-2025-24870",
      },
      {
         cve: "CVE-2025-24872",
         cwe: {
            id: "CWE-863",
            name: "Incorrect Authorization",
         },
         notes: [
            {
               category: "other",
               text: "Incorrect Authorization",
               title: "CWE-863",
            },
            {
               category: "general",
               text: "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
               title: "CVSSV4",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1760711",
               "CSAFPID-16504",
               "CSAFPID-1760738",
               "CSAFPID-406035",
               "CSAFPID-837776",
               "CSAFPID-1760739",
               "CSAFPID-1759878",
               "CSAFPID-340940",
               "CSAFPID-1760724",
               "CSAFPID-234320",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2025-24872",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24872.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 4.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1760711",
                  "CSAFPID-16504",
                  "CSAFPID-1760738",
                  "CSAFPID-406035",
                  "CSAFPID-837776",
                  "CSAFPID-1760739",
                  "CSAFPID-1759878",
                  "CSAFPID-340940",
                  "CSAFPID-1760724",
                  "CSAFPID-234320",
               ],
            },
         ],
         title: "CVE-2025-24872",
      },
      {
         cve: "CVE-2025-24874",
         cwe: {
            id: "CWE-1021",
            name: "Improper Restriction of Rendered UI Layers or Frames",
         },
         notes: [
            {
               category: "other",
               text: "Improper Restriction of Rendered UI Layers or Frames",
               title: "CWE-1021",
            },
            {
               category: "general",
               text: "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
               title: "CVSSV4",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1760711",
               "CSAFPID-16504",
               "CSAFPID-1760738",
               "CSAFPID-406035",
               "CSAFPID-837776",
               "CSAFPID-1760739",
               "CSAFPID-1759878",
               "CSAFPID-340940",
               "CSAFPID-1760724",
               "CSAFPID-234320",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2025-24874",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24874.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6.8,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1760711",
                  "CSAFPID-16504",
                  "CSAFPID-1760738",
                  "CSAFPID-406035",
                  "CSAFPID-837776",
                  "CSAFPID-1760739",
                  "CSAFPID-1759878",
                  "CSAFPID-340940",
                  "CSAFPID-1760724",
                  "CSAFPID-234320",
               ],
            },
         ],
         title: "CVE-2025-24874",
      },
      {
         cve: "CVE-2025-24875",
         cwe: {
            id: "CWE-352",
            name: "Cross-Site Request Forgery (CSRF)",
         },
         notes: [
            {
               category: "other",
               text: "Cross-Site Request Forgery (CSRF)",
               title: "CWE-352",
            },
            {
               category: "general",
               text: "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
               title: "CVSSV4",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1760711",
               "CSAFPID-16504",
               "CSAFPID-1760738",
               "CSAFPID-406035",
               "CSAFPID-837776",
               "CSAFPID-1760739",
               "CSAFPID-1759878",
               "CSAFPID-340940",
               "CSAFPID-1760724",
               "CSAFPID-234320",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2025-24875",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24875.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6.8,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1760711",
                  "CSAFPID-16504",
                  "CSAFPID-1760738",
                  "CSAFPID-406035",
                  "CSAFPID-837776",
                  "CSAFPID-1760739",
                  "CSAFPID-1759878",
                  "CSAFPID-340940",
                  "CSAFPID-1760724",
                  "CSAFPID-234320",
               ],
            },
         ],
         title: "CVE-2025-24875",
      },
      {
         cve: "CVE-2025-24876",
         cwe: {
            id: "CWE-601",
            name: "URL Redirection to Untrusted Site ('Open Redirect')",
         },
         notes: [
            {
               category: "other",
               text: "URL Redirection to Untrusted Site ('Open Redirect')",
               title: "CWE-601",
            },
            {
               category: "general",
               text: "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
               title: "CVSSV4",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1760711",
               "CSAFPID-16504",
               "CSAFPID-1760738",
               "CSAFPID-406035",
               "CSAFPID-837776",
               "CSAFPID-1760739",
               "CSAFPID-1759878",
               "CSAFPID-340940",
               "CSAFPID-1760724",
               "CSAFPID-234320",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2025-24876",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24876.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.1,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1760711",
                  "CSAFPID-16504",
                  "CSAFPID-1760738",
                  "CSAFPID-406035",
                  "CSAFPID-837776",
                  "CSAFPID-1760739",
                  "CSAFPID-1759878",
                  "CSAFPID-340940",
                  "CSAFPID-1760724",
                  "CSAFPID-234320",
               ],
            },
         ],
         title: "CVE-2025-24876",
      },
      {
         cve: "CVE-2025-25241",
         cwe: {
            id: "CWE-862",
            name: "Missing Authorization",
         },
         notes: [
            {
               category: "other",
               text: "Missing Authorization",
               title: "CWE-862",
            },
            {
               category: "general",
               text: "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
               title: "CVSSV4",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1760711",
               "CSAFPID-16504",
               "CSAFPID-1760738",
               "CSAFPID-406035",
               "CSAFPID-837776",
               "CSAFPID-1760739",
               "CSAFPID-1759878",
               "CSAFPID-340940",
               "CSAFPID-1760724",
               "CSAFPID-234320",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2025-25241",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-25241.json",
            },
         ],
         title: "CVE-2025-25241",
      },
      {
         cve: "CVE-2025-25243",
         cwe: {
            id: "CWE-22",
            name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
         },
         notes: [
            {
               category: "other",
               text: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
               title: "CWE-22",
            },
            {
               category: "general",
               text: "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
               title: "CVSSV4",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1760711",
               "CSAFPID-16504",
               "CSAFPID-1760738",
               "CSAFPID-406035",
               "CSAFPID-837776",
               "CSAFPID-1760739",
               "CSAFPID-1759878",
               "CSAFPID-340940",
               "CSAFPID-1760724",
               "CSAFPID-234320",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2025-25243",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-25243.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.6,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1760711",
                  "CSAFPID-16504",
                  "CSAFPID-1760738",
                  "CSAFPID-406035",
                  "CSAFPID-837776",
                  "CSAFPID-1760739",
                  "CSAFPID-1759878",
                  "CSAFPID-340940",
                  "CSAFPID-1760724",
                  "CSAFPID-234320",
               ],
            },
         ],
         title: "CVE-2025-25243",
      },
   ],
}

ncsc-2025-0027

Vulnerability from csaf_ncscnl

Published

2025-01-22 13:36

Modified

2025-01-22 13:36

Summary

Kwetsbaarheden verholpen in Oracle Fusion Middleware

Notes

Feiten

Oracle heeft meerdere kwetsbaarheden verholpen in zijn producten, waaronder Oracle Fusion Middleware, Oracle WebLogic Server, en Oracle HTTP Server.

Interpretaties

De kwetsbaarheden bevinden zich in verschillende Oracle producten, waaronder Oracle WebLogic Server versies 12.2.1.4.0 en 14.1.1.0.0, die het mogelijk maken voor ongeauthenticeerde kwaadwillenden om toegang te krijgen tot kritieke gegevens. Dit kan leiden tot ernstige gevolgen voor de vertrouwelijkheid, integriteit en beschikbaarheid van de systemen. De kwetsbaarheid in Oracle HTTP Server versie 12.2.1.4.0 stelt kwaadwillenden in staat om ongeautoriseerde toegang te verkrijgen, met een CVSS-score van 5.3, terwijl de kwetsbaarheid in WebLogic Server een CVSS-score van 9.8 heeft, wat wijst op een kritieke impact. Kwaadwillenden kunnen ook gebruik maken van kwetsbaarheden in Oracle Fusion Middleware en andere producten om Denial-of-Service (DoS) aanvallen uit te voeren.

Oplossingen

Oracle heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.

Kans

medium

Schade

high

CWE-338

Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)

CWE-35

Path Traversal: '.../...//'

CWE-1395

Dependency on Vulnerable Third-Party Component

CWE-130

Improper Handling of Length Parameter Inconsistency

CWE-755

Improper Handling of Exceptional Conditions

CWE-732

Incorrect Permission Assignment for Critical Resource

CWE-116

Improper Encoding or Escaping of Output

CWE-190

Integer Overflow or Wraparound

CWE-532

Insertion of Sensitive Information into Log File

CWE-798

Use of Hard-coded Credentials

CWE-125

Out-of-bounds Read

CWE-284

Improper Access Control

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-295

Improper Certificate Validation

CWE-400

Uncontrolled Resource Consumption

CWE-502

Deserialization of Untrusted Data

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CWE-611

Improper Restriction of XML External Entity Reference

CWE-787

Out-of-bounds Write

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

CWE-122

Heap-based Buffer Overflow

CWE-121

Stack-based Buffer Overflow

CWE-20

Improper Input Validation

CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

JSON

To clipboard

{
   document: {
      category: "csaf_security_advisory",
      csaf_version: "2.0",
      distribution: {
         tlp: {
            label: "WHITE",
         },
      },
      lang: "nl",
      notes: [
         {
            category: "legal_disclaimer",
            text: "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n    NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n    NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n    This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.",
         },
         {
            category: "description",
            text: "Oracle heeft meerdere kwetsbaarheden verholpen in zijn producten, waaronder Oracle Fusion Middleware, Oracle WebLogic Server, en Oracle HTTP Server.",
            title: "Feiten",
         },
         {
            category: "description",
            text: "De kwetsbaarheden bevinden zich in verschillende Oracle producten, waaronder Oracle WebLogic Server versies 12.2.1.4.0 en 14.1.1.0.0, die het mogelijk maken voor ongeauthenticeerde kwaadwillenden om toegang te krijgen tot kritieke gegevens. Dit kan leiden tot ernstige gevolgen voor de vertrouwelijkheid, integriteit en beschikbaarheid van de systemen. De kwetsbaarheid in Oracle HTTP Server versie 12.2.1.4.0 stelt kwaadwillenden in staat om ongeautoriseerde toegang te verkrijgen, met een CVSS-score van 5.3, terwijl de kwetsbaarheid in WebLogic Server een CVSS-score van 9.8 heeft, wat wijst op een kritieke impact. Kwaadwillenden kunnen ook gebruik maken van kwetsbaarheden in Oracle Fusion Middleware en andere producten om Denial-of-Service (DoS) aanvallen uit te voeren.",
            title: "Interpretaties",
         },
         {
            category: "description",
            text: "Oracle heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
            title: "Oplossingen",
         },
         {
            category: "general",
            text: "medium",
            title: "Kans",
         },
         {
            category: "general",
            text: "high",
            title: "Schade",
         },
         {
            category: "general",
            text: "Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)",
            title: "CWE-338",
         },
         {
            category: "general",
            text: "Path Traversal: '.../...//'",
            title: "CWE-35",
         },
         {
            category: "general",
            text: "Dependency on Vulnerable Third-Party Component",
            title: "CWE-1395",
         },
         {
            category: "general",
            text: "Improper Handling of Length Parameter Inconsistency",
            title: "CWE-130",
         },
         {
            category: "general",
            text: "Improper Handling of Exceptional Conditions",
            title: "CWE-755",
         },
         {
            category: "general",
            text: "Incorrect Permission Assignment for Critical Resource",
            title: "CWE-732",
         },
         {
            category: "general",
            text: "Improper Encoding or Escaping of Output",
            title: "CWE-116",
         },
         {
            category: "general",
            text: "Integer Overflow or Wraparound",
            title: "CWE-190",
         },
         {
            category: "general",
            text: "Insertion of Sensitive Information into Log File",
            title: "CWE-532",
         },
         {
            category: "general",
            text: "Use of Hard-coded Credentials",
            title: "CWE-798",
         },
         {
            category: "general",
            text: "Out-of-bounds Read",
            title: "CWE-125",
         },
         {
            category: "general",
            text: "Improper Access Control",
            title: "CWE-284",
         },
         {
            category: "general",
            text: "Improper Restriction of Operations within the Bounds of a Memory Buffer",
            title: "CWE-119",
         },
         {
            category: "general",
            text: "Improper Certificate Validation",
            title: "CWE-295",
         },
         {
            category: "general",
            text: "Uncontrolled Resource Consumption",
            title: "CWE-400",
         },
         {
            category: "general",
            text: "Deserialization of Untrusted Data",
            title: "CWE-502",
         },
         {
            category: "general",
            text: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
            title: "CWE-22",
         },
         {
            category: "general",
            text: "Improper Restriction of XML External Entity Reference",
            title: "CWE-611",
         },
         {
            category: "general",
            text: "Out-of-bounds Write",
            title: "CWE-787",
         },
         {
            category: "general",
            text: "Exposure of Sensitive Information to an Unauthorized Actor",
            title: "CWE-200",
         },
         {
            category: "general",
            text: "Heap-based Buffer Overflow",
            title: "CWE-122",
         },
         {
            category: "general",
            text: "Stack-based Buffer Overflow",
            title: "CWE-121",
         },
         {
            category: "general",
            text: "Improper Input Validation",
            title: "CWE-20",
         },
         {
            category: "general",
            text: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
            title: "CWE-79",
         },
      ],
      publisher: {
         category: "coordinator",
         contact_details: "cert@ncsc.nl",
         name: "Nationaal Cyber Security Centrum",
         namespace: "https://www.ncsc.nl/",
      },
      references: [
         {
            category: "external",
            summary: "Reference - cveprojectv5; nvd; oracle",
            url: "https://www.oracle.com/security-alerts/cpujan2025.html",
         },
      ],
      title: "Kwetsbaarheden verholpen in Oracle Fusion Middleware",
      tracking: {
         current_release_date: "2025-01-22T13:36:27.908718Z",
         id: "NCSC-2025-0027",
         initial_release_date: "2025-01-22T13:36:27.908718Z",
         revision_history: [
            {
               date: "2025-01-22T13:36:27.908718Z",
               number: "0",
               summary: "Initiele versie",
            },
         ],
         status: "final",
         version: "1.0.0",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  category: "product_name",
                  name: "http_server",
                  product: {
                     name: "http_server",
                     product_id: "CSAFPID-93909",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:http_server:12.2.1.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "http_server",
                  product: {
                     name: "http_server",
                     product_id: "CSAFPID-40303",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "http_server",
                  product: {
                     name: "http_server",
                     product_id: "CSAFPID-912074",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:http_server:14.1.1.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "fusion_middleware_mapviewer",
                  product: {
                     name: "fusion_middleware_mapviewer",
                     product_id: "CSAFPID-226018",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:fusion_middleware_mapviewer:12.2.1.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "fusion_middleware",
                  product: {
                     name: "fusion_middleware",
                     product_id: "CSAFPID-1646487",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:fusion_middleware:-:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "fusion_middleware",
                  product: {
                     name: "fusion_middleware",
                     product_id: "CSAFPID-332789",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:fusion_middleware:11.1.1.5.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "fusion_middleware",
                  product: {
                     name: "fusion_middleware",
                     product_id: "CSAFPID-1747074",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:fusion_middleware:12.2.1.19.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "fusion_middleware",
                  product: {
                     name: "fusion_middleware",
                     product_id: "CSAFPID-342815",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:fusion_middleware:12.2.1.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "fusion_middleware",
                  product: {
                     name: "fusion_middleware",
                     product_id: "CSAFPID-271904",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:fusion_middleware:12.2.1.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "fusion_middleware",
                  product: {
                     name: "fusion_middleware",
                     product_id: "CSAFPID-503474",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:fusion_middleware:14.1.1.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "fusion_middleware",
                  product: {
                     name: "fusion_middleware",
                     product_id: "CSAFPID-1674670",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:fusion_middleware:8.5.7:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "weblogic_server",
                  product: {
                     name: "weblogic_server",
                     product_id: "CSAFPID-3661",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "weblogic_server",
                  product: {
                     name: "weblogic_server",
                     product_id: "CSAFPID-3660",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "weblogic_server",
                  product: {
                     name: "weblogic_server",
                     product_id: "CSAFPID-1973",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "weblogic_server",
                  product: {
                     name: "weblogic_server",
                     product_id: "CSAFPID-1751293",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:weblogic_server:14.1.2.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "security_service",
                  product: {
                     name: "security_service",
                     product_id: "CSAFPID-199820",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:security_service:12.2.1.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "business_activity_monitoring",
                  product: {
                     name: "business_activity_monitoring",
                     product_id: "CSAFPID-228157",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "business_activity_monitoring__bam_",
                  product: {
                     name: "business_activity_monitoring__bam_",
                     product_id: "CSAFPID-764927",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:business_activity_monitoring__bam_:12.2.1.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "business_activity_monitoring__bam_",
                  product: {
                     name: "business_activity_monitoring__bam_",
                     product_id: "CSAFPID-764928",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:business_activity_monitoring__bam_:12.2.1.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "identity_manager",
                  product: {
                     name: "identity_manager",
                     product_id: "CSAFPID-220164",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:identity_manager:12.2.1.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "managed_file_transfer",
                  product: {
                     name: "managed_file_transfer",
                     product_id: "CSAFPID-204581",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "middleware_common_libraries_and_tools",
                  product: {
                     name: "middleware_common_libraries_and_tools",
                     product_id: "CSAFPID-94398",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:middleware_common_libraries_and_tools:12.2.1.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "middleware_common_libraries_and_tools",
                  product: {
                     name: "middleware_common_libraries_and_tools",
                     product_id: "CSAFPID-94309",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:middleware_common_libraries_and_tools:12.2.1.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "middleware_common_libraries_and_tools",
                  product: {
                     name: "middleware_common_libraries_and_tools",
                     product_id: "CSAFPID-94393",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:middleware_common_libraries_and_tools:14.1.1.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "business_process_management_suite",
                  product: {
                     name: "business_process_management_suite",
                     product_id: "CSAFPID-9043",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:business_process_management_suite:12.2.1.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "business_process_management_suite",
                  product: {
                     name: "business_process_management_suite",
                     product_id: "CSAFPID-9642",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "outside_in_technology",
                  product: {
                     name: "outside_in_technology",
                     product_id: "CSAFPID-1260",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:outside_in_technology:8.5.6:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "outside_in_technology",
                  product: {
                     name: "outside_in_technology",
                     product_id: "CSAFPID-912053",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:outside_in_technology:8.5.7:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "webcenter_portal",
                  product: {
                     name: "webcenter_portal",
                     product_id: "CSAFPID-135359",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "webcenter_portal",
                  product: {
                     name: "webcenter_portal",
                     product_id: "CSAFPID-45194",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
            ],
            category: "vendor",
            name: "oracle",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2019-12415",
         cwe: {
            id: "CWE-611",
            name: "Improper Restriction of XML External Entity Reference",
         },
         notes: [
            {
               category: "other",
               text: "Improper Restriction of XML External Entity Reference",
               title: "CWE-611",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-45194",
               "CSAFPID-135359",
               "CSAFPID-1646487",
               "CSAFPID-9642",
               "CSAFPID-40303",
               "CSAFPID-220164",
               "CSAFPID-204581",
               "CSAFPID-94309",
               "CSAFPID-1260",
               "CSAFPID-3661",
               "CSAFPID-3660",
               "CSAFPID-1973",
               "CSAFPID-94393",
               "CSAFPID-226018",
               "CSAFPID-764927",
               "CSAFPID-764928",
               "CSAFPID-9043",
               "CSAFPID-93909",
               "CSAFPID-94398",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2019-12415",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2019/CVE-2019-12415.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.5,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-45194",
                  "CSAFPID-135359",
                  "CSAFPID-1646487",
                  "CSAFPID-9642",
                  "CSAFPID-40303",
                  "CSAFPID-220164",
                  "CSAFPID-204581",
                  "CSAFPID-94309",
                  "CSAFPID-1260",
                  "CSAFPID-3661",
                  "CSAFPID-3660",
                  "CSAFPID-1973",
                  "CSAFPID-94393",
                  "CSAFPID-226018",
                  "CSAFPID-764927",
                  "CSAFPID-764928",
                  "CSAFPID-9043",
                  "CSAFPID-93909",
                  "CSAFPID-94398",
               ],
            },
         ],
         title: "CVE-2019-12415",
      },
      {
         cve: "CVE-2023-7272",
         cwe: {
            id: "CWE-787",
            name: "Out-of-bounds Write",
         },
         notes: [
            {
               category: "other",
               text: "Out-of-bounds Write",
               title: "CWE-787",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-3660",
               "CSAFPID-1973",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2023-7272",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-7272.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.6,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-3660",
                  "CSAFPID-1973",
               ],
            },
         ],
         title: "CVE-2023-7272",
      },
      {
         cve: "CVE-2023-38709",
         cwe: {
            id: "CWE-113",
            name: "Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting')",
         },
         notes: [
            {
               category: "other",
               text: "Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting')",
               title: "CWE-113",
            },
            {
               category: "other",
               text: "Improper Validation of Specified Quantity in Input",
               title: "CWE-1284",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-228157",
               "CSAFPID-271904",
               "CSAFPID-40303",
               "CSAFPID-220164",
               "CSAFPID-94309",
               "CSAFPID-912053",
               "CSAFPID-45194",
               "CSAFPID-3660",
               "CSAFPID-1973",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2023-38709",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-38709.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.1,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-228157",
                  "CSAFPID-271904",
                  "CSAFPID-40303",
                  "CSAFPID-220164",
                  "CSAFPID-94309",
                  "CSAFPID-912053",
                  "CSAFPID-45194",
                  "CSAFPID-3660",
                  "CSAFPID-1973",
               ],
            },
         ],
         title: "CVE-2023-38709",
      },
      {
         cve: "CVE-2023-39410",
         cwe: {
            id: "CWE-502",
            name: "Deserialization of Untrusted Data",
         },
         notes: [
            {
               category: "other",
               text: "Deserialization of Untrusted Data",
               title: "CWE-502",
            },
            {
               category: "other",
               text: "Improper Input Validation",
               title: "CWE-20",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1260",
               "CSAFPID-1973",
               "CSAFPID-3660",
               "CSAFPID-9642",
               "CSAFPID-40303",
               "CSAFPID-45194",
               "CSAFPID-94309",
               "CSAFPID-204581",
               "CSAFPID-220164",
               "CSAFPID-271904",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2023-39410",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-39410.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1260",
                  "CSAFPID-1973",
                  "CSAFPID-3660",
                  "CSAFPID-9642",
                  "CSAFPID-40303",
                  "CSAFPID-45194",
                  "CSAFPID-94309",
                  "CSAFPID-204581",
                  "CSAFPID-220164",
                  "CSAFPID-271904",
               ],
            },
         ],
         title: "CVE-2023-39410",
      },
      {
         cve: "CVE-2023-44483",
         cwe: {
            id: "CWE-532",
            name: "Insertion of Sensitive Information into Log File",
         },
         notes: [
            {
               category: "other",
               text: "Insertion of Sensitive Information into Log File",
               title: "CWE-532",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1260",
               "CSAFPID-1973",
               "CSAFPID-3660",
               "CSAFPID-9642",
               "CSAFPID-40303",
               "CSAFPID-45194",
               "CSAFPID-94309",
               "CSAFPID-204581",
               "CSAFPID-220164",
               "CSAFPID-271904",
               "CSAFPID-94393",
               "CSAFPID-226018",
               "CSAFPID-912053",
               "CSAFPID-912074",
               "CSAFPID-228157",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2023-44483",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44483.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6.5,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1260",
                  "CSAFPID-1973",
                  "CSAFPID-3660",
                  "CSAFPID-9642",
                  "CSAFPID-40303",
                  "CSAFPID-45194",
                  "CSAFPID-94309",
                  "CSAFPID-204581",
                  "CSAFPID-220164",
                  "CSAFPID-271904",
                  "CSAFPID-94393",
                  "CSAFPID-226018",
                  "CSAFPID-912053",
                  "CSAFPID-912074",
                  "CSAFPID-228157",
               ],
            },
         ],
         title: "CVE-2023-44483",
      },
      {
         cve: "CVE-2023-49582",
         cwe: {
            id: "CWE-732",
            name: "Incorrect Permission Assignment for Critical Resource",
         },
         notes: [
            {
               category: "other",
               text: "Incorrect Permission Assignment for Critical Resource",
               title: "CWE-732",
            },
            {
               category: "other",
               text: "Improper Restriction of Operations within the Bounds of a Memory Buffer",
               title: "CWE-119",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-40303",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2023-49582",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-49582.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.5,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-40303",
               ],
            },
         ],
         title: "CVE-2023-49582",
      },
      {
         cve: "CVE-2023-51775",
         cwe: {
            id: "CWE-400",
            name: "Uncontrolled Resource Consumption",
         },
         notes: [
            {
               category: "other",
               text: "Uncontrolled Resource Consumption",
               title: "CWE-400",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-332789",
               "CSAFPID-342815",
               "CSAFPID-1674670",
               "CSAFPID-503474",
               "CSAFPID-1260",
               "CSAFPID-1973",
               "CSAFPID-3660",
               "CSAFPID-40303",
               "CSAFPID-45194",
               "CSAFPID-94309",
               "CSAFPID-94393",
               "CSAFPID-204581",
               "CSAFPID-220164",
               "CSAFPID-226018",
               "CSAFPID-912053",
               "CSAFPID-912074",
               "CSAFPID-228157",
               "CSAFPID-271904",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2023-51775",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-51775.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-332789",
                  "CSAFPID-342815",
                  "CSAFPID-1674670",
                  "CSAFPID-503474",
                  "CSAFPID-1260",
                  "CSAFPID-1973",
                  "CSAFPID-3660",
                  "CSAFPID-40303",
                  "CSAFPID-45194",
                  "CSAFPID-94309",
                  "CSAFPID-94393",
                  "CSAFPID-204581",
                  "CSAFPID-220164",
                  "CSAFPID-226018",
                  "CSAFPID-912053",
                  "CSAFPID-912074",
                  "CSAFPID-228157",
                  "CSAFPID-271904",
               ],
            },
         ],
         title: "CVE-2023-51775",
      },
      {
         cve: "CVE-2024-5535",
         cwe: {
            id: "CWE-200",
            name: "Exposure of Sensitive Information to an Unauthorized Actor",
         },
         notes: [
            {
               category: "other",
               text: "Exposure of Sensitive Information to an Unauthorized Actor",
               title: "CWE-200",
            },
            {
               category: "other",
               text: "Improper Restriction of Operations within the Bounds of a Memory Buffer",
               title: "CWE-119",
            },
            {
               category: "other",
               text: "Dependency on Vulnerable Third-Party Component",
               title: "CWE-1395",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-40303",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-5535",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-5535.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.1,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-40303",
               ],
            },
         ],
         title: "CVE-2024-5535",
      },
      {
         cve: "CVE-2024-6119",
         cwe: {
            id: "CWE-843",
            name: "Access of Resource Using Incompatible Type ('Type Confusion')",
         },
         notes: [
            {
               category: "other",
               text: "Access of Resource Using Incompatible Type ('Type Confusion')",
               title: "CWE-843",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-40303",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-6119",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-6119.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.1,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-40303",
               ],
            },
         ],
         title: "CVE-2024-6119",
      },
      {
         cve: "CVE-2024-8096",
         cwe: {
            id: "CWE-295",
            name: "Improper Certificate Validation",
         },
         notes: [
            {
               category: "other",
               text: "Improper Certificate Validation",
               title: "CWE-295",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-40303",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-8096",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-8096.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-40303",
               ],
            },
         ],
         title: "CVE-2024-8096",
      },
      {
         cve: "CVE-2024-23635",
         cwe: {
            id: "CWE-79",
            name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
         },
         notes: [
            {
               category: "other",
               text: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
               title: "CWE-79",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1260",
               "CSAFPID-1973",
               "CSAFPID-3660",
               "CSAFPID-40303",
               "CSAFPID-45194",
               "CSAFPID-94309",
               "CSAFPID-94393",
               "CSAFPID-204581",
               "CSAFPID-220164",
               "CSAFPID-226018",
               "CSAFPID-912053",
               "CSAFPID-912074",
               "CSAFPID-228157",
               "CSAFPID-271904",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-23635",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-23635.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6.1,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1260",
                  "CSAFPID-1973",
                  "CSAFPID-3660",
                  "CSAFPID-40303",
                  "CSAFPID-45194",
                  "CSAFPID-94309",
                  "CSAFPID-94393",
                  "CSAFPID-204581",
                  "CSAFPID-220164",
                  "CSAFPID-226018",
                  "CSAFPID-912053",
                  "CSAFPID-912074",
                  "CSAFPID-228157",
                  "CSAFPID-271904",
               ],
            },
         ],
         title: "CVE-2024-23635",
      },
      {
         cve: "CVE-2024-29857",
         cwe: {
            id: "CWE-400",
            name: "Uncontrolled Resource Consumption",
         },
         notes: [
            {
               category: "other",
               text: "Uncontrolled Resource Consumption",
               title: "CWE-400",
            },
            {
               category: "other",
               text: "Improper Input Validation",
               title: "CWE-20",
            },
            {
               category: "other",
               text: "Out-of-bounds Read",
               title: "CWE-125",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-228157",
               "CSAFPID-271904",
               "CSAFPID-40303",
               "CSAFPID-220164",
               "CSAFPID-94309",
               "CSAFPID-912053",
               "CSAFPID-45194",
               "CSAFPID-3660",
               "CSAFPID-1973",
               "CSAFPID-1747074",
               "CSAFPID-1674670",
               "CSAFPID-503474",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-29857",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-29857.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-228157",
                  "CSAFPID-271904",
                  "CSAFPID-40303",
                  "CSAFPID-220164",
                  "CSAFPID-94309",
                  "CSAFPID-912053",
                  "CSAFPID-45194",
                  "CSAFPID-3660",
                  "CSAFPID-1973",
                  "CSAFPID-1747074",
                  "CSAFPID-1674670",
                  "CSAFPID-503474",
               ],
            },
         ],
         title: "CVE-2024-29857",
      },
      {
         cve: "CVE-2024-30171",
         cwe: {
            id: "CWE-208",
            name: "Observable Timing Discrepancy",
         },
         notes: [
            {
               category: "other",
               text: "Observable Timing Discrepancy",
               title: "CWE-208",
            },
            {
               category: "other",
               text: "Observable Discrepancy",
               title: "CWE-203",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-228157",
               "CSAFPID-271904",
               "CSAFPID-40303",
               "CSAFPID-220164",
               "CSAFPID-94309",
               "CSAFPID-912053",
               "CSAFPID-45194",
               "CSAFPID-3660",
               "CSAFPID-1973",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-30171",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-30171.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-228157",
                  "CSAFPID-271904",
                  "CSAFPID-40303",
                  "CSAFPID-220164",
                  "CSAFPID-94309",
                  "CSAFPID-912053",
                  "CSAFPID-45194",
                  "CSAFPID-3660",
                  "CSAFPID-1973",
               ],
            },
         ],
         title: "CVE-2024-30171",
      },
      {
         cve: "CVE-2024-30172",
         cwe: {
            id: "CWE-835",
            name: "Loop with Unreachable Exit Condition ('Infinite Loop')",
         },
         notes: [
            {
               category: "other",
               text: "Loop with Unreachable Exit Condition ('Infinite Loop')",
               title: "CWE-835",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-228157",
               "CSAFPID-271904",
               "CSAFPID-40303",
               "CSAFPID-220164",
               "CSAFPID-94309",
               "CSAFPID-912053",
               "CSAFPID-45194",
               "CSAFPID-3660",
               "CSAFPID-1973",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-30172",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-30172.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-228157",
                  "CSAFPID-271904",
                  "CSAFPID-40303",
                  "CSAFPID-220164",
                  "CSAFPID-94309",
                  "CSAFPID-912053",
                  "CSAFPID-45194",
                  "CSAFPID-3660",
                  "CSAFPID-1973",
               ],
            },
         ],
         title: "CVE-2024-30172",
      },
      {
         cve: "CVE-2024-34447",
         cwe: {
            id: "CWE-706",
            name: "Use of Incorrectly-Resolved Name or Reference",
         },
         notes: [
            {
               category: "other",
               text: "Use of Incorrectly-Resolved Name or Reference",
               title: "CWE-706",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-228157",
               "CSAFPID-271904",
               "CSAFPID-40303",
               "CSAFPID-220164",
               "CSAFPID-94309",
               "CSAFPID-912053",
               "CSAFPID-45194",
               "CSAFPID-3660",
               "CSAFPID-1973",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-34447",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-34447.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-228157",
                  "CSAFPID-271904",
                  "CSAFPID-40303",
                  "CSAFPID-220164",
                  "CSAFPID-94309",
                  "CSAFPID-912053",
                  "CSAFPID-45194",
                  "CSAFPID-3660",
                  "CSAFPID-1973",
               ],
            },
         ],
         title: "CVE-2024-34447",
      },
      {
         cve: "CVE-2024-34750",
         cwe: {
            id: "CWE-755",
            name: "Improper Handling of Exceptional Conditions",
         },
         notes: [
            {
               category: "other",
               text: "Improper Handling of Exceptional Conditions",
               title: "CWE-755",
            },
            {
               category: "other",
               text: "Uncontrolled Resource Consumption",
               title: "CWE-400",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-204581",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-34750",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-34750.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-204581",
               ],
            },
         ],
         title: "CVE-2024-34750",
      },
      {
         cve: "CVE-2024-37370",
         cwe: {
            id: "CWE-130",
            name: "Improper Handling of Length Parameter Inconsistency",
         },
         notes: [
            {
               category: "other",
               text: "Improper Handling of Length Parameter Inconsistency",
               title: "CWE-130",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-199820",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-37370",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-37370.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.1,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-199820",
               ],
            },
         ],
         title: "CVE-2024-37370",
      },
      {
         cve: "CVE-2024-37371",
         cwe: {
            id: "CWE-130",
            name: "Improper Handling of Length Parameter Inconsistency",
         },
         notes: [
            {
               category: "other",
               text: "Improper Handling of Length Parameter Inconsistency",
               title: "CWE-130",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-199820",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-37371",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-37371.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.1,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-199820",
               ],
            },
         ],
         title: "CVE-2024-37371",
      },
      {
         cve: "CVE-2024-38473",
         cwe: {
            id: "CWE-172",
            name: "Encoding Error",
         },
         notes: [
            {
               category: "other",
               text: "Encoding Error",
               title: "CWE-172",
            },
            {
               category: "other",
               text: "Improper Encoding or Escaping of Output",
               title: "CWE-116",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-40303",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38473",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38473.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.1,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-40303",
               ],
            },
         ],
         title: "CVE-2024-38473",
      },
      {
         cve: "CVE-2024-38475",
         cwe: {
            id: "CWE-284",
            name: "Improper Access Control",
         },
         notes: [
            {
               category: "other",
               text: "Improper Access Control",
               title: "CWE-284",
            },
            {
               category: "other",
               text: "Improper Encoding or Escaping of Output",
               title: "CWE-116",
            },
            {
               category: "other",
               text: "Path Traversal: '.../...//'",
               title: "CWE-35",
            },
            {
               category: "other",
               text: "Stack-based Buffer Overflow",
               title: "CWE-121",
            },
            {
               category: "other",
               text: "Heap-based Buffer Overflow",
               title: "CWE-122",
            },
            {
               category: "other",
               text: "Use of Hard-coded Credentials",
               title: "CWE-798",
            },
            {
               category: "other",
               text: "Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)",
               title: "CWE-338",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-40303",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38475",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38475.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.1,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-40303",
               ],
            },
         ],
         title: "CVE-2024-38475",
      },
      {
         cve: "CVE-2024-38816",
         cwe: {
            id: "CWE-22",
            name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
         },
         notes: [
            {
               category: "other",
               text: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
               title: "CWE-22",
            },
            {
               category: "other",
               text: "Relative Path Traversal",
               title: "CWE-23",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-94309",
               "CSAFPID-220164",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38816",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38816.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.1,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-94309",
                  "CSAFPID-220164",
               ],
            },
         ],
         title: "CVE-2024-38816",
      },
      {
         cve: "CVE-2024-38819",
         cwe: {
            id: "CWE-22",
            name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
         },
         notes: [
            {
               category: "other",
               text: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
               title: "CWE-22",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-94309",
               "CSAFPID-220164",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38819",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38819.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-94309",
                  "CSAFPID-220164",
               ],
            },
         ],
         title: "CVE-2024-38819",
      },
      {
         cve: "CVE-2024-38998",
         cwe: {
            id: "CWE-1321",
            name: "Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')",
         },
         notes: [
            {
               category: "other",
               text: "Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')",
               title: "CWE-1321",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-228157",
               "CSAFPID-9642",
               "CSAFPID-226018",
               "CSAFPID-45194",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38998",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38998.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-228157",
                  "CSAFPID-9642",
                  "CSAFPID-226018",
                  "CSAFPID-45194",
               ],
            },
         ],
         title: "CVE-2024-38998",
      },
      {
         cve: "CVE-2024-38999",
         cwe: {
            id: "CWE-1321",
            name: "Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')",
         },
         notes: [
            {
               category: "other",
               text: "Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')",
               title: "CWE-1321",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-9642",
               "CSAFPID-228157",
               "CSAFPID-332789",
               "CSAFPID-342815",
               "CSAFPID-271904",
               "CSAFPID-1674670",
               "CSAFPID-503474",
               "CSAFPID-226018",
               "CSAFPID-45194",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38999",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38999.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 10,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-9642",
                  "CSAFPID-228157",
                  "CSAFPID-332789",
                  "CSAFPID-342815",
                  "CSAFPID-271904",
                  "CSAFPID-1674670",
                  "CSAFPID-503474",
                  "CSAFPID-226018",
                  "CSAFPID-45194",
               ],
            },
         ],
         title: "CVE-2024-38999",
      },
      {
         cve: "CVE-2024-40898",
         cwe: {
            id: "CWE-918",
            name: "Server-Side Request Forgery (SSRF)",
         },
         notes: [
            {
               category: "other",
               text: "Server-Side Request Forgery (SSRF)",
               title: "CWE-918",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-40303",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-40898",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-40898.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.1,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-40303",
               ],
            },
         ],
         title: "CVE-2024-40898",
      },
      {
         cve: "CVE-2024-45490",
         cwe: {
            id: "CWE-190",
            name: "Integer Overflow or Wraparound",
         },
         notes: [
            {
               category: "other",
               text: "Integer Overflow or Wraparound",
               title: "CWE-190",
            },
            {
               category: "other",
               text: "Incorrect Calculation of Buffer Size",
               title: "CWE-131",
            },
            {
               category: "other",
               text: "Improper Restriction of XML External Entity Reference",
               title: "CWE-611",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-912053",
               "CSAFPID-40303",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-45490",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-45490.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-912053",
                  "CSAFPID-40303",
               ],
            },
         ],
         title: "CVE-2024-45490",
      },
      {
         cve: "CVE-2024-45491",
         cwe: {
            id: "CWE-190",
            name: "Integer Overflow or Wraparound",
         },
         notes: [
            {
               category: "other",
               text: "Integer Overflow or Wraparound",
               title: "CWE-190",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-912053",
               "CSAFPID-40303",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-45491",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-45491.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-912053",
                  "CSAFPID-40303",
               ],
            },
         ],
         title: "CVE-2024-45491",
      },
      {
         cve: "CVE-2024-45492",
         cwe: {
            id: "CWE-190",
            name: "Integer Overflow or Wraparound",
         },
         notes: [
            {
               category: "other",
               text: "Integer Overflow or Wraparound",
               title: "CWE-190",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-912053",
               "CSAFPID-332789",
               "CSAFPID-342815",
               "CSAFPID-271904",
               "CSAFPID-1674670",
               "CSAFPID-503474",
               "CSAFPID-40303",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-45492",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-45492.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-912053",
                  "CSAFPID-332789",
                  "CSAFPID-342815",
                  "CSAFPID-271904",
                  "CSAFPID-1674670",
                  "CSAFPID-503474",
                  "CSAFPID-40303",
               ],
            },
         ],
         title: "CVE-2024-45492",
      },
      {
         cve: "CVE-2024-47072",
         cwe: {
            id: "CWE-121",
            name: "Stack-based Buffer Overflow",
         },
         notes: [
            {
               category: "other",
               text: "Stack-based Buffer Overflow",
               title: "CWE-121",
            },
            {
               category: "other",
               text: "Deserialization of Untrusted Data",
               title: "CWE-502",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-228157",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-47072",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-47072.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-228157",
               ],
            },
         ],
         title: "CVE-2024-47072",
      },
      {
         cve: "CVE-2024-47554",
         cwe: {
            id: "CWE-400",
            name: "Uncontrolled Resource Consumption",
         },
         notes: [
            {
               category: "other",
               text: "Uncontrolled Resource Consumption",
               title: "CWE-400",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751293",
               "CSAFPID-45194",
               "CSAFPID-1973",
               "CSAFPID-3660",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-47554",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-47554.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751293",
                  "CSAFPID-45194",
                  "CSAFPID-1973",
                  "CSAFPID-3660",
               ],
            },
         ],
         title: "CVE-2024-47554",
      },
      {
         cve: "CVE-2024-47561",
         cwe: {
            id: "CWE-502",
            name: "Deserialization of Untrusted Data",
         },
         notes: [
            {
               category: "other",
               text: "Deserialization of Untrusted Data",
               title: "CWE-502",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-9642",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-47561",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-47561.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-9642",
               ],
            },
         ],
         title: "CVE-2024-47561",
      },
      {
         cve: "CVE-2025-21498",
         product_status: {
            known_affected: [
               "CSAFPID-40303",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2025-21498",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-21498.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-40303",
               ],
            },
         ],
         title: "CVE-2025-21498",
      },
      {
         cve: "CVE-2025-21535",
         product_status: {
            known_affected: [
               "CSAFPID-3660",
               "CSAFPID-1973",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2025-21535",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-21535.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-3660",
                  "CSAFPID-1973",
               ],
            },
         ],
         title: "CVE-2025-21535",
      },
      {
         cve: "CVE-2025-21549",
         product_status: {
            known_affected: [
               "CSAFPID-1973",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2025-21549",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-21549.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1973",
               ],
            },
         ],
         title: "CVE-2025-21549",
      },
   ],
}

ncsc-2025-0025

Vulnerability from csaf_ncscnl

Published

2025-01-22 13:33

Modified

2025-01-22 13:33

Summary

Kwetsbaarheden verholpen in Oracle Financial Services

Notes

Feiten

Oracle heeft meerdere kwetsbaarheden verholpen in Financial Services en componenten.

Interpretaties

De kwetsbaarheden stellen ongeauthenticeerde aanvallers in staat om toegang te krijgen tot kritieke gegevens en de systeemintegriteit in gevaar te brengen. Specifieke kwetsbaarheden kunnen leiden tot compromittering van vertrouwelijkheid, integriteit en beschikbaarheid, met schadeclassificaties variërend van gemiddeld tot hoog. Sommige kwetsbaarheden kunnen op afstand worden uitgebuit zonder gebruikersinteractie, wat het risico op privilege-escalatie en denial-of-service vergroot.

Oplossingen

Oracle heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.

Kans

medium

Schade

high

CWE-681

Incorrect Conversion between Numeric Types

CWE-20

Improper Input Validation

CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CWE-131

Incorrect Calculation of Buffer Size

CWE-178

Improper Handling of Case Sensitivity

CWE-284

Improper Access Control

CWE-1321

Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

CWE-611

Improper Restriction of XML External Entity Reference

CWE-670

Always-Incorrect Control Flow Implementation

CWE-192

Integer Coercion Error

CWE-676

Use of Potentially Dangerous Function

CWE-222

Truncation of Security-relevant Information

CWE-755

Improper Handling of Exceptional Conditions

CWE-704

Incorrect Type Conversion or Cast

CWE-680

Integer Overflow to Buffer Overflow

CWE-426

Untrusted Search Path

CWE-354

Improper Validation of Integrity Check Value

CWE-190

Integer Overflow or Wraparound

CWE-532

Insertion of Sensitive Information into Log File

CWE-639

Authorization Bypass Through User-Controlled Key

CWE-757

Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')

CWE-400

Uncontrolled Resource Consumption

CWE-502

Deserialization of Untrusted Data

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

CWE-121

Stack-based Buffer Overflow

CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

JSON

To clipboard

{
   document: {
      category: "csaf_security_advisory",
      csaf_version: "2.0",
      distribution: {
         tlp: {
            label: "WHITE",
         },
      },
      lang: "nl",
      notes: [
         {
            category: "legal_disclaimer",
            text: "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n    NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n    NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n    This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.",
         },
         {
            category: "description",
            text: "Oracle heeft meerdere kwetsbaarheden verholpen in Financial Services en componenten.",
            title: "Feiten",
         },
         {
            category: "description",
            text: "De kwetsbaarheden stellen ongeauthenticeerde aanvallers in staat om toegang te krijgen tot kritieke gegevens en de systeemintegriteit in gevaar te brengen. Specifieke kwetsbaarheden kunnen leiden tot compromittering van vertrouwelijkheid, integriteit en beschikbaarheid, met schadeclassificaties variërend van gemiddeld tot hoog. Sommige kwetsbaarheden kunnen op afstand worden uitgebuit zonder gebruikersinteractie, wat het risico op privilege-escalatie en denial-of-service vergroot.",
            title: "Interpretaties",
         },
         {
            category: "description",
            text: "Oracle heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
            title: "Oplossingen",
         },
         {
            category: "general",
            text: "medium",
            title: "Kans",
         },
         {
            category: "general",
            text: "high",
            title: "Schade",
         },
         {
            category: "general",
            text: "Incorrect Conversion between Numeric Types",
            title: "CWE-681",
         },
         {
            category: "general",
            text: "Improper Input Validation",
            title: "CWE-20",
         },
         {
            category: "general",
            text: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
            title: "CWE-79",
         },
         {
            category: "general",
            text: "Incorrect Calculation of Buffer Size",
            title: "CWE-131",
         },
         {
            category: "general",
            text: "Improper Handling of Case Sensitivity",
            title: "CWE-178",
         },
         {
            category: "general",
            text: "Improper Access Control",
            title: "CWE-284",
         },
         {
            category: "general",
            text: "Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')",
            title: "CWE-1321",
         },
         {
            category: "general",
            text: "Improper Restriction of XML External Entity Reference",
            title: "CWE-611",
         },
         {
            category: "general",
            text: "Always-Incorrect Control Flow Implementation",
            title: "CWE-670",
         },
         {
            category: "general",
            text: "Integer Coercion Error",
            title: "CWE-192",
         },
         {
            category: "general",
            text: "Use of Potentially Dangerous Function",
            title: "CWE-676",
         },
         {
            category: "general",
            text: "Truncation of Security-relevant Information",
            title: "CWE-222",
         },
         {
            category: "general",
            text: "Improper Handling of Exceptional Conditions",
            title: "CWE-755",
         },
         {
            category: "general",
            text: "Incorrect Type Conversion or Cast",
            title: "CWE-704",
         },
         {
            category: "general",
            text: "Integer Overflow to Buffer Overflow",
            title: "CWE-680",
         },
         {
            category: "general",
            text: "Untrusted Search Path",
            title: "CWE-426",
         },
         {
            category: "general",
            text: "Improper Validation of Integrity Check Value",
            title: "CWE-354",
         },
         {
            category: "general",
            text: "Integer Overflow or Wraparound",
            title: "CWE-190",
         },
         {
            category: "general",
            text: "Insertion of Sensitive Information into Log File",
            title: "CWE-532",
         },
         {
            category: "general",
            text: "Authorization Bypass Through User-Controlled Key",
            title: "CWE-639",
         },
         {
            category: "general",
            text: "Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')",
            title: "CWE-757",
         },
         {
            category: "general",
            text: "Uncontrolled Resource Consumption",
            title: "CWE-400",
         },
         {
            category: "general",
            text: "Deserialization of Untrusted Data",
            title: "CWE-502",
         },
         {
            category: "general",
            text: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
            title: "CWE-22",
         },
         {
            category: "general",
            text: "Exposure of Sensitive Information to an Unauthorized Actor",
            title: "CWE-200",
         },
         {
            category: "general",
            text: "Stack-based Buffer Overflow",
            title: "CWE-121",
         },
         {
            category: "general",
            text: "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')",
            title: "CWE-120",
         },
      ],
      publisher: {
         category: "coordinator",
         contact_details: "cert@ncsc.nl",
         name: "Nationaal Cyber Security Centrum",
         namespace: "https://www.ncsc.nl/",
      },
      references: [
         {
            category: "external",
            summary: "Reference - cveprojectv5; nvd; oracle",
            url: "https://www.oracle.com/security-alerts/cpujan2025.html",
         },
      ],
      title: "Kwetsbaarheden verholpen in Oracle Financial Services",
      tracking: {
         current_release_date: "2025-01-22T13:33:00.723963Z",
         id: "NCSC-2025-0025",
         initial_release_date: "2025-01-22T13:33:00.723963Z",
         revision_history: [
            {
               date: "2025-01-22T13:33:00.723963Z",
               number: "0",
               summary: "Initiele versie",
            },
         ],
         status: "final",
         version: "1.0.0",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  category: "product_name",
                  name: "financial_services_analytical_applications_infrastructure",
                  product: {
                     name: "financial_services_analytical_applications_infrastructure",
                     product_id: "CSAFPID-342808",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_analytical_applications_infrastructure",
                  product: {
                     name: "financial_services_analytical_applications_infrastructure",
                     product_id: "CSAFPID-345045",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.7.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_analytical_applications_infrastructure",
                  product: {
                     name: "financial_services_analytical_applications_infrastructure",
                     product_id: "CSAFPID-1751072",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.7.8:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_analytical_applications_infrastructure",
                  product: {
                     name: "financial_services_analytical_applications_infrastructure",
                     product_id: "CSAFPID-9711",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.7:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_analytical_applications_infrastructure",
                  product: {
                     name: "financial_services_analytical_applications_infrastructure",
                     product_id: "CSAFPID-345044",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.8.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_analytical_applications_infrastructure",
                  product: {
                     name: "financial_services_analytical_applications_infrastructure",
                     product_id: "CSAFPID-1751083",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.8.6:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_analytical_applications_infrastructure",
                  product: {
                     name: "financial_services_analytical_applications_infrastructure",
                     product_id: "CSAFPID-9300",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.8:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_analytical_applications_infrastructure",
                  product: {
                     name: "financial_services_analytical_applications_infrastructure",
                     product_id: "CSAFPID-345043",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.9.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_analytical_applications_infrastructure",
                  product: {
                     name: "financial_services_analytical_applications_infrastructure",
                     product_id: "CSAFPID-9522",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.9:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_analytical_applications_infrastructure",
                  product: {
                     name: "financial_services_analytical_applications_infrastructure",
                     product_id: "CSAFPID-345042",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.1.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_analytical_applications_infrastructure",
                  product: {
                     name: "financial_services_analytical_applications_infrastructure",
                     product_id: "CSAFPID-8848",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_analytical_applications_infrastructure",
                  product: {
                     name: "financial_services_analytical_applications_infrastructure",
                     product_id: "CSAFPID-93309",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.1.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_analytical_applications_infrastructure",
                  product: {
                     name: "financial_services_analytical_applications_infrastructure",
                     product_id: "CSAFPID-189066",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.1.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_analytical_applications_infrastructure",
                  product: {
                     name: "financial_services_analytical_applications_infrastructure",
                     product_id: "CSAFPID-93305",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.1.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_analytical_applications_infrastructure",
                  product: {
                     name: "financial_services_analytical_applications_infrastructure",
                     product_id: "CSAFPID-189064",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.1.2.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_analytical_applications_infrastructure",
                  product: {
                     name: "financial_services_analytical_applications_infrastructure",
                     product_id: "CSAFPID-189063",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.1.2.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_analytical_applications_infrastructure",
                  product: {
                     name: "financial_services_analytical_applications_infrastructure",
                     product_id: "CSAFPID-1751078",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.1.2.5:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_analytical_applications_infrastructure",
                  product: {
                     name: "financial_services_analytical_applications_infrastructure",
                     product_id: "CSAFPID-189065",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.1.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_analytical_applications_reconciliation_framework",
                  product: {
                     name: "financial_services_analytical_applications_reconciliation_framework",
                     product_id: "CSAFPID-363146",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_analytical_applications_reconciliation_framework:8.0.7.1.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_analytical_applications_reconciliation_framework",
                  product: {
                     name: "financial_services_analytical_applications_reconciliation_framework",
                     product_id: "CSAFPID-363129",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_analytical_applications_reconciliation_framework:8.1.1.1.7:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_asset_liability_management",
                  product: {
                     name: "financial_services_asset_liability_management",
                     product_id: "CSAFPID-363142",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_asset_liability_management:8.0.7.8.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_balance_computation_engine",
                  product: {
                     name: "financial_services_balance_computation_engine",
                     product_id: "CSAFPID-363130",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_balance_computation_engine:8.1.1.1.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_balance_sheet_planning",
                  product: {
                     name: "financial_services_balance_sheet_planning",
                     product_id: "CSAFPID-363135",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_balance_sheet_planning:8.0.8.1.4:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_basel_regulatory_capital_basic",
                  product: {
                     name: "financial_services_basel_regulatory_capital_basic",
                     product_id: "CSAFPID-1503626",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_basic:8.0.7.3:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_basel_regulatory_capital_basic",
                  product: {
                     name: "financial_services_basel_regulatory_capital_basic",
                     product_id: "CSAFPID-1503627",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_basic:8.0.8.3:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_basel_regulatory_capital_internal_ratings_based_approach",
                  product: {
                     name: "financial_services_basel_regulatory_capital_internal_ratings_based_approach",
                     product_id: "CSAFPID-1503628",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_internal_ratings_based_approach:8.0.7.3:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_basel_regulatory_capital_internal_ratings_based_approach",
                  product: {
                     name: "financial_services_basel_regulatory_capital_internal_ratings_based_approach",
                     product_id: "CSAFPID-1503629",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_internal_ratings_based_approach:8.0.8.3:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_behavior_detection_platform",
                  product: {
                     name: "financial_services_behavior_detection_platform",
                     product_id: "CSAFPID-765261",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_behavior_detection_platform:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_behavior_detection_platform",
                  product: {
                     name: "financial_services_behavior_detection_platform",
                     product_id: "CSAFPID-93312",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.0.7.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_behavior_detection_platform",
                  product: {
                     name: "financial_services_behavior_detection_platform",
                     product_id: "CSAFPID-220456",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.0.7.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_behavior_detection_platform",
                  product: {
                     name: "financial_services_behavior_detection_platform",
                     product_id: "CSAFPID-93311",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.0.8.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_behavior_detection_platform",
                  product: {
                     name: "financial_services_behavior_detection_platform",
                     product_id: "CSAFPID-189067",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.0.8.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_behavior_detection_platform",
                  product: {
                     name: "financial_services_behavior_detection_platform",
                     product_id: "CSAFPID-93308",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.1.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_behavior_detection_platform",
                  product: {
                     name: "financial_services_behavior_detection_platform",
                     product_id: "CSAFPID-93307",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.1.1.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_behavior_detection_platform",
                  product: {
                     name: "financial_services_behavior_detection_platform",
                     product_id: "CSAFPID-93306",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.1.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_behavior_detection_platform",
                  product: {
                     name: "financial_services_behavior_detection_platform",
                     product_id: "CSAFPID-220368",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.1.2.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_behavior_detection_platform",
                  product: {
                     name: "financial_services_behavior_detection_platform",
                     product_id: "CSAFPID-220449",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.1.2.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_behavior_detection_platform",
                  product: {
                     name: "financial_services_behavior_detection_platform",
                     product_id: "CSAFPID-345041",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.1.2.3:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_behavior_detection_platform",
                  product: {
                     name: "financial_services_behavior_detection_platform",
                     product_id: "CSAFPID-219772",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.1.2.4:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_behavior_detection_platform",
                  product: {
                     name: "financial_services_behavior_detection_platform",
                     product_id: "CSAFPID-219770",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.1.2.5:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_behavior_detection_platform",
                  product: {
                     name: "financial_services_behavior_detection_platform",
                     product_id: "CSAFPID-816828",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.1.2.6:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_behavior_detection_platform",
                  product: {
                     name: "financial_services_behavior_detection_platform",
                     product_id: "CSAFPID-1503630",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.1.2.7:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_behavior_detection_platform",
                  product: {
                     name: "financial_services_behavior_detection_platform",
                     product_id: "CSAFPID-1751074",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.1.2.8:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_cash_flow_engine",
                  product: {
                     name: "financial_services_cash_flow_engine",
                     product_id: "CSAFPID-764273",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_cash_flow_engine:8.1.2.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_compliance_studio",
                  product: {
                     name: "financial_services_compliance_studio",
                     product_id: "CSAFPID-345047",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_compliance_studio:8.1.2.4:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_compliance_studio",
                  product: {
                     name: "financial_services_compliance_studio",
                     product_id: "CSAFPID-816829",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_compliance_studio:8.1.2.5:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_compliance_studio",
                  product: {
                     name: "financial_services_compliance_studio",
                     product_id: "CSAFPID-1503631",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_compliance_studio:8.1.2.6:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_compliance_studio",
                  product: {
                     name: "financial_services_compliance_studio",
                     product_id: "CSAFPID-1503632",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_compliance_studio:8.1.2.7:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_crime_and_compliance_management_studio",
                  product: {
                     name: "financial_services_crime_and_compliance_management_studio",
                     product_id: "CSAFPID-93648",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_crime_and_compliance_management_studio:8.0.8.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_crime_and_compliance_management_studio",
                  product: {
                     name: "financial_services_crime_and_compliance_management_studio",
                     product_id: "CSAFPID-93647",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_crime_and_compliance_management_studio:8.0.8.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_crime_and_compliance_management_studio",
                  product: {
                     name: "financial_services_crime_and_compliance_management_studio",
                     product_id: "CSAFPID-764857",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_crime_and_compliance_management_studio:8.0.8.3.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_crime_and_compliance_management_studio",
                  product: {
                     name: "financial_services_crime_and_compliance_management_studio",
                     product_id: "CSAFPID-391382",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_crime_and_compliance_management_studio:8.0.8.3.5:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_crime_and_compliance_management_studio",
                  product: {
                     name: "financial_services_crime_and_compliance_management_studio",
                     product_id: "CSAFPID-765262",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_crime_and_compliance_management_studio:_studio___8.0.8.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_crime_and_compliance_management_studio",
                  product: {
                     name: "financial_services_crime_and_compliance_management_studio",
                     product_id: "CSAFPID-765263",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_crime_and_compliance_management_studio:_studio___8.0.8.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_currency_transaction_reporting",
                  product: {
                     name: "financial_services_currency_transaction_reporting",
                     product_id: "CSAFPID-493291",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_currency_transaction_reporting:8.0.8.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_currency_transaction_reporting",
                  product: {
                     name: "financial_services_currency_transaction_reporting",
                     product_id: "CSAFPID-493290",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_currency_transaction_reporting:8.1.1.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_currency_transaction_reporting",
                  product: {
                     name: "financial_services_currency_transaction_reporting",
                     product_id: "CSAFPID-493289",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_currency_transaction_reporting:8.1.2.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_currency_transaction_reporting",
                  product: {
                     name: "financial_services_currency_transaction_reporting",
                     product_id: "CSAFPID-493288",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_currency_transaction_reporting:8.1.2.4.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_data_governance_for_us_regulatory_reporting",
                  product: {
                     name: "financial_services_data_governance_for_us_regulatory_reporting",
                     product_id: "CSAFPID-363128",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_data_governance_for_us_regulatory_reporting:8.1.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_data_governance_for_us_regulatory_reporting",
                  product: {
                     name: "financial_services_data_governance_for_us_regulatory_reporting",
                     product_id: "CSAFPID-363127",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_data_governance_for_us_regulatory_reporting:8.1.2.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_data_integration_hub",
                  product: {
                     name: "financial_services_data_integration_hub",
                     product_id: "CSAFPID-363144",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_data_integration_hub:8.0.7.3.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_data_integration_hub",
                  product: {
                     name: "financial_services_data_integration_hub",
                     product_id: "CSAFPID-363131",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_data_integration_hub:8.1.0.1.4:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_data_integration_hub",
                  product: {
                     name: "financial_services_data_integration_hub",
                     product_id: "CSAFPID-363126",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_data_integration_hub:8.1.2.2.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_deposit_insurance_calculations_for_liquidity_risk_management",
                  product: {
                     name: "financial_services_deposit_insurance_calculations_for_liquidity_risk_management",
                     product_id: "CSAFPID-363143",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_deposit_insurance_calculations_for_liquidity_risk_management:8.0.7.3.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_deposit_insurance_calculations_for_liquidity_risk_management",
                  product: {
                     name: "financial_services_deposit_insurance_calculations_for_liquidity_risk_management",
                     product_id: "CSAFPID-363133",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_deposit_insurance_calculations_for_liquidity_risk_management:8.0.8.3.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_enterprise_case_management",
                  product: {
                     name: "financial_services_enterprise_case_management",
                     product_id: "CSAFPID-567702",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_enterprise_case_management:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_enterprise_case_management",
                  product: {
                     name: "financial_services_enterprise_case_management",
                     product_id: "CSAFPID-220378",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.0.7.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_enterprise_case_management",
                  product: {
                     name: "financial_services_enterprise_case_management",
                     product_id: "CSAFPID-220377",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.0.7.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_enterprise_case_management",
                  product: {
                     name: "financial_services_enterprise_case_management",
                     product_id: "CSAFPID-220455",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.0.7.3:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_enterprise_case_management",
                  product: {
                     name: "financial_services_enterprise_case_management",
                     product_id: "CSAFPID-220607",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.0.8.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_enterprise_case_management",
                  product: {
                     name: "financial_services_enterprise_case_management",
                     product_id: "CSAFPID-220372",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.0.8.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_enterprise_case_management",
                  product: {
                     name: "financial_services_enterprise_case_management",
                     product_id: "CSAFPID-1503633",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.0.8.2.8:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_enterprise_case_management",
                  product: {
                     name: "financial_services_enterprise_case_management",
                     product_id: "CSAFPID-219774",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.0.8.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_enterprise_case_management",
                  product: {
                     name: "financial_services_enterprise_case_management",
                     product_id: "CSAFPID-180191",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.1.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_enterprise_case_management",
                  product: {
                     name: "financial_services_enterprise_case_management",
                     product_id: "CSAFPID-1503634",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.1.1.1.18:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_enterprise_case_management",
                  product: {
                     name: "financial_services_enterprise_case_management",
                     product_id: "CSAFPID-180190",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.1.1.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_enterprise_case_management",
                  product: {
                     name: "financial_services_enterprise_case_management",
                     product_id: "CSAFPID-180189",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.1.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_enterprise_case_management",
                  product: {
                     name: "financial_services_enterprise_case_management",
                     product_id: "CSAFPID-220369",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.1.2.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_enterprise_case_management",
                  product: {
                     name: "financial_services_enterprise_case_management",
                     product_id: "CSAFPID-220448",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.1.2.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_enterprise_case_management",
                  product: {
                     name: "financial_services_enterprise_case_management",
                     product_id: "CSAFPID-345040",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.1.2.3:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_enterprise_case_management",
                  product: {
                     name: "financial_services_enterprise_case_management",
                     product_id: "CSAFPID-219773",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.1.2.4:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_enterprise_case_management",
                  product: {
                     name: "financial_services_enterprise_case_management",
                     product_id: "CSAFPID-219771",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.1.2.5:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_enterprise_case_management",
                  product: {
                     name: "financial_services_enterprise_case_management",
                     product_id: "CSAFPID-1503635",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.1.2.6.4:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_enterprise_case_management",
                  product: {
                     name: "financial_services_enterprise_case_management",
                     product_id: "CSAFPID-816830",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.1.2.6:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_enterprise_case_management",
                  product: {
                     name: "financial_services_enterprise_case_management",
                     product_id: "CSAFPID-1503636",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.1.2.7.3:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_enterprise_financial_performance_analytics",
                  product: {
                     name: "financial_services_enterprise_financial_performance_analytics",
                     product_id: "CSAFPID-363141",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_enterprise_financial_performance_analytics:8.0.7.8.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_funds_transfer_pricing",
                  product: {
                     name: "financial_services_funds_transfer_pricing",
                     product_id: "CSAFPID-363138",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_funds_transfer_pricing:8.0.7.8.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_institutional_performance_analytics",
                  product: {
                     name: "financial_services_institutional_performance_analytics",
                     product_id: "CSAFPID-363136",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_institutional_performance_analytics:8.0.7.8.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_lending_and_leasing",
                  product: {
                     name: "financial_services_lending_and_leasing",
                     product_id: "CSAFPID-816831",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_lending_and_leasing:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_liquidity_risk_measurement_and_management",
                  product: {
                     name: "financial_services_liquidity_risk_measurement_and_management",
                     product_id: "CSAFPID-363145",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_liquidity_risk_measurement_and_management:8.0.7.3.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_liquidity_risk_measurement_and_management",
                  product: {
                     name: "financial_services_liquidity_risk_measurement_and_management",
                     product_id: "CSAFPID-363132",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_liquidity_risk_measurement_and_management:8.0.8.3.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_loan_loss_forecasting_and_provisioning",
                  product: {
                     name: "financial_services_loan_loss_forecasting_and_provisioning",
                     product_id: "CSAFPID-363140",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_loan_loss_forecasting_and_provisioning:8.0.7.8.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_loan_loss_forecasting_and_provisioning",
                  product: {
                     name: "financial_services_loan_loss_forecasting_and_provisioning",
                     product_id: "CSAFPID-363134",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_loan_loss_forecasting_and_provisioning:8.0.8.2.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_model_management_and_governance",
                  product: {
                     name: "financial_services_model_management_and_governance",
                     product_id: "CSAFPID-764923",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_model_management_and_governance:8.0.8.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_model_management_and_governance",
                  product: {
                     name: "financial_services_model_management_and_governance",
                     product_id: "CSAFPID-396508",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_model_management_and_governance:8.1.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_model_management_and_governance",
                  product: {
                     name: "financial_services_model_management_and_governance",
                     product_id: "CSAFPID-764924",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_model_management_and_governance:8.1.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_model_management_and_governance",
                  product: {
                     name: "financial_services_model_management_and_governance",
                     product_id: "CSAFPID-396507",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_model_management_and_governance:8.1.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_model_management_and_governance",
                  product: {
                     name: "financial_services_model_management_and_governance",
                     product_id: "CSAFPID-611392",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_model_management_and_governance:8.1.2.3:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_model_management_and_governance",
                  product: {
                     name: "financial_services_model_management_and_governance",
                     product_id: "CSAFPID-611391",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_model_management_and_governance:8.1.2.4:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_model_management_and_governance",
                  product: {
                     name: "financial_services_model_management_and_governance",
                     product_id: "CSAFPID-1503319",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_model_management_and_governance:8.1.2.5:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_model_management_and_governance",
                  product: {
                     name: "financial_services_model_management_and_governance",
                     product_id: "CSAFPID-1503318",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_model_management_and_governance:8.1.2.6:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_model_management_and_governance",
                  product: {
                     name: "financial_services_model_management_and_governance",
                     product_id: "CSAFPID-1751202",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_model_management_and_governance:8.1.2.7:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_model_management_and_governance",
                  product: {
                     name: "financial_services_model_management_and_governance",
                     product_id: "CSAFPID-1751086",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_model_management_and_governance:8.1.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_profitability_management",
                  product: {
                     name: "financial_services_profitability_management",
                     product_id: "CSAFPID-363139",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_profitability_management:8.0.7.8.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_regulatory_reporting",
                  product: {
                     name: "financial_services_regulatory_reporting",
                     product_id: "CSAFPID-570314",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_regulatory_reporting:8.0.8.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_regulatory_reporting",
                  product: {
                     name: "financial_services_regulatory_reporting",
                     product_id: "CSAFPID-570313",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_regulatory_reporting:8.1.1.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_regulatory_reporting",
                  product: {
                     name: "financial_services_regulatory_reporting",
                     product_id: "CSAFPID-570312",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_regulatory_reporting:8.1.2.3:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_regulatory_reporting",
                  product: {
                     name: "financial_services_regulatory_reporting",
                     product_id: "CSAFPID-570311",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_regulatory_reporting:8.1.2.4:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_regulatory_reporting",
                  product: {
                     name: "financial_services_regulatory_reporting",
                     product_id: "CSAFPID-1751214",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_regulatory_reporting:8.1.2.7:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_regulatory_reporting",
                  product: {
                     name: "financial_services_regulatory_reporting",
                     product_id: "CSAFPID-1751213",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_regulatory_reporting:8.1.2.8:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_regulatory_reporting_with_agilereporter",
                  product: {
                     name: "financial_services_regulatory_reporting_with_agilereporter",
                     product_id: "CSAFPID-611433",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_regulatory_reporting_with_agilereporter:8.1.1.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_retail_performance_analytics",
                  product: {
                     name: "financial_services_retail_performance_analytics",
                     product_id: "CSAFPID-363137",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_retail_performance_analytics:8.0.7.8.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-765266",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-344846",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:2.7.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-219833",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:2.7:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-912589",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:2.8.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-816832",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:2.8.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-219832",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:2.8:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-1751215",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:2.9.0.0.0-7.0.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-765264",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:2.9.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-765265",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:2.9.0.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-816834",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:2.9.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-344845",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:2.9.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-219831",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:2.9:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-400311",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:3.0.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-816835",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:3.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-219830",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-912590",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:3.1.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-816836",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:3.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-219829",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:3.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-400309",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:3.2.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-816837",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:3.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-219828",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:3.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-400307",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:4.0.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-912591",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:4.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-816838",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:4.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-219827",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-912592",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:5.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-816839",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:5.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-816841",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:5.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-1503637",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:6.0.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-816842",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:6.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-1503638",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:6.1.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-816833",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:_pricing_services___2.9.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_revenue_management_and_billing",
                  product: {
                     name: "financial_services_revenue_management_and_billing",
                     product_id: "CSAFPID-816840",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_revenue_management_and_billing:_security___5.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_trade-based_anti_money_laundering",
                  product: {
                     name: "financial_services_trade-based_anti_money_laundering",
                     product_id: "CSAFPID-1751087",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_trade-based_anti_money_laundering:8.0.8:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_trade-based_anti_money_laundering",
                  product: {
                     name: "financial_services_trade-based_anti_money_laundering",
                     product_id: "CSAFPID-220375",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_trade-based_anti_money_laundering:8.0.8:*:*:*:enterprise:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_trade-based_anti_money_laundering_enterprise_edition",
                  product: {
                     name: "financial_services_trade-based_anti_money_laundering_enterprise_edition",
                     product_id: "CSAFPID-764925",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_trade-based_anti_money_laundering_enterprise_edition:8.0.7.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_trade-based_anti_money_laundering_enterprise_edition",
                  product: {
                     name: "financial_services_trade-based_anti_money_laundering_enterprise_edition",
                     product_id: "CSAFPID-764796",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_trade-based_anti_money_laundering_enterprise_edition:8.0.8.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_trade-based_anti_money_laundering_enterprise_edition",
                  product: {
                     name: "financial_services_trade-based_anti_money_laundering_enterprise_edition",
                     product_id: "CSAFPID-764926",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_trade-based_anti_money_laundering_enterprise_edition:8.0.8.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "financial_services_trade-based_anti_money_laundering_enterprise_edition",
                  product: {
                     name: "financial_services_trade-based_anti_money_laundering_enterprise_edition",
                     product_id: "CSAFPID-220374",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:financial_services_trade-based_anti_money_laundering_enterprise_edition:8.0.8:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "banking_liquidity_management",
                  product: {
                     name: "banking_liquidity_management",
                     product_id: "CSAFPID-764262",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:banking_liquidity_management:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "banking_liquidity_management",
                  product: {
                     name: "banking_liquidity_management",
                     product_id: "CSAFPID-180213",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:banking_liquidity_management:14.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "banking_liquidity_management",
                  product: {
                     name: "banking_liquidity_management",
                     product_id: "CSAFPID-180207",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:banking_liquidity_management:14.5:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "banking_liquidity_management",
                  product: {
                     name: "banking_liquidity_management",
                     product_id: "CSAFPID-912094",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:banking_liquidity_management:14.5.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "banking_liquidity_management",
                  product: {
                     name: "banking_liquidity_management",
                     product_id: "CSAFPID-912093",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:banking_liquidity_management:14.6.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "banking_liquidity_management",
                  product: {
                     name: "banking_liquidity_management",
                     product_id: "CSAFPID-912092",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:banking_liquidity_management:14.7.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "banking_liquidity_management",
                  product: {
                     name: "banking_liquidity_management",
                     product_id: "CSAFPID-816824",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:banking_liquidity_management:14.7.0.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "banking_liquidity_management",
                  product: {
                     name: "banking_liquidity_management",
                     product_id: "CSAFPID-1673499",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:banking_liquidity_management:14.7.5.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "banking_origination",
                  product: {
                     name: "banking_origination",
                     product_id: "CSAFPID-764263",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:banking_origination:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "banking_origination",
                  product: {
                     name: "banking_origination",
                     product_id: "CSAFPID-180208",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:banking_origination:14.5:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "banking_origination",
                  product: {
                     name: "banking_origination",
                     product_id: "CSAFPID-1751207",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:banking_origination:14.5.0.0.0-14.7.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "banking_origination",
                  product: {
                     name: "banking_origination",
                     product_id: "CSAFPID-912064",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:banking_origination:14.5.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "banking_origination",
                  product: {
                     name: "banking_origination",
                     product_id: "CSAFPID-912063",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:banking_origination:14.6.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "banking_origination",
                  product: {
                     name: "banking_origination",
                     product_id: "CSAFPID-912062",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:banking_origination:14.7.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "banking_corporate_lending_process_management",
                  product: {
                     name: "banking_corporate_lending_process_management",
                     product_id: "CSAFPID-764259",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:banking_corporate_lending_process_management:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "banking_corporate_lending_process_management",
                  product: {
                     name: "banking_corporate_lending_process_management",
                     product_id: "CSAFPID-1751206",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:banking_corporate_lending_process_management:14.4.0.0.0-14.7.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "banking_corporate_lending_process_management",
                  product: {
                     name: "banking_corporate_lending_process_management",
                     product_id: "CSAFPID-1503614",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:banking_corporate_lending_process_management:14.4.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "banking_corporate_lending_process_management",
                  product: {
                     name: "banking_corporate_lending_process_management",
                     product_id: "CSAFPID-180204",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:banking_corporate_lending_process_management:14.5:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "banking_corporate_lending_process_management",
                  product: {
                     name: "banking_corporate_lending_process_management",
                     product_id: "CSAFPID-1503615",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:banking_corporate_lending_process_management:14.5.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "banking_corporate_lending_process_management",
                  product: {
                     name: "banking_corporate_lending_process_management",
                     product_id: "CSAFPID-1503616",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:banking_corporate_lending_process_management:14.6.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "banking_corporate_lending_process_management",
                  product: {
                     name: "banking_corporate_lending_process_management",
                     product_id: "CSAFPID-1503617",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:banking_corporate_lending_process_management:14.7.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
            ],
            category: "vendor",
            name: "oracle",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2022-34169",
         cwe: {
            id: "CWE-192",
            name: "Integer Coercion Error",
         },
         notes: [
            {
               category: "other",
               text: "Integer Coercion Error",
               title: "CWE-192",
            },
            {
               category: "other",
               text: "Incorrect Conversion between Numeric Types",
               title: "CWE-681",
            },
            {
               category: "other",
               text: "Incorrect Type Conversion or Cast",
               title: "CWE-704",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-219827",
               "CSAFPID-219828",
               "CSAFPID-219829",
               "CSAFPID-219830",
               "CSAFPID-344845",
               "CSAFPID-219831",
               "CSAFPID-219832",
               "CSAFPID-344846",
               "CSAFPID-219833",
               "CSAFPID-764259",
               "CSAFPID-345045",
               "CSAFPID-345044",
               "CSAFPID-345043",
               "CSAFPID-345042",
               "CSAFPID-93309",
               "CSAFPID-93305",
               "CSAFPID-189064",
               "CSAFPID-189063",
               "CSAFPID-363146",
               "CSAFPID-363129",
               "CSAFPID-363142",
               "CSAFPID-363130",
               "CSAFPID-363135",
               "CSAFPID-189067",
               "CSAFPID-93307",
               "CSAFPID-345041",
               "CSAFPID-219772",
               "CSAFPID-345047",
               "CSAFPID-391382",
               "CSAFPID-493291",
               "CSAFPID-493290",
               "CSAFPID-493289",
               "CSAFPID-493288",
               "CSAFPID-363128",
               "CSAFPID-363127",
               "CSAFPID-363144",
               "CSAFPID-363131",
               "CSAFPID-363126",
               "CSAFPID-363143",
               "CSAFPID-363133",
               "CSAFPID-219774",
               "CSAFPID-180190",
               "CSAFPID-345040",
               "CSAFPID-219773",
               "CSAFPID-363141",
               "CSAFPID-363138",
               "CSAFPID-363136",
               "CSAFPID-363145",
               "CSAFPID-363132",
               "CSAFPID-363140",
               "CSAFPID-363134",
               "CSAFPID-396508",
               "CSAFPID-396507",
               "CSAFPID-363139",
               "CSAFPID-570314",
               "CSAFPID-570313",
               "CSAFPID-570312",
               "CSAFPID-570311",
               "CSAFPID-611433",
               "CSAFPID-363137",
               "CSAFPID-764796",
               "CSAFPID-764857",
               "CSAFPID-342808",
               "CSAFPID-220456",
               "CSAFPID-93308",
               "CSAFPID-93306",
               "CSAFPID-220368",
               "CSAFPID-220449",
               "CSAFPID-220455",
               "CSAFPID-180191",
               "CSAFPID-180189",
               "CSAFPID-220369",
               "CSAFPID-220448",
               "CSAFPID-764923",
               "CSAFPID-764924",
               "CSAFPID-764925",
               "CSAFPID-764926",
               "CSAFPID-764262",
               "CSAFPID-816824",
               "CSAFPID-764263",
               "CSAFPID-9711",
               "CSAFPID-9300",
               "CSAFPID-9522",
               "CSAFPID-180204",
               "CSAFPID-180213",
               "CSAFPID-180207",
               "CSAFPID-180208",
               "CSAFPID-93312",
               "CSAFPID-93311",
               "CSAFPID-765261",
               "CSAFPID-765262",
               "CSAFPID-93648",
               "CSAFPID-765263",
               "CSAFPID-93647",
               "CSAFPID-220378",
               "CSAFPID-220377",
               "CSAFPID-220607",
               "CSAFPID-220372",
               "CSAFPID-567702",
               "CSAFPID-765264",
               "CSAFPID-765265",
               "CSAFPID-765266",
               "CSAFPID-400307",
               "CSAFPID-8848",
               "CSAFPID-189066",
               "CSAFPID-189065",
               "CSAFPID-219770",
               "CSAFPID-816828",
               "CSAFPID-816829",
               "CSAFPID-219771",
               "CSAFPID-816830",
               "CSAFPID-816831",
               "CSAFPID-816832",
               "CSAFPID-816833",
               "CSAFPID-816834",
               "CSAFPID-816835",
               "CSAFPID-816836",
               "CSAFPID-816837",
               "CSAFPID-816838",
               "CSAFPID-816839",
               "CSAFPID-816840",
               "CSAFPID-816841",
               "CSAFPID-816842",
               "CSAFPID-220374",
               "CSAFPID-912094",
               "CSAFPID-912093",
               "CSAFPID-912092",
               "CSAFPID-912064",
               "CSAFPID-912063",
               "CSAFPID-912062",
               "CSAFPID-912589",
               "CSAFPID-400311",
               "CSAFPID-912590",
               "CSAFPID-400309",
               "CSAFPID-912591",
               "CSAFPID-912592",
               "CSAFPID-1503614",
               "CSAFPID-1503615",
               "CSAFPID-1503616",
               "CSAFPID-1503617",
               "CSAFPID-1503626",
               "CSAFPID-1503627",
               "CSAFPID-1503628",
               "CSAFPID-1503629",
               "CSAFPID-1503630",
               "CSAFPID-1503631",
               "CSAFPID-1503632",
               "CSAFPID-1503633",
               "CSAFPID-1503634",
               "CSAFPID-1503635",
               "CSAFPID-1503636",
               "CSAFPID-1503319",
               "CSAFPID-1503318",
               "CSAFPID-1503637",
               "CSAFPID-1503638",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2022-34169",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-34169.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-219827",
                  "CSAFPID-219828",
                  "CSAFPID-219829",
                  "CSAFPID-219830",
                  "CSAFPID-344845",
                  "CSAFPID-219831",
                  "CSAFPID-219832",
                  "CSAFPID-344846",
                  "CSAFPID-219833",
                  "CSAFPID-764259",
                  "CSAFPID-345045",
                  "CSAFPID-345044",
                  "CSAFPID-345043",
                  "CSAFPID-345042",
                  "CSAFPID-93309",
                  "CSAFPID-93305",
                  "CSAFPID-189064",
                  "CSAFPID-189063",
                  "CSAFPID-363146",
                  "CSAFPID-363129",
                  "CSAFPID-363142",
                  "CSAFPID-363130",
                  "CSAFPID-363135",
                  "CSAFPID-189067",
                  "CSAFPID-93307",
                  "CSAFPID-345041",
                  "CSAFPID-219772",
                  "CSAFPID-345047",
                  "CSAFPID-391382",
                  "CSAFPID-493291",
                  "CSAFPID-493290",
                  "CSAFPID-493289",
                  "CSAFPID-493288",
                  "CSAFPID-363128",
                  "CSAFPID-363127",
                  "CSAFPID-363144",
                  "CSAFPID-363131",
                  "CSAFPID-363126",
                  "CSAFPID-363143",
                  "CSAFPID-363133",
                  "CSAFPID-219774",
                  "CSAFPID-180190",
                  "CSAFPID-345040",
                  "CSAFPID-219773",
                  "CSAFPID-363141",
                  "CSAFPID-363138",
                  "CSAFPID-363136",
                  "CSAFPID-363145",
                  "CSAFPID-363132",
                  "CSAFPID-363140",
                  "CSAFPID-363134",
                  "CSAFPID-396508",
                  "CSAFPID-396507",
                  "CSAFPID-363139",
                  "CSAFPID-570314",
                  "CSAFPID-570313",
                  "CSAFPID-570312",
                  "CSAFPID-570311",
                  "CSAFPID-611433",
                  "CSAFPID-363137",
                  "CSAFPID-764796",
                  "CSAFPID-764857",
                  "CSAFPID-342808",
                  "CSAFPID-220456",
                  "CSAFPID-93308",
                  "CSAFPID-93306",
                  "CSAFPID-220368",
                  "CSAFPID-220449",
                  "CSAFPID-220455",
                  "CSAFPID-180191",
                  "CSAFPID-180189",
                  "CSAFPID-220369",
                  "CSAFPID-220448",
                  "CSAFPID-764923",
                  "CSAFPID-764924",
                  "CSAFPID-764925",
                  "CSAFPID-764926",
                  "CSAFPID-764262",
                  "CSAFPID-816824",
                  "CSAFPID-764263",
                  "CSAFPID-9711",
                  "CSAFPID-9300",
                  "CSAFPID-9522",
                  "CSAFPID-180204",
                  "CSAFPID-180213",
                  "CSAFPID-180207",
                  "CSAFPID-180208",
                  "CSAFPID-93312",
                  "CSAFPID-93311",
                  "CSAFPID-765261",
                  "CSAFPID-765262",
                  "CSAFPID-93648",
                  "CSAFPID-765263",
                  "CSAFPID-93647",
                  "CSAFPID-220378",
                  "CSAFPID-220377",
                  "CSAFPID-220607",
                  "CSAFPID-220372",
                  "CSAFPID-567702",
                  "CSAFPID-765264",
                  "CSAFPID-765265",
                  "CSAFPID-765266",
                  "CSAFPID-400307",
                  "CSAFPID-8848",
                  "CSAFPID-189066",
                  "CSAFPID-189065",
                  "CSAFPID-219770",
                  "CSAFPID-816828",
                  "CSAFPID-816829",
                  "CSAFPID-219771",
                  "CSAFPID-816830",
                  "CSAFPID-816831",
                  "CSAFPID-816832",
                  "CSAFPID-816833",
                  "CSAFPID-816834",
                  "CSAFPID-816835",
                  "CSAFPID-816836",
                  "CSAFPID-816837",
                  "CSAFPID-816838",
                  "CSAFPID-816839",
                  "CSAFPID-816840",
                  "CSAFPID-816841",
                  "CSAFPID-816842",
                  "CSAFPID-220374",
                  "CSAFPID-912094",
                  "CSAFPID-912093",
                  "CSAFPID-912092",
                  "CSAFPID-912064",
                  "CSAFPID-912063",
                  "CSAFPID-912062",
                  "CSAFPID-912589",
                  "CSAFPID-400311",
                  "CSAFPID-912590",
                  "CSAFPID-400309",
                  "CSAFPID-912591",
                  "CSAFPID-912592",
                  "CSAFPID-1503614",
                  "CSAFPID-1503615",
                  "CSAFPID-1503616",
                  "CSAFPID-1503617",
                  "CSAFPID-1503626",
                  "CSAFPID-1503627",
                  "CSAFPID-1503628",
                  "CSAFPID-1503629",
                  "CSAFPID-1503630",
                  "CSAFPID-1503631",
                  "CSAFPID-1503632",
                  "CSAFPID-1503633",
                  "CSAFPID-1503634",
                  "CSAFPID-1503635",
                  "CSAFPID-1503636",
                  "CSAFPID-1503319",
                  "CSAFPID-1503318",
                  "CSAFPID-1503637",
                  "CSAFPID-1503638",
               ],
            },
         ],
         title: "CVE-2022-34169",
      },
      {
         cve: "CVE-2023-26031",
         cwe: {
            id: "CWE-426",
            name: "Untrusted Search Path",
         },
         notes: [
            {
               category: "other",
               text: "Untrusted Search Path",
               title: "CWE-426",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1503614",
               "CSAFPID-1503615",
               "CSAFPID-1503616",
               "CSAFPID-1503617",
               "CSAFPID-912094",
               "CSAFPID-912093",
               "CSAFPID-912092",
               "CSAFPID-912064",
               "CSAFPID-912063",
               "CSAFPID-912062",
               "CSAFPID-9711",
               "CSAFPID-9300",
               "CSAFPID-189066",
               "CSAFPID-189065",
               "CSAFPID-1503626",
               "CSAFPID-1503627",
               "CSAFPID-1503628",
               "CSAFPID-1503629",
               "CSAFPID-189067",
               "CSAFPID-93307",
               "CSAFPID-816828",
               "CSAFPID-1503630",
               "CSAFPID-1503631",
               "CSAFPID-1503632",
               "CSAFPID-1503633",
               "CSAFPID-1503634",
               "CSAFPID-1503635",
               "CSAFPID-1503636",
               "CSAFPID-1503319",
               "CSAFPID-1503318",
               "CSAFPID-1503637",
               "CSAFPID-1503638",
               "CSAFPID-764926",
               "CSAFPID-816829",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2023-26031",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-26031.json",
            },
         ],
         title: "CVE-2023-26031",
      },
      {
         cve: "CVE-2023-33201",
         cwe: {
            id: "CWE-200",
            name: "Exposure of Sensitive Information to an Unauthorized Actor",
         },
         notes: [
            {
               category: "other",
               text: "Exposure of Sensitive Information to an Unauthorized Actor",
               title: "CWE-200",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-611391",
               "CSAFPID-611392",
               "CSAFPID-764259",
               "CSAFPID-764262",
               "CSAFPID-764263",
               "CSAFPID-764273",
               "CSAFPID-8848",
               "CSAFPID-9300",
               "CSAFPID-9522",
               "CSAFPID-9711",
               "CSAFPID-93307",
               "CSAFPID-180190",
               "CSAFPID-189065",
               "CSAFPID-189066",
               "CSAFPID-189067",
               "CSAFPID-219770",
               "CSAFPID-219771",
               "CSAFPID-219774",
               "CSAFPID-220374",
               "CSAFPID-344845",
               "CSAFPID-344846",
               "CSAFPID-765266",
               "CSAFPID-816824",
               "CSAFPID-816828",
               "CSAFPID-816829",
               "CSAFPID-816830",
               "CSAFPID-816831",
               "CSAFPID-816832",
               "CSAFPID-816833",
               "CSAFPID-816834",
               "CSAFPID-816835",
               "CSAFPID-816836",
               "CSAFPID-816837",
               "CSAFPID-816838",
               "CSAFPID-816839",
               "CSAFPID-816840",
               "CSAFPID-816841",
               "CSAFPID-816842",
               "CSAFPID-400309",
               "CSAFPID-400311",
               "CSAFPID-765264",
               "CSAFPID-765265",
               "CSAFPID-912062",
               "CSAFPID-912063",
               "CSAFPID-912064",
               "CSAFPID-912092",
               "CSAFPID-912093",
               "CSAFPID-912094",
               "CSAFPID-912589",
               "CSAFPID-912590",
               "CSAFPID-912591",
               "CSAFPID-912592",
               "CSAFPID-1503614",
               "CSAFPID-1503615",
               "CSAFPID-1503616",
               "CSAFPID-1503617",
               "CSAFPID-1503626",
               "CSAFPID-1503627",
               "CSAFPID-1503628",
               "CSAFPID-1503629",
               "CSAFPID-1503630",
               "CSAFPID-1503631",
               "CSAFPID-1503632",
               "CSAFPID-1503633",
               "CSAFPID-1503634",
               "CSAFPID-1503635",
               "CSAFPID-1503636",
               "CSAFPID-1503319",
               "CSAFPID-1503318",
               "CSAFPID-1503637",
               "CSAFPID-1503638",
               "CSAFPID-764926",
               "CSAFPID-1751202",
               "CSAFPID-1751086",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2023-33201",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-33201.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-611391",
                  "CSAFPID-611392",
                  "CSAFPID-764259",
                  "CSAFPID-764262",
                  "CSAFPID-764263",
                  "CSAFPID-764273",
                  "CSAFPID-8848",
                  "CSAFPID-9300",
                  "CSAFPID-9522",
                  "CSAFPID-9711",
                  "CSAFPID-93307",
                  "CSAFPID-180190",
                  "CSAFPID-189065",
                  "CSAFPID-189066",
                  "CSAFPID-189067",
                  "CSAFPID-219770",
                  "CSAFPID-219771",
                  "CSAFPID-219774",
                  "CSAFPID-220374",
                  "CSAFPID-344845",
                  "CSAFPID-344846",
                  "CSAFPID-765266",
                  "CSAFPID-816824",
                  "CSAFPID-816828",
                  "CSAFPID-816829",
                  "CSAFPID-816830",
                  "CSAFPID-816831",
                  "CSAFPID-816832",
                  "CSAFPID-816833",
                  "CSAFPID-816834",
                  "CSAFPID-816835",
                  "CSAFPID-816836",
                  "CSAFPID-816837",
                  "CSAFPID-816838",
                  "CSAFPID-816839",
                  "CSAFPID-816840",
                  "CSAFPID-816841",
                  "CSAFPID-816842",
                  "CSAFPID-400309",
                  "CSAFPID-400311",
                  "CSAFPID-765264",
                  "CSAFPID-765265",
                  "CSAFPID-912062",
                  "CSAFPID-912063",
                  "CSAFPID-912064",
                  "CSAFPID-912092",
                  "CSAFPID-912093",
                  "CSAFPID-912094",
                  "CSAFPID-912589",
                  "CSAFPID-912590",
                  "CSAFPID-912591",
                  "CSAFPID-912592",
                  "CSAFPID-1503614",
                  "CSAFPID-1503615",
                  "CSAFPID-1503616",
                  "CSAFPID-1503617",
                  "CSAFPID-1503626",
                  "CSAFPID-1503627",
                  "CSAFPID-1503628",
                  "CSAFPID-1503629",
                  "CSAFPID-1503630",
                  "CSAFPID-1503631",
                  "CSAFPID-1503632",
                  "CSAFPID-1503633",
                  "CSAFPID-1503634",
                  "CSAFPID-1503635",
                  "CSAFPID-1503636",
                  "CSAFPID-1503319",
                  "CSAFPID-1503318",
                  "CSAFPID-1503637",
                  "CSAFPID-1503638",
                  "CSAFPID-764926",
                  "CSAFPID-1751202",
                  "CSAFPID-1751086",
               ],
            },
         ],
         title: "CVE-2023-33201",
      },
      {
         cve: "CVE-2023-39410",
         cwe: {
            id: "CWE-502",
            name: "Deserialization of Untrusted Data",
         },
         notes: [
            {
               category: "other",
               text: "Deserialization of Untrusted Data",
               title: "CWE-502",
            },
            {
               category: "other",
               text: "Improper Input Validation",
               title: "CWE-20",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-8848",
               "CSAFPID-9300",
               "CSAFPID-9522",
               "CSAFPID-9711",
               "CSAFPID-93307",
               "CSAFPID-180190",
               "CSAFPID-189065",
               "CSAFPID-189066",
               "CSAFPID-189067",
               "CSAFPID-219770",
               "CSAFPID-219771",
               "CSAFPID-219774",
               "CSAFPID-220374",
               "CSAFPID-344845",
               "CSAFPID-344846",
               "CSAFPID-764259",
               "CSAFPID-764262",
               "CSAFPID-764263",
               "CSAFPID-765266",
               "CSAFPID-816824",
               "CSAFPID-816828",
               "CSAFPID-816829",
               "CSAFPID-816830",
               "CSAFPID-816831",
               "CSAFPID-816832",
               "CSAFPID-816833",
               "CSAFPID-816834",
               "CSAFPID-816835",
               "CSAFPID-816836",
               "CSAFPID-816837",
               "CSAFPID-816838",
               "CSAFPID-816839",
               "CSAFPID-816840",
               "CSAFPID-816841",
               "CSAFPID-816842",
               "CSAFPID-1751202",
               "CSAFPID-1751206",
               "CSAFPID-1751086",
               "CSAFPID-1751207",
               "CSAFPID-1503318",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2023-39410",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-39410.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-8848",
                  "CSAFPID-9300",
                  "CSAFPID-9522",
                  "CSAFPID-9711",
                  "CSAFPID-93307",
                  "CSAFPID-180190",
                  "CSAFPID-189065",
                  "CSAFPID-189066",
                  "CSAFPID-189067",
                  "CSAFPID-219770",
                  "CSAFPID-219771",
                  "CSAFPID-219774",
                  "CSAFPID-220374",
                  "CSAFPID-344845",
                  "CSAFPID-344846",
                  "CSAFPID-764259",
                  "CSAFPID-764262",
                  "CSAFPID-764263",
                  "CSAFPID-765266",
                  "CSAFPID-816824",
                  "CSAFPID-816828",
                  "CSAFPID-816829",
                  "CSAFPID-816830",
                  "CSAFPID-816831",
                  "CSAFPID-816832",
                  "CSAFPID-816833",
                  "CSAFPID-816834",
                  "CSAFPID-816835",
                  "CSAFPID-816836",
                  "CSAFPID-816837",
                  "CSAFPID-816838",
                  "CSAFPID-816839",
                  "CSAFPID-816840",
                  "CSAFPID-816841",
                  "CSAFPID-816842",
                  "CSAFPID-1751202",
                  "CSAFPID-1751206",
                  "CSAFPID-1751086",
                  "CSAFPID-1751207",
                  "CSAFPID-1503318",
               ],
            },
         ],
         title: "CVE-2023-39410",
      },
      {
         cve: "CVE-2023-44483",
         cwe: {
            id: "CWE-532",
            name: "Insertion of Sensitive Information into Log File",
         },
         notes: [
            {
               category: "other",
               text: "Insertion of Sensitive Information into Log File",
               title: "CWE-532",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-8848",
               "CSAFPID-9300",
               "CSAFPID-9522",
               "CSAFPID-9711",
               "CSAFPID-93307",
               "CSAFPID-180190",
               "CSAFPID-189065",
               "CSAFPID-189066",
               "CSAFPID-189067",
               "CSAFPID-219770",
               "CSAFPID-219771",
               "CSAFPID-219774",
               "CSAFPID-220374",
               "CSAFPID-344845",
               "CSAFPID-344846",
               "CSAFPID-764259",
               "CSAFPID-764262",
               "CSAFPID-764263",
               "CSAFPID-765266",
               "CSAFPID-816824",
               "CSAFPID-816828",
               "CSAFPID-816829",
               "CSAFPID-816830",
               "CSAFPID-816831",
               "CSAFPID-816832",
               "CSAFPID-816833",
               "CSAFPID-816834",
               "CSAFPID-816835",
               "CSAFPID-816836",
               "CSAFPID-816837",
               "CSAFPID-816838",
               "CSAFPID-816839",
               "CSAFPID-816840",
               "CSAFPID-816841",
               "CSAFPID-816842",
               "CSAFPID-400309",
               "CSAFPID-400311",
               "CSAFPID-765264",
               "CSAFPID-765265",
               "CSAFPID-912062",
               "CSAFPID-912063",
               "CSAFPID-912064",
               "CSAFPID-912092",
               "CSAFPID-912093",
               "CSAFPID-912094",
               "CSAFPID-912589",
               "CSAFPID-912590",
               "CSAFPID-912591",
               "CSAFPID-912592",
               "CSAFPID-1503614",
               "CSAFPID-1503615",
               "CSAFPID-1503616",
               "CSAFPID-1503617",
               "CSAFPID-1503626",
               "CSAFPID-1503627",
               "CSAFPID-1503628",
               "CSAFPID-1503629",
               "CSAFPID-1503630",
               "CSAFPID-1503631",
               "CSAFPID-1503632",
               "CSAFPID-1503633",
               "CSAFPID-1503634",
               "CSAFPID-1503635",
               "CSAFPID-1503636",
               "CSAFPID-1503319",
               "CSAFPID-1503318",
               "CSAFPID-1503637",
               "CSAFPID-1503638",
               "CSAFPID-764926",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2023-44483",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-44483.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6.5,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-8848",
                  "CSAFPID-9300",
                  "CSAFPID-9522",
                  "CSAFPID-9711",
                  "CSAFPID-93307",
                  "CSAFPID-180190",
                  "CSAFPID-189065",
                  "CSAFPID-189066",
                  "CSAFPID-189067",
                  "CSAFPID-219770",
                  "CSAFPID-219771",
                  "CSAFPID-219774",
                  "CSAFPID-220374",
                  "CSAFPID-344845",
                  "CSAFPID-344846",
                  "CSAFPID-764259",
                  "CSAFPID-764262",
                  "CSAFPID-764263",
                  "CSAFPID-765266",
                  "CSAFPID-816824",
                  "CSAFPID-816828",
                  "CSAFPID-816829",
                  "CSAFPID-816830",
                  "CSAFPID-816831",
                  "CSAFPID-816832",
                  "CSAFPID-816833",
                  "CSAFPID-816834",
                  "CSAFPID-816835",
                  "CSAFPID-816836",
                  "CSAFPID-816837",
                  "CSAFPID-816838",
                  "CSAFPID-816839",
                  "CSAFPID-816840",
                  "CSAFPID-816841",
                  "CSAFPID-816842",
                  "CSAFPID-400309",
                  "CSAFPID-400311",
                  "CSAFPID-765264",
                  "CSAFPID-765265",
                  "CSAFPID-912062",
                  "CSAFPID-912063",
                  "CSAFPID-912064",
                  "CSAFPID-912092",
                  "CSAFPID-912093",
                  "CSAFPID-912094",
                  "CSAFPID-912589",
                  "CSAFPID-912590",
                  "CSAFPID-912591",
                  "CSAFPID-912592",
                  "CSAFPID-1503614",
                  "CSAFPID-1503615",
                  "CSAFPID-1503616",
                  "CSAFPID-1503617",
                  "CSAFPID-1503626",
                  "CSAFPID-1503627",
                  "CSAFPID-1503628",
                  "CSAFPID-1503629",
                  "CSAFPID-1503630",
                  "CSAFPID-1503631",
                  "CSAFPID-1503632",
                  "CSAFPID-1503633",
                  "CSAFPID-1503634",
                  "CSAFPID-1503635",
                  "CSAFPID-1503636",
                  "CSAFPID-1503319",
                  "CSAFPID-1503318",
                  "CSAFPID-1503637",
                  "CSAFPID-1503638",
                  "CSAFPID-764926",
               ],
            },
         ],
         title: "CVE-2023-44483",
      },
      {
         cve: "CVE-2023-48795",
         cwe: {
            id: "CWE-222",
            name: "Truncation of Security-relevant Information",
         },
         notes: [
            {
               category: "other",
               text: "Truncation of Security-relevant Information",
               title: "CWE-222",
            },
            {
               category: "other",
               text: "Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')",
               title: "CWE-757",
            },
            {
               category: "other",
               text: "Improper Validation of Integrity Check Value",
               title: "CWE-354",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-8848",
               "CSAFPID-9300",
               "CSAFPID-9522",
               "CSAFPID-9711",
               "CSAFPID-93307",
               "CSAFPID-180190",
               "CSAFPID-189065",
               "CSAFPID-189066",
               "CSAFPID-189067",
               "CSAFPID-219770",
               "CSAFPID-219771",
               "CSAFPID-219774",
               "CSAFPID-220374",
               "CSAFPID-344845",
               "CSAFPID-344846",
               "CSAFPID-764259",
               "CSAFPID-764262",
               "CSAFPID-764263",
               "CSAFPID-765266",
               "CSAFPID-816824",
               "CSAFPID-816828",
               "CSAFPID-816829",
               "CSAFPID-816830",
               "CSAFPID-816831",
               "CSAFPID-816832",
               "CSAFPID-816833",
               "CSAFPID-816834",
               "CSAFPID-816835",
               "CSAFPID-816836",
               "CSAFPID-816837",
               "CSAFPID-816838",
               "CSAFPID-816839",
               "CSAFPID-816840",
               "CSAFPID-816841",
               "CSAFPID-816842",
               "CSAFPID-400309",
               "CSAFPID-400311",
               "CSAFPID-765264",
               "CSAFPID-765265",
               "CSAFPID-912062",
               "CSAFPID-912063",
               "CSAFPID-912064",
               "CSAFPID-912092",
               "CSAFPID-912093",
               "CSAFPID-912094",
               "CSAFPID-912589",
               "CSAFPID-912590",
               "CSAFPID-912591",
               "CSAFPID-912592",
               "CSAFPID-1503614",
               "CSAFPID-1503615",
               "CSAFPID-1503616",
               "CSAFPID-1503617",
               "CSAFPID-1503626",
               "CSAFPID-1503627",
               "CSAFPID-1503628",
               "CSAFPID-1503629",
               "CSAFPID-1503630",
               "CSAFPID-1503631",
               "CSAFPID-1503632",
               "CSAFPID-1503633",
               "CSAFPID-1503634",
               "CSAFPID-1503635",
               "CSAFPID-1503636",
               "CSAFPID-1503319",
               "CSAFPID-1503318",
               "CSAFPID-1503637",
               "CSAFPID-1503638",
               "CSAFPID-764926",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2023-48795",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-48795.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-8848",
                  "CSAFPID-9300",
                  "CSAFPID-9522",
                  "CSAFPID-9711",
                  "CSAFPID-93307",
                  "CSAFPID-180190",
                  "CSAFPID-189065",
                  "CSAFPID-189066",
                  "CSAFPID-189067",
                  "CSAFPID-219770",
                  "CSAFPID-219771",
                  "CSAFPID-219774",
                  "CSAFPID-220374",
                  "CSAFPID-344845",
                  "CSAFPID-344846",
                  "CSAFPID-764259",
                  "CSAFPID-764262",
                  "CSAFPID-764263",
                  "CSAFPID-765266",
                  "CSAFPID-816824",
                  "CSAFPID-816828",
                  "CSAFPID-816829",
                  "CSAFPID-816830",
                  "CSAFPID-816831",
                  "CSAFPID-816832",
                  "CSAFPID-816833",
                  "CSAFPID-816834",
                  "CSAFPID-816835",
                  "CSAFPID-816836",
                  "CSAFPID-816837",
                  "CSAFPID-816838",
                  "CSAFPID-816839",
                  "CSAFPID-816840",
                  "CSAFPID-816841",
                  "CSAFPID-816842",
                  "CSAFPID-400309",
                  "CSAFPID-400311",
                  "CSAFPID-765264",
                  "CSAFPID-765265",
                  "CSAFPID-912062",
                  "CSAFPID-912063",
                  "CSAFPID-912064",
                  "CSAFPID-912092",
                  "CSAFPID-912093",
                  "CSAFPID-912094",
                  "CSAFPID-912589",
                  "CSAFPID-912590",
                  "CSAFPID-912591",
                  "CSAFPID-912592",
                  "CSAFPID-1503614",
                  "CSAFPID-1503615",
                  "CSAFPID-1503616",
                  "CSAFPID-1503617",
                  "CSAFPID-1503626",
                  "CSAFPID-1503627",
                  "CSAFPID-1503628",
                  "CSAFPID-1503629",
                  "CSAFPID-1503630",
                  "CSAFPID-1503631",
                  "CSAFPID-1503632",
                  "CSAFPID-1503633",
                  "CSAFPID-1503634",
                  "CSAFPID-1503635",
                  "CSAFPID-1503636",
                  "CSAFPID-1503319",
                  "CSAFPID-1503318",
                  "CSAFPID-1503637",
                  "CSAFPID-1503638",
                  "CSAFPID-764926",
               ],
            },
         ],
         title: "CVE-2023-48795",
      },
      {
         cve: "CVE-2023-51074",
         cwe: {
            id: "CWE-121",
            name: "Stack-based Buffer Overflow",
         },
         notes: [
            {
               category: "other",
               text: "Stack-based Buffer Overflow",
               title: "CWE-121",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-400309",
               "CSAFPID-400311",
               "CSAFPID-765264",
               "CSAFPID-765265",
               "CSAFPID-912062",
               "CSAFPID-912063",
               "CSAFPID-912064",
               "CSAFPID-912092",
               "CSAFPID-912093",
               "CSAFPID-912094",
               "CSAFPID-912589",
               "CSAFPID-912590",
               "CSAFPID-912591",
               "CSAFPID-912592",
               "CSAFPID-1503614",
               "CSAFPID-1503615",
               "CSAFPID-1503616",
               "CSAFPID-1503617",
               "CSAFPID-9711",
               "CSAFPID-9300",
               "CSAFPID-189066",
               "CSAFPID-189065",
               "CSAFPID-1503626",
               "CSAFPID-1503627",
               "CSAFPID-1503628",
               "CSAFPID-1503629",
               "CSAFPID-189067",
               "CSAFPID-93307",
               "CSAFPID-816828",
               "CSAFPID-1503630",
               "CSAFPID-1503631",
               "CSAFPID-1503632",
               "CSAFPID-1503633",
               "CSAFPID-1503634",
               "CSAFPID-1503635",
               "CSAFPID-1503636",
               "CSAFPID-1503319",
               "CSAFPID-1503318",
               "CSAFPID-1503637",
               "CSAFPID-1503638",
               "CSAFPID-764926",
               "CSAFPID-1751213",
               "CSAFPID-220375",
               "CSAFPID-1751214",
               "CSAFPID-1751074",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2023-51074",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-51074.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-400309",
                  "CSAFPID-400311",
                  "CSAFPID-765264",
                  "CSAFPID-765265",
                  "CSAFPID-912062",
                  "CSAFPID-912063",
                  "CSAFPID-912064",
                  "CSAFPID-912092",
                  "CSAFPID-912093",
                  "CSAFPID-912094",
                  "CSAFPID-912589",
                  "CSAFPID-912590",
                  "CSAFPID-912591",
                  "CSAFPID-912592",
                  "CSAFPID-1503614",
                  "CSAFPID-1503615",
                  "CSAFPID-1503616",
                  "CSAFPID-1503617",
                  "CSAFPID-9711",
                  "CSAFPID-9300",
                  "CSAFPID-189066",
                  "CSAFPID-189065",
                  "CSAFPID-1503626",
                  "CSAFPID-1503627",
                  "CSAFPID-1503628",
                  "CSAFPID-1503629",
                  "CSAFPID-189067",
                  "CSAFPID-93307",
                  "CSAFPID-816828",
                  "CSAFPID-1503630",
                  "CSAFPID-1503631",
                  "CSAFPID-1503632",
                  "CSAFPID-1503633",
                  "CSAFPID-1503634",
                  "CSAFPID-1503635",
                  "CSAFPID-1503636",
                  "CSAFPID-1503319",
                  "CSAFPID-1503318",
                  "CSAFPID-1503637",
                  "CSAFPID-1503638",
                  "CSAFPID-764926",
                  "CSAFPID-1751213",
                  "CSAFPID-220375",
                  "CSAFPID-1751214",
                  "CSAFPID-1751074",
               ],
            },
         ],
         title: "CVE-2023-51074",
      },
      {
         cve: "CVE-2023-52070",
         product_status: {
            known_affected: [
               "CSAFPID-1751215",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2023-52070",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-52070.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.4,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751215",
               ],
            },
         ],
         title: "CVE-2023-52070",
      },
      {
         cve: "CVE-2024-28219",
         cwe: {
            id: "CWE-120",
            name: "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')",
         },
         notes: [
            {
               category: "other",
               text: "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')",
               title: "CWE-120",
            },
            {
               category: "other",
               text: "Use of Potentially Dangerous Function",
               title: "CWE-676",
            },
            {
               category: "other",
               text: "Integer Overflow to Buffer Overflow",
               title: "CWE-680",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1503631",
               "CSAFPID-1673499",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-28219",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-28219.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.3,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1503631",
                  "CSAFPID-1673499",
               ],
            },
         ],
         title: "CVE-2024-28219",
      },
      {
         cve: "CVE-2024-34064",
         cwe: {
            id: "CWE-79",
            name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
         },
         notes: [
            {
               category: "other",
               text: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
               title: "CWE-79",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1503614",
               "CSAFPID-1503615",
               "CSAFPID-1503616",
               "CSAFPID-1503617",
               "CSAFPID-912094",
               "CSAFPID-912093",
               "CSAFPID-912092",
               "CSAFPID-912064",
               "CSAFPID-912063",
               "CSAFPID-912062",
               "CSAFPID-9711",
               "CSAFPID-9300",
               "CSAFPID-189066",
               "CSAFPID-189065",
               "CSAFPID-1503626",
               "CSAFPID-1503627",
               "CSAFPID-1503628",
               "CSAFPID-1503629",
               "CSAFPID-189067",
               "CSAFPID-93307",
               "CSAFPID-816828",
               "CSAFPID-1503630",
               "CSAFPID-1503631",
               "CSAFPID-1503632",
               "CSAFPID-1503633",
               "CSAFPID-1503634",
               "CSAFPID-1503635",
               "CSAFPID-1503636",
               "CSAFPID-1503319",
               "CSAFPID-1503318",
               "CSAFPID-1503637",
               "CSAFPID-1503638",
               "CSAFPID-764926",
               "CSAFPID-1673499",
               "CSAFPID-1751206",
               "CSAFPID-1751207",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-34064",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-34064.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.4,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1503614",
                  "CSAFPID-1503615",
                  "CSAFPID-1503616",
                  "CSAFPID-1503617",
                  "CSAFPID-912094",
                  "CSAFPID-912093",
                  "CSAFPID-912092",
                  "CSAFPID-912064",
                  "CSAFPID-912063",
                  "CSAFPID-912062",
                  "CSAFPID-9711",
                  "CSAFPID-9300",
                  "CSAFPID-189066",
                  "CSAFPID-189065",
                  "CSAFPID-1503626",
                  "CSAFPID-1503627",
                  "CSAFPID-1503628",
                  "CSAFPID-1503629",
                  "CSAFPID-189067",
                  "CSAFPID-93307",
                  "CSAFPID-816828",
                  "CSAFPID-1503630",
                  "CSAFPID-1503631",
                  "CSAFPID-1503632",
                  "CSAFPID-1503633",
                  "CSAFPID-1503634",
                  "CSAFPID-1503635",
                  "CSAFPID-1503636",
                  "CSAFPID-1503319",
                  "CSAFPID-1503318",
                  "CSAFPID-1503637",
                  "CSAFPID-1503638",
                  "CSAFPID-764926",
                  "CSAFPID-1673499",
                  "CSAFPID-1751206",
                  "CSAFPID-1751207",
               ],
            },
         ],
         title: "CVE-2024-34064",
      },
      {
         cve: "CVE-2024-34750",
         cwe: {
            id: "CWE-755",
            name: "Improper Handling of Exceptional Conditions",
         },
         notes: [
            {
               category: "other",
               text: "Improper Handling of Exceptional Conditions",
               title: "CWE-755",
            },
            {
               category: "other",
               text: "Uncontrolled Resource Consumption",
               title: "CWE-400",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751202",
               "CSAFPID-1751086",
               "CSAFPID-1503318",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-34750",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-34750.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751202",
                  "CSAFPID-1751086",
                  "CSAFPID-1503318",
               ],
            },
         ],
         title: "CVE-2024-34750",
      },
      {
         cve: "CVE-2024-35195",
         cwe: {
            id: "CWE-670",
            name: "Always-Incorrect Control Flow Implementation",
         },
         notes: [
            {
               category: "other",
               text: "Always-Incorrect Control Flow Implementation",
               title: "CWE-670",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1673499",
               "CSAFPID-1503631",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-35195",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35195.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.7,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1673499",
                  "CSAFPID-1503631",
               ],
            },
         ],
         title: "CVE-2024-35195",
      },
      {
         cve: "CVE-2024-38819",
         cwe: {
            id: "CWE-22",
            name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
         },
         notes: [
            {
               category: "other",
               text: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
               title: "CWE-22",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751072",
               "CSAFPID-1503630",
               "CSAFPID-1751074",
               "CSAFPID-1751078",
               "CSAFPID-189067",
               "CSAFPID-1751083",
               "CSAFPID-1751086",
               "CSAFPID-1503631",
               "CSAFPID-220375",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38819",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38819.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751072",
                  "CSAFPID-1503630",
                  "CSAFPID-1751074",
                  "CSAFPID-1751078",
                  "CSAFPID-189067",
                  "CSAFPID-1751083",
                  "CSAFPID-1751086",
                  "CSAFPID-1503631",
                  "CSAFPID-220375",
               ],
            },
         ],
         title: "CVE-2024-38819",
      },
      {
         cve: "CVE-2024-38820",
         cwe: {
            id: "CWE-284",
            name: "Improper Access Control",
         },
         notes: [
            {
               category: "other",
               text: "Improper Access Control",
               title: "CWE-284",
            },
            {
               category: "other",
               text: "Improper Handling of Case Sensitivity",
               title: "CWE-178",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-220375",
               "CSAFPID-1751083",
               "CSAFPID-1503630",
               "CSAFPID-1751074",
               "CSAFPID-1751078",
               "CSAFPID-1503631",
               "CSAFPID-189067",
               "CSAFPID-1751086",
               "CSAFPID-1751072",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38820",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38820.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-220375",
                  "CSAFPID-1751083",
                  "CSAFPID-1503630",
                  "CSAFPID-1751074",
                  "CSAFPID-1751078",
                  "CSAFPID-1503631",
                  "CSAFPID-189067",
                  "CSAFPID-1751086",
                  "CSAFPID-1751072",
               ],
            },
         ],
         title: "CVE-2024-38820",
      },
      {
         cve: "CVE-2024-38827",
         cwe: {
            id: "CWE-639",
            name: "Authorization Bypass Through User-Controlled Key",
         },
         notes: [
            {
               category: "other",
               text: "Authorization Bypass Through User-Controlled Key",
               title: "CWE-639",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1503631",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38827",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38827.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 4.8,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1503631",
               ],
            },
         ],
         title: "CVE-2024-38827",
      },
      {
         cve: "CVE-2024-38998",
         cwe: {
            id: "CWE-1321",
            name: "Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')",
         },
         notes: [
            {
               category: "other",
               text: "Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')",
               title: "CWE-1321",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-220375",
               "CSAFPID-1751083",
               "CSAFPID-189067",
               "CSAFPID-1503318",
               "CSAFPID-1751202",
               "CSAFPID-1503630",
               "CSAFPID-1751074",
               "CSAFPID-1751078",
               "CSAFPID-1751213",
               "CSAFPID-1751214",
               "CSAFPID-219774",
               "CSAFPID-1751086",
               "CSAFPID-1751072",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38998",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38998.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-220375",
                  "CSAFPID-1751083",
                  "CSAFPID-189067",
                  "CSAFPID-1503318",
                  "CSAFPID-1751202",
                  "CSAFPID-1503630",
                  "CSAFPID-1751074",
                  "CSAFPID-1751078",
                  "CSAFPID-1751213",
                  "CSAFPID-1751214",
                  "CSAFPID-219774",
                  "CSAFPID-1751086",
                  "CSAFPID-1751072",
               ],
            },
         ],
         title: "CVE-2024-38998",
      },
      {
         cve: "CVE-2024-38999",
         cwe: {
            id: "CWE-1321",
            name: "Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')",
         },
         notes: [
            {
               category: "other",
               text: "Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')",
               title: "CWE-1321",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-220375",
               "CSAFPID-1751083",
               "CSAFPID-189067",
               "CSAFPID-1503318",
               "CSAFPID-1751202",
               "CSAFPID-1503630",
               "CSAFPID-1751074",
               "CSAFPID-1751078",
               "CSAFPID-1751213",
               "CSAFPID-1751214",
               "CSAFPID-219774",
               "CSAFPID-1751086",
               "CSAFPID-1751072",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38999",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38999.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 10,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-220375",
                  "CSAFPID-1751083",
                  "CSAFPID-189067",
                  "CSAFPID-1503318",
                  "CSAFPID-1751202",
                  "CSAFPID-1503630",
                  "CSAFPID-1751074",
                  "CSAFPID-1751078",
                  "CSAFPID-1751213",
                  "CSAFPID-1751214",
                  "CSAFPID-219774",
                  "CSAFPID-1751086",
                  "CSAFPID-1751072",
               ],
            },
         ],
         title: "CVE-2024-38999",
      },
      {
         cve: "CVE-2024-45490",
         cwe: {
            id: "CWE-190",
            name: "Integer Overflow or Wraparound",
         },
         notes: [
            {
               category: "other",
               text: "Integer Overflow or Wraparound",
               title: "CWE-190",
            },
            {
               category: "other",
               text: "Incorrect Calculation of Buffer Size",
               title: "CWE-131",
            },
            {
               category: "other",
               text: "Improper Restriction of XML External Entity Reference",
               title: "CWE-611",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-189067",
               "CSAFPID-1503630",
               "CSAFPID-1751074",
               "CSAFPID-220375",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-45490",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-45490.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-189067",
                  "CSAFPID-1503630",
                  "CSAFPID-1751074",
                  "CSAFPID-220375",
               ],
            },
         ],
         title: "CVE-2024-45490",
      },
      {
         cve: "CVE-2024-45491",
         cwe: {
            id: "CWE-190",
            name: "Integer Overflow or Wraparound",
         },
         notes: [
            {
               category: "other",
               text: "Integer Overflow or Wraparound",
               title: "CWE-190",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-220375",
               "CSAFPID-1503630",
               "CSAFPID-189067",
               "CSAFPID-1751074",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-45491",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-45491.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-220375",
                  "CSAFPID-1503630",
                  "CSAFPID-189067",
                  "CSAFPID-1751074",
               ],
            },
         ],
         title: "CVE-2024-45491",
      },
      {
         cve: "CVE-2024-45492",
         cwe: {
            id: "CWE-190",
            name: "Integer Overflow or Wraparound",
         },
         notes: [
            {
               category: "other",
               text: "Integer Overflow or Wraparound",
               title: "CWE-190",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-220375",
               "CSAFPID-1503630",
               "CSAFPID-189067",
               "CSAFPID-1751074",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-45492",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-45492.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-220375",
                  "CSAFPID-1503630",
                  "CSAFPID-189067",
                  "CSAFPID-1751074",
               ],
            },
         ],
         title: "CVE-2024-45492",
      },
      {
         cve: "CVE-2025-21550",
         product_status: {
            known_affected: [
               "CSAFPID-189067",
               "CSAFPID-1503630",
               "CSAFPID-1751074",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2025-21550",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-21550.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6.1,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-189067",
                  "CSAFPID-1503630",
                  "CSAFPID-1751074",
               ],
            },
         ],
         title: "CVE-2025-21550",
      },
   ],
}

ncsc-2025-0020

Vulnerability from csaf_ncscnl

Published

2025-01-22 13:30

Modified

2025-01-22 13:30

Summary

Kwetsbaarheden verholpen in Oracle Database producten

Notes

Feiten

Oracle heeft kwetsbaarheden verholpen in diverse database producten en subsystemen, zoals de Core Database, Graal, Application Express, GoldenGate en REST data.

Interpretaties

De kwetsbaarheden bevinden zich in verschillende componenten van de Oracle Database, waaronder de Data Mining component en de Java VM. Deze kwetsbaarheden stellen laaggeprivilegieerde geauthenticeerde gebruikers in staat om het systeem te compromitteren, wat kan leiden tot ongeautoriseerde toegang en gegevensmanipulatie. De Java VM-kwetsbaarheid kan ook leiden tot ongeautoriseerde wijzigingen van gegevens.

Oplossingen

Oracle heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.

Kans

medium

Schade

high

CWE-391

Unchecked Error Condition

CWE-115

Misinterpretation of Input

CWE-466

Return of Pointer Value Outside of Expected Range

CWE-222

Truncation of Security-relevant Information

CWE-131

Incorrect Calculation of Buffer Size

CWE-1287

Improper Validation of Specified Type of Input

CWE-922

Insecure Storage of Sensitive Information

CWE-191

Integer Underflow (Wrap or Wraparound)

CWE-1220

Insufficient Granularity of Access Control

CWE-776

Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion')

CWE-178

Improper Handling of Case Sensitivity

CWE-367

Time-of-check Time-of-use (TOCTOU) Race Condition

CWE-440

Expected Behavior Violation

CWE-1286

Improper Validation of Syntactic Correctness of Input

CWE-703

Improper Check or Handling of Exceptional Conditions

CWE-617

Reachable Assertion

CWE-427

Uncontrolled Search Path Element

CWE-601

URL Redirection to Untrusted Site ('Open Redirect')

CWE-288

Authentication Bypass Using an Alternate Path or Channel

CWE-354

Improper Validation of Integrity Check Value

CWE-190

Integer Overflow or Wraparound

CWE-404

Improper Resource Shutdown or Release

CWE-284

Improper Access Control

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-1333

Inefficient Regular Expression Complexity

CWE-1321

Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

CWE-476

NULL Pointer Dereference

CWE-757

Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')

CWE-94

Improper Control of Generation of Code ('Code Injection')

CWE-400

Uncontrolled Resource Consumption

CWE-770

Allocation of Resources Without Limits or Throttling

CWE-502

Deserialization of Untrusted Data

CWE-674

Uncontrolled Recursion

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CWE-611

Improper Restriction of XML External Entity Reference

CWE-787

Out-of-bounds Write

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

CWE-122

Heap-based Buffer Overflow

CWE-121

Stack-based Buffer Overflow

CWE-835

Loop with Unreachable Exit Condition ('Infinite Loop')

CWE-20

Improper Input Validation

CWE-276

Incorrect Default Permissions

JSON

To clipboard

{
   document: {
      category: "csaf_security_advisory",
      csaf_version: "2.0",
      distribution: {
         tlp: {
            label: "WHITE",
         },
      },
      lang: "nl",
      notes: [
         {
            category: "legal_disclaimer",
            text: "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n    NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n    NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n    This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.",
         },
         {
            category: "description",
            text: "Oracle heeft kwetsbaarheden verholpen in diverse database producten en subsystemen, zoals de Core Database, Graal, Application Express, GoldenGate en REST data.",
            title: "Feiten",
         },
         {
            category: "description",
            text: "De kwetsbaarheden bevinden zich in verschillende componenten van de Oracle Database, waaronder de Data Mining component en de Java VM. Deze kwetsbaarheden stellen laaggeprivilegieerde geauthenticeerde gebruikers in staat om het systeem te compromitteren, wat kan leiden tot ongeautoriseerde toegang en gegevensmanipulatie. De Java VM-kwetsbaarheid kan ook leiden tot ongeautoriseerde wijzigingen van gegevens.",
            title: "Interpretaties",
         },
         {
            category: "description",
            text: "Oracle heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
            title: "Oplossingen",
         },
         {
            category: "general",
            text: "medium",
            title: "Kans",
         },
         {
            category: "general",
            text: "high",
            title: "Schade",
         },
         {
            category: "general",
            text: "Unchecked Error Condition",
            title: "CWE-391",
         },
         {
            category: "general",
            text: "Misinterpretation of Input",
            title: "CWE-115",
         },
         {
            category: "general",
            text: "Return of Pointer Value Outside of Expected Range",
            title: "CWE-466",
         },
         {
            category: "general",
            text: "Truncation of Security-relevant Information",
            title: "CWE-222",
         },
         {
            category: "general",
            text: "Incorrect Calculation of Buffer Size",
            title: "CWE-131",
         },
         {
            category: "general",
            text: "Improper Validation of Specified Type of Input",
            title: "CWE-1287",
         },
         {
            category: "general",
            text: "Insecure Storage of Sensitive Information",
            title: "CWE-922",
         },
         {
            category: "general",
            text: "Integer Underflow (Wrap or Wraparound)",
            title: "CWE-191",
         },
         {
            category: "general",
            text: "Insufficient Granularity of Access Control",
            title: "CWE-1220",
         },
         {
            category: "general",
            text: "Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion')",
            title: "CWE-776",
         },
         {
            category: "general",
            text: "Improper Handling of Case Sensitivity",
            title: "CWE-178",
         },
         {
            category: "general",
            text: "Time-of-check Time-of-use (TOCTOU) Race Condition",
            title: "CWE-367",
         },
         {
            category: "general",
            text: "Expected Behavior Violation",
            title: "CWE-440",
         },
         {
            category: "general",
            text: "Improper Validation of Syntactic Correctness of Input",
            title: "CWE-1286",
         },
         {
            category: "general",
            text: "Improper Check or Handling of Exceptional Conditions",
            title: "CWE-703",
         },
         {
            category: "general",
            text: "Reachable Assertion",
            title: "CWE-617",
         },
         {
            category: "general",
            text: "Uncontrolled Search Path Element",
            title: "CWE-427",
         },
         {
            category: "general",
            text: "URL Redirection to Untrusted Site ('Open Redirect')",
            title: "CWE-601",
         },
         {
            category: "general",
            text: "Authentication Bypass Using an Alternate Path or Channel",
            title: "CWE-288",
         },
         {
            category: "general",
            text: "Improper Validation of Integrity Check Value",
            title: "CWE-354",
         },
         {
            category: "general",
            text: "Integer Overflow or Wraparound",
            title: "CWE-190",
         },
         {
            category: "general",
            text: "Improper Resource Shutdown or Release",
            title: "CWE-404",
         },
         {
            category: "general",
            text: "Improper Access Control",
            title: "CWE-284",
         },
         {
            category: "general",
            text: "Improper Restriction of Operations within the Bounds of a Memory Buffer",
            title: "CWE-119",
         },
         {
            category: "general",
            text: "Inefficient Regular Expression Complexity",
            title: "CWE-1333",
         },
         {
            category: "general",
            text: "Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')",
            title: "CWE-1321",
         },
         {
            category: "general",
            text: "NULL Pointer Dereference",
            title: "CWE-476",
         },
         {
            category: "general",
            text: "Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')",
            title: "CWE-757",
         },
         {
            category: "general",
            text: "Improper Control of Generation of Code ('Code Injection')",
            title: "CWE-94",
         },
         {
            category: "general",
            text: "Uncontrolled Resource Consumption",
            title: "CWE-400",
         },
         {
            category: "general",
            text: "Allocation of Resources Without Limits or Throttling",
            title: "CWE-770",
         },
         {
            category: "general",
            text: "Deserialization of Untrusted Data",
            title: "CWE-502",
         },
         {
            category: "general",
            text: "Uncontrolled Recursion",
            title: "CWE-674",
         },
         {
            category: "general",
            text: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
            title: "CWE-22",
         },
         {
            category: "general",
            text: "Improper Restriction of XML External Entity Reference",
            title: "CWE-611",
         },
         {
            category: "general",
            text: "Out-of-bounds Write",
            title: "CWE-787",
         },
         {
            category: "general",
            text: "Exposure of Sensitive Information to an Unauthorized Actor",
            title: "CWE-200",
         },
         {
            category: "general",
            text: "Heap-based Buffer Overflow",
            title: "CWE-122",
         },
         {
            category: "general",
            text: "Stack-based Buffer Overflow",
            title: "CWE-121",
         },
         {
            category: "general",
            text: "Loop with Unreachable Exit Condition ('Infinite Loop')",
            title: "CWE-835",
         },
         {
            category: "general",
            text: "Improper Input Validation",
            title: "CWE-20",
         },
         {
            category: "general",
            text: "Incorrect Default Permissions",
            title: "CWE-276",
         },
      ],
      publisher: {
         category: "coordinator",
         contact_details: "cert@ncsc.nl",
         name: "Nationaal Cyber Security Centrum",
         namespace: "https://www.ncsc.nl/",
      },
      references: [
         {
            category: "external",
            summary: "Reference - cveprojectv5; nvd; oracle",
            url: "https://www.oracle.com/security-alerts/cpujan2025.html",
         },
      ],
      title: "Kwetsbaarheden verholpen in Oracle Database producten",
      tracking: {
         current_release_date: "2025-01-22T13:30:16.354373Z",
         id: "NCSC-2025-0020",
         initial_release_date: "2025-01-22T13:30:16.354373Z",
         revision_history: [
            {
               date: "2025-01-22T13:30:16.354373Z",
               number: "0",
               summary: "Initiele versie",
            },
         ],
         status: "final",
         version: "1.0.0",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  category: "product_name",
                  name: "graal_development_kit_for_micronaut",
                  product: {
                     name: "graal_development_kit_for_micronaut",
                     product_id: "CSAFPID-1751216",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:graal_development_kit_for_micronaut:23.5-23.6:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "database_-_data_mining",
                  product: {
                     name: "database_-_data_mining",
                     product_id: "CSAFPID-1751200",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:database_-_data_mining:19.3-19.25:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "database_-_data_mining",
                  product: {
                     name: "database_-_data_mining",
                     product_id: "CSAFPID-1751199",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:database_-_data_mining:21.3-21.16:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "database_migration_assistant_for_unicode",
                  product: {
                     name: "database_migration_assistant_for_unicode",
                     product_id: "CSAFPID-1751212",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:database_migration_assistant_for_unicode:19.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "database_server",
                  product: {
                     name: "database_server",
                     product_id: "CSAFPID-1503604",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:database_server:_java_vm___23.4:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "database_-_graalvm_multilingual_engine",
                  product: {
                     name: "database_-_graalvm_multilingual_engine",
                     product_id: "CSAFPID-1751223",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:database_-_graalvm_multilingual_engine:21.4-21.16:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "database_-_graalvm_multilingual_engine",
                  product: {
                     name: "database_-_graalvm_multilingual_engine",
                     product_id: "CSAFPID-1751224",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:database_-_graalvm_multilingual_engine:23.5-23.6:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "application_express",
                  product: {
                     name: "application_express",
                     product_id: "CSAFPID-1503575",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:application_express:23.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "application_express",
                  product: {
                     name: "application_express",
                     product_id: "CSAFPID-1673188",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:application_express:24.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "goldengate",
                  product: {
                     name: "goldengate",
                     product_id: "CSAFPID-342816",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:goldengate:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "goldengate_big_data_and_application_adapters",
                  product: {
                     name: "goldengate_big_data_and_application_adapters",
                     product_id: "CSAFPID-816845",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "goldengate_big_data_and_application_adapters",
                  product: {
                     name: "goldengate_big_data_and_application_adapters",
                     product_id: "CSAFPID-1650825",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:19.1.0.0.0-19.1.0.0.18:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "goldengate_big_data_and_application_adapters",
                  product: {
                     name: "goldengate_big_data_and_application_adapters",
                     product_id: "CSAFPID-1751298",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:21.3.0.0.0-21.16.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "goldengate_big_data_and_application_adapters",
                  product: {
                     name: "goldengate_big_data_and_application_adapters",
                     product_id: "CSAFPID-1751299",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:goldengate_big_data_and_application_adapters:23.4-23.6:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "goldengate",
                  product: {
                     name: "goldengate",
                     product_id: "CSAFPID-1650767",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:goldengate:19.1.0.0.0-19.23.0.0.240716:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "goldengate",
                  product: {
                     name: "goldengate",
                     product_id: "CSAFPID-485902",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:goldengate:19.1.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "goldengate",
                  product: {
                     name: "goldengate",
                     product_id: "CSAFPID-1503736",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:goldengate:19.23.0.0.240716:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "goldengate",
                  product: {
                     name: "goldengate",
                     product_id: "CSAFPID-1503739",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:goldengate:21.14:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "goldengate",
                  product: {
                     name: "goldengate",
                     product_id: "CSAFPID-1751093",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:goldengate:21.16:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "goldengate",
                  product: {
                     name: "goldengate",
                     product_id: "CSAFPID-1751094",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:goldengate:23.4:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "goldengate",
                  product: {
                     name: "goldengate",
                     product_id: "CSAFPID-1751095",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:goldengate:23.6:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "goldengate",
                  product: {
                     name: "goldengate",
                     product_id: "CSAFPID-1751204",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:goldengate:23.4-23.6:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "goldengate",
                  product: {
                     name: "goldengate",
                     product_id: "CSAFPID-1503738",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:goldengate:21.3:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "goldengate",
                  product: {
                     name: "goldengate",
                     product_id: "CSAFPID-1751203",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:goldengate:21.3-21.16:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "goldengate",
                  product: {
                     name: "goldengate",
                     product_id: "CSAFPID-1650765",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:goldengate:21.3-21.14:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "rest_data_services",
                  product: {
                     name: "rest_data_services",
                     product_id: "CSAFPID-711746",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:rest_data_services:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "rest_data_services",
                  product: {
                     name: "rest_data_services",
                     product_id: "CSAFPID-1751305",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:rest_data_services:24.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "rest_data_services",
                  product: {
                     name: "rest_data_services",
                     product_id: "CSAFPID-1751304",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:rest_data_services:24.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "secure_backup",
                  product: {
                     name: "secure_backup",
                     product_id: "CSAFPID-667692",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:secure_backup:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "secure_backup",
                  product: {
                     name: "secure_backup",
                     product_id: "CSAFPID-345049",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:secure_backup:18.1.0.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "secure_backup",
                  product: {
                     name: "secure_backup",
                     product_id: "CSAFPID-611417",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:secure_backup:18.1.0.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "secure_backup",
                  product: {
                     name: "secure_backup",
                     product_id: "CSAFPID-1673422",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:secure_backup:19.1.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
            ],
            category: "vendor",
            name: "oracle",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2024-38998",
         cwe: {
            id: "CWE-1321",
            name: "Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')",
         },
         notes: [
            {
               category: "other",
               text: "Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')",
               title: "CWE-1321",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1503575",
               "CSAFPID-1673188",
               "CSAFPID-1751204",
               "CSAFPID-1751203",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38998",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38998.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1503575",
                  "CSAFPID-1673188",
                  "CSAFPID-1751204",
                  "CSAFPID-1751203",
               ],
            },
         ],
         title: "CVE-2024-38998",
      },
      {
         cve: "CVE-2024-38999",
         cwe: {
            id: "CWE-1321",
            name: "Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')",
         },
         notes: [
            {
               category: "other",
               text: "Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')",
               title: "CWE-1321",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1503575",
               "CSAFPID-1673188",
               "CSAFPID-1751204",
               "CSAFPID-1751203",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38999",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38999.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 10,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1503575",
                  "CSAFPID-1673188",
                  "CSAFPID-1751204",
                  "CSAFPID-1751203",
               ],
            },
         ],
         title: "CVE-2024-38999",
      },
      {
         cve: "CVE-2024-45490",
         cwe: {
            id: "CWE-190",
            name: "Integer Overflow or Wraparound",
         },
         notes: [
            {
               category: "other",
               text: "Integer Overflow or Wraparound",
               title: "CWE-190",
            },
            {
               category: "other",
               text: "Incorrect Calculation of Buffer Size",
               title: "CWE-131",
            },
            {
               category: "other",
               text: "Improper Restriction of XML External Entity Reference",
               title: "CWE-611",
            },
         ],
         references: [
            {
               category: "self",
               summary: "CVE-2024-45490",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-45490.json",
            },
         ],
         title: "CVE-2024-45490",
      },
      {
         cve: "CVE-2024-45491",
         cwe: {
            id: "CWE-190",
            name: "Integer Overflow or Wraparound",
         },
         notes: [
            {
               category: "other",
               text: "Integer Overflow or Wraparound",
               title: "CWE-190",
            },
         ],
         references: [
            {
               category: "self",
               summary: "CVE-2024-45491",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-45491.json",
            },
         ],
         title: "CVE-2024-45491",
      },
      {
         cve: "CVE-2024-45492",
         cwe: {
            id: "CWE-190",
            name: "Integer Overflow or Wraparound",
         },
         notes: [
            {
               category: "other",
               text: "Integer Overflow or Wraparound",
               title: "CWE-190",
            },
         ],
         references: [
            {
               category: "self",
               summary: "CVE-2024-45492",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-45492.json",
            },
         ],
         title: "CVE-2024-45492",
      },
      {
         cve: "CVE-2024-45772",
         cwe: {
            id: "CWE-502",
            name: "Deserialization of Untrusted Data",
         },
         notes: [
            {
               category: "other",
               text: "Deserialization of Untrusted Data",
               title: "CWE-502",
            },
         ],
         references: [
            {
               category: "self",
               summary: "CVE-2024-45772",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-45772.json",
            },
         ],
         title: "CVE-2024-45772",
      },
      {
         cve: "CVE-2024-47554",
         cwe: {
            id: "CWE-400",
            name: "Uncontrolled Resource Consumption",
         },
         notes: [
            {
               category: "other",
               text: "Uncontrolled Resource Consumption",
               title: "CWE-400",
            },
         ],
         references: [
            {
               category: "self",
               summary: "CVE-2024-47554",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-47554.json",
            },
         ],
         title: "CVE-2024-47554",
      },
      {
         cve: "CVE-2024-47561",
         cwe: {
            id: "CWE-502",
            name: "Deserialization of Untrusted Data",
         },
         notes: [
            {
               category: "other",
               text: "Deserialization of Untrusted Data",
               title: "CWE-502",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1650825",
               "CSAFPID-1751298",
               "CSAFPID-1751299",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-47561",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-47561.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1650825",
                  "CSAFPID-1751298",
                  "CSAFPID-1751299",
               ],
            },
         ],
         title: "CVE-2024-47561",
      },
      {
         cve: "CVE-2024-50379",
         cwe: {
            id: "CWE-367",
            name: "Time-of-check Time-of-use (TOCTOU) Race Condition",
         },
         notes: [
            {
               category: "other",
               text: "Time-of-check Time-of-use (TOCTOU) Race Condition",
               title: "CWE-367",
            },
         ],
         references: [
            {
               category: "self",
               summary: "CVE-2024-50379",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-50379.json",
            },
         ],
         title: "CVE-2024-50379",
      },
      {
         cve: "CVE-2024-52316",
         cwe: {
            id: "CWE-391",
            name: "Unchecked Error Condition",
         },
         notes: [
            {
               category: "other",
               text: "Unchecked Error Condition",
               title: "CWE-391",
            },
            {
               category: "other",
               text: "Authentication Bypass Using an Alternate Path or Channel",
               title: "CWE-288",
            },
         ],
         references: [
            {
               category: "self",
               summary: "CVE-2024-52316",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-52316.json",
            },
         ],
         title: "CVE-2024-52316",
      },
      {
         cve: "CVE-2024-54677",
         cwe: {
            id: "CWE-400",
            name: "Uncontrolled Resource Consumption",
         },
         notes: [
            {
               category: "other",
               text: "Uncontrolled Resource Consumption",
               title: "CWE-400",
            },
         ],
         references: [
            {
               category: "self",
               summary: "CVE-2024-54677",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-54677.json",
            },
         ],
         title: "CVE-2024-54677",
      },
      {
         cve: "CVE-2024-56337",
         cwe: {
            id: "CWE-367",
            name: "Time-of-check Time-of-use (TOCTOU) Race Condition",
         },
         notes: [
            {
               category: "other",
               text: "Time-of-check Time-of-use (TOCTOU) Race Condition",
               title: "CWE-367",
            },
         ],
         references: [
            {
               category: "self",
               summary: "CVE-2024-56337",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-56337.json",
            },
         ],
         title: "CVE-2024-56337",
      },
      {
         cve: "CVE-2025-21553",
         references: [
            {
               category: "self",
               summary: "CVE-2025-21553",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-21553.json",
            },
         ],
         title: "CVE-2025-21553",
      },
      {
         cve: "CVE-2025-21557",
         product_status: {
            known_affected: [
               "CSAFPID-1503575",
               "CSAFPID-1673188",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2025-21557",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-21557.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.4,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1503575",
                  "CSAFPID-1673188",
               ],
            },
         ],
         title: "CVE-2025-21557",
      },
      {
         cve: "CVE-2022-26345",
         cwe: {
            id: "CWE-427",
            name: "Uncontrolled Search Path Element",
         },
         notes: [
            {
               category: "other",
               text: "Uncontrolled Search Path Element",
               title: "CWE-427",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751199",
               "CSAFPID-1751200",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2022-26345",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-26345.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6.7,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751199",
                  "CSAFPID-1751200",
               ],
            },
         ],
         title: "CVE-2022-26345",
      },
      {
         cve: "CVE-2023-27043",
         cwe: {
            id: "CWE-20",
            name: "Improper Input Validation",
         },
         notes: [
            {
               category: "other",
               text: "Improper Input Validation",
               title: "CWE-20",
            },
         ],
         references: [
            {
               category: "self",
               summary: "CVE-2023-27043",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-27043.json",
            },
         ],
         title: "CVE-2023-27043",
      },
      {
         cve: "CVE-2023-36730",
         cwe: {
            id: "CWE-20",
            name: "Improper Input Validation",
         },
         notes: [
            {
               category: "other",
               text: "Improper Input Validation",
               title: "CWE-20",
            },
            {
               category: "other",
               text: "Heap-based Buffer Overflow",
               title: "CWE-122",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751203",
               "CSAFPID-1751204",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2023-36730",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36730.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.8,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751203",
                  "CSAFPID-1751204",
               ],
            },
         ],
         title: "CVE-2023-36730",
      },
      {
         cve: "CVE-2023-36785",
         cwe: {
            id: "CWE-191",
            name: "Integer Underflow (Wrap or Wraparound)",
         },
         notes: [
            {
               category: "other",
               text: "Integer Underflow (Wrap or Wraparound)",
               title: "CWE-191",
            },
            {
               category: "other",
               text: "Improper Input Validation",
               title: "CWE-20",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751203",
               "CSAFPID-1751204",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2023-36785",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-36785.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.8,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751203",
                  "CSAFPID-1751204",
               ],
            },
         ],
         title: "CVE-2023-36785",
      },
      {
         cve: "CVE-2023-48795",
         cwe: {
            id: "CWE-222",
            name: "Truncation of Security-relevant Information",
         },
         notes: [
            {
               category: "other",
               text: "Truncation of Security-relevant Information",
               title: "CWE-222",
            },
            {
               category: "other",
               text: "Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')",
               title: "CWE-757",
            },
            {
               category: "other",
               text: "Improper Validation of Integrity Check Value",
               title: "CWE-354",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1650765",
               "CSAFPID-1650767",
               "CSAFPID-342816",
               "CSAFPID-667692",
               "CSAFPID-711746",
               "CSAFPID-816845",
               "CSAFPID-1503575",
               "CSAFPID-1503604",
               "CSAFPID-1751212",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2023-48795",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-48795.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1650765",
                  "CSAFPID-1650767",
                  "CSAFPID-342816",
                  "CSAFPID-667692",
                  "CSAFPID-711746",
                  "CSAFPID-816845",
                  "CSAFPID-1503575",
                  "CSAFPID-1503604",
                  "CSAFPID-1751212",
               ],
            },
         ],
         title: "CVE-2023-48795",
      },
      {
         cve: "CVE-2023-52428",
         cwe: {
            id: "CWE-400",
            name: "Uncontrolled Resource Consumption",
         },
         notes: [
            {
               category: "other",
               text: "Uncontrolled Resource Consumption",
               title: "CWE-400",
            },
            {
               category: "other",
               text: "Allocation of Resources Without Limits or Throttling",
               title: "CWE-770",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-342816",
               "CSAFPID-1503575",
               "CSAFPID-1503604",
               "CSAFPID-816845",
               "CSAFPID-711746",
               "CSAFPID-1751216",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2023-52428",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-52428.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-342816",
                  "CSAFPID-1503575",
                  "CSAFPID-1503604",
                  "CSAFPID-816845",
                  "CSAFPID-711746",
                  "CSAFPID-1751216",
               ],
            },
         ],
         title: "CVE-2023-52428",
      },
      {
         cve: "CVE-2024-2961",
         cwe: {
            id: "CWE-787",
            name: "Out-of-bounds Write",
         },
         notes: [
            {
               category: "other",
               text: "Out-of-bounds Write",
               title: "CWE-787",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1503575",
               "CSAFPID-1503604",
               "CSAFPID-342816",
               "CSAFPID-816845",
               "CSAFPID-711746",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-2961",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-2961.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.8,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1503575",
                  "CSAFPID-1503604",
                  "CSAFPID-342816",
                  "CSAFPID-816845",
                  "CSAFPID-711746",
               ],
            },
         ],
         title: "CVE-2024-2961",
      },
      {
         cve: "CVE-2024-4030",
         cwe: {
            id: "CWE-276",
            name: "Incorrect Default Permissions",
         },
         notes: [
            {
               category: "other",
               text: "Incorrect Default Permissions",
               title: "CWE-276",
            },
         ],
         references: [
            {
               category: "self",
               summary: "CVE-2024-4030",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-4030.json",
            },
         ],
         title: "CVE-2024-4030",
      },
      {
         cve: "CVE-2024-4032",
         cwe: {
            id: "CWE-440",
            name: "Expected Behavior Violation",
         },
         notes: [
            {
               category: "other",
               text: "Expected Behavior Violation",
               title: "CWE-440",
            },
         ],
         references: [
            {
               category: "self",
               summary: "CVE-2024-4032",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-4032.json",
            },
         ],
         title: "CVE-2024-4032",
      },
      {
         cve: "CVE-2024-6232",
         cwe: {
            id: "CWE-1333",
            name: "Inefficient Regular Expression Complexity",
         },
         notes: [
            {
               category: "other",
               text: "Inefficient Regular Expression Complexity",
               title: "CWE-1333",
            },
         ],
         references: [
            {
               category: "self",
               summary: "CVE-2024-6232",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-6232.json",
            },
         ],
         title: "CVE-2024-6232",
      },
      {
         cve: "CVE-2024-6763",
         cwe: {
            id: "CWE-1286",
            name: "Improper Validation of Syntactic Correctness of Input",
         },
         notes: [
            {
               category: "other",
               text: "Improper Validation of Syntactic Correctness of Input",
               title: "CWE-1286",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751304",
               "CSAFPID-1751305",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-6763",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-6763.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751304",
                  "CSAFPID-1751305",
               ],
            },
         ],
         title: "CVE-2024-6763",
      },
      {
         cve: "CVE-2024-6923",
         cwe: {
            id: "CWE-502",
            name: "Deserialization of Untrusted Data",
         },
         notes: [
            {
               category: "other",
               text: "Deserialization of Untrusted Data",
               title: "CWE-502",
            },
            {
               category: "other",
               text: "Improper Control of Generation of Code ('Code Injection')",
               title: "CWE-94",
            },
         ],
         references: [
            {
               category: "self",
               summary: "CVE-2024-6923",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-6923.json",
            },
         ],
         title: "CVE-2024-6923",
      },
      {
         cve: "CVE-2024-7254",
         cwe: {
            id: "CWE-20",
            name: "Improper Input Validation",
         },
         notes: [
            {
               category: "other",
               text: "Improper Input Validation",
               title: "CWE-20",
            },
            {
               category: "other",
               text: "Uncontrolled Recursion",
               title: "CWE-674",
            },
         ],
         references: [
            {
               category: "self",
               summary: "CVE-2024-7254",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-7254.json",
            },
         ],
         title: "CVE-2024-7254",
      },
      {
         cve: "CVE-2024-7592",
         cwe: {
            id: "CWE-400",
            name: "Uncontrolled Resource Consumption",
         },
         notes: [
            {
               category: "other",
               text: "Uncontrolled Resource Consumption",
               title: "CWE-400",
            },
         ],
         references: [
            {
               category: "self",
               summary: "CVE-2024-7592",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-7592.json",
            },
         ],
         title: "CVE-2024-7592",
      },
      {
         cve: "CVE-2024-8088",
         cwe: {
            id: "CWE-835",
            name: "Loop with Unreachable Exit Condition ('Infinite Loop')",
         },
         notes: [
            {
               category: "other",
               text: "Loop with Unreachable Exit Condition ('Infinite Loop')",
               title: "CWE-835",
            },
         ],
         references: [
            {
               category: "self",
               summary: "CVE-2024-8088",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-8088.json",
            },
         ],
         title: "CVE-2024-8088",
      },
      {
         cve: "CVE-2024-8927",
         cwe: {
            id: "CWE-284",
            name: "Improper Access Control",
         },
         notes: [
            {
               category: "other",
               text: "Improper Access Control",
               title: "CWE-284",
            },
            {
               category: "other",
               text: "Insufficient Granularity of Access Control",
               title: "CWE-1220",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1673422",
               "CSAFPID-345049",
               "CSAFPID-611417",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-8927",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-8927.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1673422",
                  "CSAFPID-345049",
                  "CSAFPID-611417",
               ],
            },
         ],
         title: "CVE-2024-8927",
      },
      {
         cve: "CVE-2024-11053",
         cwe: {
            id: "CWE-200",
            name: "Exposure of Sensitive Information to an Unauthorized Actor",
         },
         notes: [
            {
               category: "other",
               text: "Exposure of Sensitive Information to an Unauthorized Actor",
               title: "CWE-200",
            },
         ],
         references: [
            {
               category: "self",
               summary: "CVE-2024-11053",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-11053.json",
            },
         ],
         title: "CVE-2024-11053",
      },
      {
         cve: "CVE-2024-21211",
         cwe: {
            id: "CWE-922",
            name: "Insecure Storage of Sensitive Information",
         },
         notes: [
            {
               category: "other",
               text: "Insecure Storage of Sensitive Information",
               title: "CWE-922",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751223",
               "CSAFPID-1751224",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-21211",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21211.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 3.7,
                  baseSeverity: "LOW",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751223",
                  "CSAFPID-1751224",
               ],
            },
         ],
         title: "CVE-2024-21211",
      },
      {
         cve: "CVE-2024-22262",
         cwe: {
            id: "CWE-601",
            name: "URL Redirection to Untrusted Site ('Open Redirect')",
         },
         notes: [
            {
               category: "other",
               text: "URL Redirection to Untrusted Site ('Open Redirect')",
               title: "CWE-601",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1650825",
               "CSAFPID-1503575",
               "CSAFPID-1503604",
               "CSAFPID-342816",
               "CSAFPID-816845",
               "CSAFPID-711746",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-22262",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-22262.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.1,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1650825",
                  "CSAFPID-1503575",
                  "CSAFPID-1503604",
                  "CSAFPID-342816",
                  "CSAFPID-816845",
                  "CSAFPID-711746",
               ],
            },
         ],
         title: "CVE-2024-22262",
      },
      {
         cve: "CVE-2024-24789",
         cwe: {
            id: "CWE-200",
            name: "Exposure of Sensitive Information to an Unauthorized Actor",
         },
         notes: [
            {
               category: "other",
               text: "Exposure of Sensitive Information to an Unauthorized Actor",
               title: "CWE-200",
            },
            {
               category: "other",
               text: "Improper Input Validation",
               title: "CWE-20",
            },
            {
               category: "other",
               text: "Improper Validation of Specified Type of Input",
               title: "CWE-1287",
            },
         ],
         references: [
            {
               category: "self",
               summary: "CVE-2024-24789",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-24789.json",
            },
         ],
         title: "CVE-2024-24789",
      },
      {
         cve: "CVE-2024-24790",
         cwe: {
            id: "CWE-284",
            name: "Improper Access Control",
         },
         notes: [
            {
               category: "other",
               text: "Improper Access Control",
               title: "CWE-284",
            },
            {
               category: "other",
               text: "Misinterpretation of Input",
               title: "CWE-115",
            },
            {
               category: "other",
               text: "Improper Validation of Specified Type of Input",
               title: "CWE-1287",
            },
         ],
         references: [
            {
               category: "self",
               summary: "CVE-2024-24790",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-24790.json",
            },
         ],
         title: "CVE-2024-24790",
      },
      {
         cve: "CVE-2024-24791",
         cwe: {
            id: "CWE-404",
            name: "Improper Resource Shutdown or Release",
         },
         notes: [
            {
               category: "other",
               text: "Improper Resource Shutdown or Release",
               title: "CWE-404",
            },
            {
               category: "other",
               text: "Improper Input Validation",
               title: "CWE-20",
            },
         ],
         references: [
            {
               category: "self",
               summary: "CVE-2024-24791",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-24791.json",
            },
         ],
         title: "CVE-2024-24791",
      },
      {
         cve: "CVE-2024-28757",
         cwe: {
            id: "CWE-611",
            name: "Improper Restriction of XML External Entity Reference",
         },
         notes: [
            {
               category: "other",
               text: "Improper Restriction of XML External Entity Reference",
               title: "CWE-611",
            },
            {
               category: "other",
               text: "Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion')",
               title: "CWE-776",
            },
            {
               category: "other",
               text: "Improper Input Validation",
               title: "CWE-20",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1503575",
               "CSAFPID-1503604",
               "CSAFPID-342816",
               "CSAFPID-816845",
               "CSAFPID-711746",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-28757",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-28757.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1503575",
                  "CSAFPID-1503604",
                  "CSAFPID-342816",
                  "CSAFPID-816845",
                  "CSAFPID-711746",
               ],
            },
         ],
         title: "CVE-2024-28757",
      },
      {
         cve: "CVE-2024-33599",
         cwe: {
            id: "CWE-119",
            name: "Improper Restriction of Operations within the Bounds of a Memory Buffer",
         },
         notes: [
            {
               category: "other",
               text: "Improper Restriction of Operations within the Bounds of a Memory Buffer",
               title: "CWE-119",
            },
            {
               category: "other",
               text: "Stack-based Buffer Overflow",
               title: "CWE-121",
            },
         ],
         references: [
            {
               category: "self",
               summary: "CVE-2024-33599",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-33599.json",
            },
         ],
         title: "CVE-2024-33599",
      },
      {
         cve: "CVE-2024-33600",
         cwe: {
            id: "CWE-476",
            name: "NULL Pointer Dereference",
         },
         notes: [
            {
               category: "other",
               text: "NULL Pointer Dereference",
               title: "CWE-476",
            },
         ],
         references: [
            {
               category: "self",
               summary: "CVE-2024-33600",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-33600.json",
            },
         ],
         title: "CVE-2024-33600",
      },
      {
         cve: "CVE-2024-33601",
         cwe: {
            id: "CWE-703",
            name: "Improper Check or Handling of Exceptional Conditions",
         },
         notes: [
            {
               category: "other",
               text: "Improper Check or Handling of Exceptional Conditions",
               title: "CWE-703",
            },
            {
               category: "other",
               text: "Reachable Assertion",
               title: "CWE-617",
            },
         ],
         references: [
            {
               category: "self",
               summary: "CVE-2024-33601",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-33601.json",
            },
         ],
         title: "CVE-2024-33601",
      },
      {
         cve: "CVE-2024-33602",
         cwe: {
            id: "CWE-466",
            name: "Return of Pointer Value Outside of Expected Range",
         },
         notes: [
            {
               category: "other",
               text: "Return of Pointer Value Outside of Expected Range",
               title: "CWE-466",
            },
            {
               category: "other",
               text: "Improper Check or Handling of Exceptional Conditions",
               title: "CWE-703",
            },
         ],
         references: [
            {
               category: "self",
               summary: "CVE-2024-33602",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-33602.json",
            },
         ],
         title: "CVE-2024-33602",
      },
      {
         cve: "CVE-2024-38819",
         cwe: {
            id: "CWE-22",
            name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
         },
         notes: [
            {
               category: "other",
               text: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
               title: "CWE-22",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1650825",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38819",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38819.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1650825",
               ],
            },
         ],
         title: "CVE-2024-38819",
      },
      {
         cve: "CVE-2024-38820",
         cwe: {
            id: "CWE-284",
            name: "Improper Access Control",
         },
         notes: [
            {
               category: "other",
               text: "Improper Access Control",
               title: "CWE-284",
            },
            {
               category: "other",
               text: "Improper Handling of Case Sensitivity",
               title: "CWE-178",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1650825",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38820",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38820.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1650825",
               ],
            },
         ],
         title: "CVE-2024-38820",
      },
   ],
}

ncsc-2025-0021

Vulnerability from csaf_ncscnl

Published

2025-01-22 13:30

Modified

2025-01-22 13:30

Summary

Kwetsbaarheden verholpen in Oracle Communications

Notes

Feiten

Oracle heeft meerdere kwetsbaarheden verholpen in zijn Communicatieproducten, waaronder Oracle Communications Unified Assurance, Oracle Communications Cloud Native Core Network Function en Oracle Communications Order and Service Management.

Interpretaties

De kwetsbaarheden stellen ongeauthenticeerde kwaadwillenden in staat om Denial of Service (DoS) aanvallen uit te voeren of om ongeautoriseerde toegang tot gevoelige gegevens te verkrijgen. Specifieke versies, zoals 24.2.0 en 24.3.0 van de Cloud Native Core Network Function, zijn bijzonder kwetsbaar. Kwaadwillenden kunnen deze kwetsbaarheden misbruiken door speciaal geprepareerde HTTP-verzoeken te sturen naar het kwetsbare systeem.

Oplossingen

Oracle heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.

Kans

medium

Schade

high

CWE-1395

Dependency on Vulnerable Third-Party Component

CWE-670

Always-Incorrect Control Flow Implementation

CWE-405

Asymmetric Resource Consumption (Amplification)

CWE-35

Path Traversal: '.../...//'

CWE-466

Return of Pointer Value Outside of Expected Range

CWE-338

Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)

CWE-676

Use of Potentially Dangerous Function

CWE-606

Unchecked Input for Loop Condition

CWE-450

Multiple Interpretations of UI Input

CWE-131

Incorrect Calculation of Buffer Size

CWE-328

Use of Weak Hash

CWE-130

Improper Handling of Length Parameter Inconsistency

CWE-669

Incorrect Resource Transfer Between Spheres

CWE-1220

Insufficient Granularity of Access Control

CWE-201

Insertion of Sensitive Information Into Sent Data

CWE-349

Acceptance of Extraneous Untrusted Data With Trusted Data

CWE-755

Improper Handling of Exceptional Conditions

CWE-347

Improper Verification of Cryptographic Signature

CWE-834

Excessive Iteration

CWE-178

Improper Handling of Case Sensitivity

CWE-367

Time-of-check Time-of-use (TOCTOU) Race Condition

CWE-440

Expected Behavior Violation

CWE-415

Double Free

CWE-311

Missing Encryption of Sensitive Data

CWE-924

Improper Enforcement of Message Integrity During Transmission in a Communication Channel

CWE-754

Improper Check for Unusual or Exceptional Conditions

CWE-703

Improper Check or Handling of Exceptional Conditions

CWE-617

Reachable Assertion

CWE-427

Uncontrolled Search Path Element

CWE-836

Use of Password Hash Instead of Password for Authentication

CWE-680

Integer Overflow to Buffer Overflow

CWE-843

Access of Resource Using Incompatible Type ('Type Confusion')

CWE-23

Relative Path Traversal

CWE-116

Improper Encoding or Escaping of Output

CWE-345

Insufficient Verification of Data Authenticity

CWE-203

Observable Discrepancy

CWE-354

Improper Validation of Integrity Check Value

CWE-325

Missing Cryptographic Step

CWE-190

Integer Overflow or Wraparound

CWE-451

User Interface (UI) Misrepresentation of Critical Information

CWE-61

UNIX Symbolic Link (Symlink) Following

CWE-552

Files or Directories Accessible to External Parties

CWE-639

Authorization Bypass Through User-Controlled Key

CWE-798

Use of Hard-coded Credentials

CWE-434

Unrestricted Upload of File with Dangerous Type

CWE-362

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

CWE-404

Improper Resource Shutdown or Release

CWE-284

Improper Access Control

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-1333

Inefficient Regular Expression Complexity

CWE-1321

Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

CWE-416

Use After Free

CWE-476

NULL Pointer Dereference

CWE-327

Use of a Broken or Risky Cryptographic Algorithm

CWE-400

Uncontrolled Resource Consumption

CWE-770

Allocation of Resources Without Limits or Throttling

CWE-502

Deserialization of Untrusted Data

CWE-248

Uncaught Exception

CWE-674

Uncontrolled Recursion

CWE-863

Incorrect Authorization

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CWE-611

Improper Restriction of XML External Entity Reference

CWE-787

Out-of-bounds Write

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

CWE-122

Heap-based Buffer Overflow

CWE-121

Stack-based Buffer Overflow

CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CWE-835

Loop with Unreachable Exit Condition ('Infinite Loop')

CWE-269

Improper Privilege Management

CWE-20

Improper Input Validation

CWE-209

Generation of Error Message Containing Sensitive Information

CWE-276

Incorrect Default Permissions

CWE-294

Authentication Bypass by Capture-replay

CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

JSON

To clipboard

{
   document: {
      category: "csaf_security_advisory",
      csaf_version: "2.0",
      distribution: {
         tlp: {
            label: "WHITE",
         },
      },
      lang: "nl",
      notes: [
         {
            category: "legal_disclaimer",
            text: "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n    NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n    NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n    This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.",
         },
         {
            category: "description",
            text: "Oracle heeft meerdere kwetsbaarheden verholpen in zijn Communicatieproducten, waaronder Oracle Communications Unified Assurance, Oracle Communications Cloud Native Core Network Function en Oracle Communications Order and Service Management.",
            title: "Feiten",
         },
         {
            category: "description",
            text: "De kwetsbaarheden stellen ongeauthenticeerde kwaadwillenden in staat om Denial of Service (DoS) aanvallen uit te voeren of om ongeautoriseerde toegang tot gevoelige gegevens te verkrijgen. Specifieke versies, zoals 24.2.0 en 24.3.0 van de Cloud Native Core Network Function, zijn bijzonder kwetsbaar. Kwaadwillenden kunnen deze kwetsbaarheden misbruiken door speciaal geprepareerde HTTP-verzoeken te sturen naar het kwetsbare systeem.",
            title: "Interpretaties",
         },
         {
            category: "description",
            text: "Oracle heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
            title: "Oplossingen",
         },
         {
            category: "general",
            text: "medium",
            title: "Kans",
         },
         {
            category: "general",
            text: "high",
            title: "Schade",
         },
         {
            category: "general",
            text: "Dependency on Vulnerable Third-Party Component",
            title: "CWE-1395",
         },
         {
            category: "general",
            text: "Always-Incorrect Control Flow Implementation",
            title: "CWE-670",
         },
         {
            category: "general",
            text: "Asymmetric Resource Consumption (Amplification)",
            title: "CWE-405",
         },
         {
            category: "general",
            text: "Path Traversal: '.../...//'",
            title: "CWE-35",
         },
         {
            category: "general",
            text: "Return of Pointer Value Outside of Expected Range",
            title: "CWE-466",
         },
         {
            category: "general",
            text: "Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)",
            title: "CWE-338",
         },
         {
            category: "general",
            text: "Use of Potentially Dangerous Function",
            title: "CWE-676",
         },
         {
            category: "general",
            text: "Unchecked Input for Loop Condition",
            title: "CWE-606",
         },
         {
            category: "general",
            text: "Multiple Interpretations of UI Input",
            title: "CWE-450",
         },
         {
            category: "general",
            text: "Incorrect Calculation of Buffer Size",
            title: "CWE-131",
         },
         {
            category: "general",
            text: "Use of Weak Hash",
            title: "CWE-328",
         },
         {
            category: "general",
            text: "Improper Handling of Length Parameter Inconsistency",
            title: "CWE-130",
         },
         {
            category: "general",
            text: "Incorrect Resource Transfer Between Spheres",
            title: "CWE-669",
         },
         {
            category: "general",
            text: "Insufficient Granularity of Access Control",
            title: "CWE-1220",
         },
         {
            category: "general",
            text: "Insertion of Sensitive Information Into Sent Data",
            title: "CWE-201",
         },
         {
            category: "general",
            text: "Acceptance of Extraneous Untrusted Data With Trusted Data",
            title: "CWE-349",
         },
         {
            category: "general",
            text: "Improper Handling of Exceptional Conditions",
            title: "CWE-755",
         },
         {
            category: "general",
            text: "Improper Verification of Cryptographic Signature",
            title: "CWE-347",
         },
         {
            category: "general",
            text: "Excessive Iteration",
            title: "CWE-834",
         },
         {
            category: "general",
            text: "Improper Handling of Case Sensitivity",
            title: "CWE-178",
         },
         {
            category: "general",
            text: "Time-of-check Time-of-use (TOCTOU) Race Condition",
            title: "CWE-367",
         },
         {
            category: "general",
            text: "Expected Behavior Violation",
            title: "CWE-440",
         },
         {
            category: "general",
            text: "Double Free",
            title: "CWE-415",
         },
         {
            category: "general",
            text: "Missing Encryption of Sensitive Data",
            title: "CWE-311",
         },
         {
            category: "general",
            text: "Improper Enforcement of Message Integrity During Transmission in a Communication Channel",
            title: "CWE-924",
         },
         {
            category: "general",
            text: "Improper Check for Unusual or Exceptional Conditions",
            title: "CWE-754",
         },
         {
            category: "general",
            text: "Improper Check or Handling of Exceptional Conditions",
            title: "CWE-703",
         },
         {
            category: "general",
            text: "Reachable Assertion",
            title: "CWE-617",
         },
         {
            category: "general",
            text: "Uncontrolled Search Path Element",
            title: "CWE-427",
         },
         {
            category: "general",
            text: "Use of Password Hash Instead of Password for Authentication",
            title: "CWE-836",
         },
         {
            category: "general",
            text: "Integer Overflow to Buffer Overflow",
            title: "CWE-680",
         },
         {
            category: "general",
            text: "Access of Resource Using Incompatible Type ('Type Confusion')",
            title: "CWE-843",
         },
         {
            category: "general",
            text: "Relative Path Traversal",
            title: "CWE-23",
         },
         {
            category: "general",
            text: "Improper Encoding or Escaping of Output",
            title: "CWE-116",
         },
         {
            category: "general",
            text: "Insufficient Verification of Data Authenticity",
            title: "CWE-345",
         },
         {
            category: "general",
            text: "Observable Discrepancy",
            title: "CWE-203",
         },
         {
            category: "general",
            text: "Improper Validation of Integrity Check Value",
            title: "CWE-354",
         },
         {
            category: "general",
            text: "Missing Cryptographic Step",
            title: "CWE-325",
         },
         {
            category: "general",
            text: "Integer Overflow or Wraparound",
            title: "CWE-190",
         },
         {
            category: "general",
            text: "User Interface (UI) Misrepresentation of Critical Information",
            title: "CWE-451",
         },
         {
            category: "general",
            text: "UNIX Symbolic Link (Symlink) Following",
            title: "CWE-61",
         },
         {
            category: "general",
            text: "Files or Directories Accessible to External Parties",
            title: "CWE-552",
         },
         {
            category: "general",
            text: "Authorization Bypass Through User-Controlled Key",
            title: "CWE-639",
         },
         {
            category: "general",
            text: "Use of Hard-coded Credentials",
            title: "CWE-798",
         },
         {
            category: "general",
            text: "Unrestricted Upload of File with Dangerous Type",
            title: "CWE-434",
         },
         {
            category: "general",
            text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')",
            title: "CWE-362",
         },
         {
            category: "general",
            text: "Improper Resource Shutdown or Release",
            title: "CWE-404",
         },
         {
            category: "general",
            text: "Improper Access Control",
            title: "CWE-284",
         },
         {
            category: "general",
            text: "Improper Restriction of Operations within the Bounds of a Memory Buffer",
            title: "CWE-119",
         },
         {
            category: "general",
            text: "Inefficient Regular Expression Complexity",
            title: "CWE-1333",
         },
         {
            category: "general",
            text: "Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')",
            title: "CWE-1321",
         },
         {
            category: "general",
            text: "Use After Free",
            title: "CWE-416",
         },
         {
            category: "general",
            text: "NULL Pointer Dereference",
            title: "CWE-476",
         },
         {
            category: "general",
            text: "Use of a Broken or Risky Cryptographic Algorithm",
            title: "CWE-327",
         },
         {
            category: "general",
            text: "Uncontrolled Resource Consumption",
            title: "CWE-400",
         },
         {
            category: "general",
            text: "Allocation of Resources Without Limits or Throttling",
            title: "CWE-770",
         },
         {
            category: "general",
            text: "Deserialization of Untrusted Data",
            title: "CWE-502",
         },
         {
            category: "general",
            text: "Uncaught Exception",
            title: "CWE-248",
         },
         {
            category: "general",
            text: "Uncontrolled Recursion",
            title: "CWE-674",
         },
         {
            category: "general",
            text: "Incorrect Authorization",
            title: "CWE-863",
         },
         {
            category: "general",
            text: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
            title: "CWE-22",
         },
         {
            category: "general",
            text: "Improper Restriction of XML External Entity Reference",
            title: "CWE-611",
         },
         {
            category: "general",
            text: "Out-of-bounds Write",
            title: "CWE-787",
         },
         {
            category: "general",
            text: "Exposure of Sensitive Information to an Unauthorized Actor",
            title: "CWE-200",
         },
         {
            category: "general",
            text: "Heap-based Buffer Overflow",
            title: "CWE-122",
         },
         {
            category: "general",
            text: "Stack-based Buffer Overflow",
            title: "CWE-121",
         },
         {
            category: "general",
            text: "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')",
            title: "CWE-120",
         },
         {
            category: "general",
            text: "Loop with Unreachable Exit Condition ('Infinite Loop')",
            title: "CWE-835",
         },
         {
            category: "general",
            text: "Improper Privilege Management",
            title: "CWE-269",
         },
         {
            category: "general",
            text: "Improper Input Validation",
            title: "CWE-20",
         },
         {
            category: "general",
            text: "Generation of Error Message Containing Sensitive Information",
            title: "CWE-209",
         },
         {
            category: "general",
            text: "Incorrect Default Permissions",
            title: "CWE-276",
         },
         {
            category: "general",
            text: "Authentication Bypass by Capture-replay",
            title: "CWE-294",
         },
         {
            category: "general",
            text: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
            title: "CWE-79",
         },
      ],
      publisher: {
         category: "coordinator",
         contact_details: "cert@ncsc.nl",
         name: "Nationaal Cyber Security Centrum",
         namespace: "https://www.ncsc.nl/",
      },
      references: [
         {
            category: "external",
            summary: "Reference - cveprojectv5; nvd; oracle",
            url: "https://www.oracle.com/security-alerts/cpujan2025.html",
         },
      ],
      title: "Kwetsbaarheden verholpen in Oracle Communications",
      tracking: {
         current_release_date: "2025-01-22T13:30:50.189632Z",
         id: "NCSC-2025-0021",
         initial_release_date: "2025-01-22T13:30:50.189632Z",
         revision_history: [
            {
               date: "2025-01-22T13:30:50.189632Z",
               number: "0",
               summary: "Initiele versie",
            },
         ],
         status: "final",
         version: "1.0.0",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1727475",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1635313",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:10.5:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1635305",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:12.11.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1635311",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:12.11.3:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1635312",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:12.11.4:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1635323",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:12.6.1.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1670430",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:14.0.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1674632",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:14.0.0.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1674630",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:14.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1635320",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:15.0.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1674633",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:17.0.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1670439",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:22.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1635322",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:23.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1670429",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:23.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1670435",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:23.2.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1670431",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:23.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1670436",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:23.3.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1670432",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:23.3.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1635321",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:23.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1635310",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:23.4.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1635318",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:23.4.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1674640",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:23.4.3:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1674642",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:23.4.4:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1670434",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:24.1.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1635316",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:24.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1674639",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:24.1.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1635314",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:24.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1674638",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:24.2.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1674637",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:24.2.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1635306",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:4.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1635307",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:4.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1635317",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:46.6.4:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1635319",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:46.6.5:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1670438",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:5.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1635324",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:5.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1635315",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:5.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1670433",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:9.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1674641",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:9.0.1.10.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1674635",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:9.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1674636",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:9.1.1.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1670437",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:9.1.1.7.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1674631",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:9.1.1.9.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1674634",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:9.1.5:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1635308",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:9.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications",
                  product: {
                     name: "communications",
                     product_id: "CSAFPID-1635309",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications:9.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications__10.4.0.4",
                  product: {
                     name: "communications__10.4.0.4",
                     product_id: "CSAFPID-1674629",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications__10.4.0.4:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications___23.4.2",
                  product: {
                     name: "communications___23.4.2",
                     product_id: "CSAFPID-1670442",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications___23.4.2:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications___23.4.3",
                  product: {
                     name: "communications___23.4.3",
                     product_id: "CSAFPID-1635325",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications___23.4.3:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications___23.4.4",
                  product: {
                     name: "communications___23.4.4",
                     product_id: "CSAFPID-1635326",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications___23.4.4:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications___23.4.5",
                  product: {
                     name: "communications___23.4.5",
                     product_id: "CSAFPID-1674645",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications___23.4.5:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications___23.4.6",
                  product: {
                     name: "communications___23.4.6",
                     product_id: "CSAFPID-1674646",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications___23.4.6:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications___24.2.0",
                  product: {
                     name: "communications___24.2.0",
                     product_id: "CSAFPID-1674644",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications___24.2.0:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications___7.2.1.0.0",
                  product: {
                     name: "communications___7.2.1.0.0",
                     product_id: "CSAFPID-1670441",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications___7.2.1.0.0:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications___8.6.0.6",
                  product: {
                     name: "communications___8.6.0.6",
                     product_id: "CSAFPID-1635327",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications___8.6.0.6:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications___8.6.0.8",
                  product: {
                     name: "communications___8.6.0.8",
                     product_id: "CSAFPID-1635328",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications___8.6.0.8:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications___9.0.2",
                  product: {
                     name: "communications___9.0.2",
                     product_id: "CSAFPID-1670440",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications___9.0.2:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications___9.0.3",
                  product: {
                     name: "communications___9.0.3",
                     product_id: "CSAFPID-1635329",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications___9.0.3:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications___9.1.1.8.0",
                  product: {
                     name: "communications___9.1.1.8.0",
                     product_id: "CSAFPID-1674643",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications___9.1.1.8.0:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_applications",
                  product: {
                     name: "communications_applications",
                     product_id: "CSAFPID-1751386",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_applications:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_applications",
                  product: {
                     name: "communications_applications",
                     product_id: "CSAFPID-1674621",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_applications:15.0.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_applications",
                  product: {
                     name: "communications_applications",
                     product_id: "CSAFPID-1751381",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_applications:15.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_applications",
                  product: {
                     name: "communications_applications",
                     product_id: "CSAFPID-1751383",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_applications:15.0.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_applications",
                  product: {
                     name: "communications_applications",
                     product_id: "CSAFPID-1751378",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_applications:3.0.2.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_applications",
                  product: {
                     name: "communications_applications",
                     product_id: "CSAFPID-1751377",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_applications:3.0.3.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_applications",
                  product: {
                     name: "communications_applications",
                     product_id: "CSAFPID-1751385",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_applications:3.0.3.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_applications",
                  product: {
                     name: "communications_applications",
                     product_id: "CSAFPID-1674618",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_applications:6.0.1.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_applications",
                  product: {
                     name: "communications_applications",
                     product_id: "CSAFPID-1674619",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_applications:7.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_applications",
                  product: {
                     name: "communications_applications",
                     product_id: "CSAFPID-1674622",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_applications:7.4.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_applications",
                  product: {
                     name: "communications_applications",
                     product_id: "CSAFPID-1751384",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_applications:7.4.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_applications",
                  product: {
                     name: "communications_applications",
                     product_id: "CSAFPID-1674617",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_applications:7.4.3.0.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_applications",
                  product: {
                     name: "communications_applications",
                     product_id: "CSAFPID-1674623",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_applications:7.5.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_applications",
                  product: {
                     name: "communications_applications",
                     product_id: "CSAFPID-1751382",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_applications:8.0.0.3:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_applications",
                  product: {
                     name: "communications_applications",
                     product_id: "CSAFPID-1751380",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_applications:8.1.0.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_applications",
                  product: {
                     name: "communications_applications",
                     product_id: "CSAFPID-1751379",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_applications:8.1.0.26:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_applications",
                  product: {
                     name: "communications_applications",
                     product_id: "CSAFPID-1674620",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_applications:8.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_applications___12.0.6.0.0",
                  product: {
                     name: "communications_applications___12.0.6.0.0",
                     product_id: "CSAFPID-1674627",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_applications___12.0.6.0.0:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_applications___5.5.22",
                  product: {
                     name: "communications_applications___5.5.22",
                     product_id: "CSAFPID-1674626",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_applications___5.5.22:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_applications___6.0.3",
                  product: {
                     name: "communications_applications___6.0.3",
                     product_id: "CSAFPID-1674628",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_applications___6.0.3:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_applications___6.0.4",
                  product: {
                     name: "communications_applications___6.0.4",
                     product_id: "CSAFPID-1674624",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_applications___6.0.4:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_applications___6.0.5",
                  product: {
                     name: "communications_applications___6.0.5",
                     product_id: "CSAFPID-1674625",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_applications___6.0.5:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_asap",
                  product: {
                     name: "communications_asap",
                     product_id: "CSAFPID-816792",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_asap:7.4:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_billing_and_revenue_management",
                  product: {
                     name: "communications_billing_and_revenue_management",
                     product_id: "CSAFPID-764735",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_billing_and_revenue_management:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_billing_and_revenue_management",
                  product: {
                     name: "communications_billing_and_revenue_management",
                     product_id: "CSAFPID-1751255",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.4-12.0.0.8:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_billing_and_revenue_management",
                  product: {
                     name: "communications_billing_and_revenue_management",
                     product_id: "CSAFPID-1751254",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0-15.0.0.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_billing_and_revenue_management",
                  product: {
                     name: "communications_billing_and_revenue_management",
                     product_id: "CSAFPID-816793",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_billing_and_revenue_management",
                  product: {
                     name: "communications_billing_and_revenue_management",
                     product_id: "CSAFPID-912557",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_billing_and_revenue_management:15.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_brm_-_elastic_charging_engine",
                  product: {
                     name: "communications_brm_-_elastic_charging_engine",
                     product_id: "CSAFPID-764247",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_brm_-_elastic_charging_engine",
                  product: {
                     name: "communications_brm_-_elastic_charging_engine",
                     product_id: "CSAFPID-1650820",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:12.0.0.4-12.0.0.8:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_brm_-_elastic_charging_engine",
                  product: {
                     name: "communications_brm_-_elastic_charging_engine",
                     product_id: "CSAFPID-912556",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:15.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_brm_-_elastic_charging_engine",
                  product: {
                     name: "communications_brm_-_elastic_charging_engine",
                     product_id: "CSAFPID-1751303",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:15.0.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_automated_test_suite",
                  product: {
                     name: "communications_cloud_native_core_automated_test_suite",
                     product_id: "CSAFPID-220055",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_automated_test_suite",
                  product: {
                     name: "communications_cloud_native_core_automated_test_suite",
                     product_id: "CSAFPID-816765",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.1.3:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_automated_test_suite",
                  product: {
                     name: "communications_cloud_native_core_automated_test_suite",
                     product_id: "CSAFPID-816766",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.2.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_automated_test_suite",
                  product: {
                     name: "communications_cloud_native_core_automated_test_suite",
                     product_id: "CSAFPID-816767",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_automated_test_suite",
                  product: {
                     name: "communications_cloud_native_core_automated_test_suite",
                     product_id: "CSAFPID-1503577",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:23.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_automated_test_suite",
                  product: {
                     name: "communications_cloud_native_core_automated_test_suite",
                     product_id: "CSAFPID-1751300",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:24.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_binding_support_function",
                  product: {
                     name: "communications_cloud_native_core_binding_support_function",
                     product_id: "CSAFPID-764237",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_binding_support_function",
                  product: {
                     name: "communications_cloud_native_core_binding_support_function",
                     product_id: "CSAFPID-1650752",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.4.0-23.4.3:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_binding_support_function",
                  product: {
                     name: "communications_cloud_native_core_binding_support_function",
                     product_id: "CSAFPID-1673396",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:23.4.0-23.4.5:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_binding_support_function",
                  product: {
                     name: "communications_cloud_native_core_binding_support_function",
                     product_id: "CSAFPID-1751085",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:24.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_binding_support_function",
                  product: {
                     name: "communications_cloud_native_core_binding_support_function",
                     product_id: "CSAFPID-1751079",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:24.2.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_certificate_management",
                  product: {
                     name: "communications_cloud_native_core_certificate_management",
                     product_id: "CSAFPID-1673526",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_certificate_management:23.4.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_certificate_management",
                  product: {
                     name: "communications_cloud_native_core_certificate_management",
                     product_id: "CSAFPID-1673391",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_certificate_management:23.4.3:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_certificate_management",
                  product: {
                     name: "communications_cloud_native_core_certificate_management",
                     product_id: "CSAFPID-1673394",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_certificate_management:24.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_certificate_management",
                  product: {
                     name: "communications_cloud_native_core_certificate_management",
                     product_id: "CSAFPID-1751253",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_certificate_management:24.2.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_console",
                  product: {
                     name: "communications_cloud_native_core_console",
                     product_id: "CSAFPID-816768",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_console:23.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_console",
                  product: {
                     name: "communications_cloud_native_core_console",
                     product_id: "CSAFPID-816769",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_console:23.3.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_console",
                  product: {
                     name: "communications_cloud_native_core_console",
                     product_id: "CSAFPID-912085",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_console",
                  product: {
                     name: "communications_cloud_native_core_console",
                     product_id: "CSAFPID-1503578",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_console",
                  product: {
                     name: "communications_cloud_native_core_console",
                     product_id: "CSAFPID-1673389",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_console:23.4.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_console",
                  product: {
                     name: "communications_cloud_native_core_console",
                     product_id: "CSAFPID-1673390",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_console:24.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_console",
                  product: {
                     name: "communications_cloud_native_core_console",
                     product_id: "CSAFPID-1751090",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_console:24.2.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_dbtier",
                  product: {
                     name: "communications_cloud_native_core_dbtier",
                     product_id: "CSAFPID-1673421",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_dbtier:24.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_dbtier",
                  product: {
                     name: "communications_cloud_native_core_dbtier",
                     product_id: "CSAFPID-1673420",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_dbtier:24.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_dbtier",
                  product: {
                     name: "communications_cloud_native_core_dbtier",
                     product_id: "CSAFPID-1751246",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_dbtier:24.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_data_analytics_function",
                  product: {
                     name: "communications_cloud_native_core_network_data_analytics_function",
                     product_id: "CSAFPID-816770",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:23.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_data_analytics_function",
                  product: {
                     name: "communications_cloud_native_core_network_data_analytics_function",
                     product_id: "CSAFPID-816771",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:23.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_data_analytics_function",
                  product: {
                     name: "communications_cloud_native_core_network_data_analytics_function",
                     product_id: "CSAFPID-912068",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_data_analytics_function",
                  product: {
                     name: "communications_cloud_native_core_network_data_analytics_function",
                     product_id: "CSAFPID-1503579",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_data_analytics_function:24.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_exposure_function",
                  product: {
                     name: "communications_cloud_native_core_network_exposure_function",
                     product_id: "CSAFPID-816772",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.3.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_exposure_function",
                  product: {
                     name: "communications_cloud_native_core_network_exposure_function",
                     product_id: "CSAFPID-912076",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_exposure_function",
                  product: {
                     name: "communications_cloud_native_core_network_exposure_function",
                     product_id: "CSAFPID-1503580",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:23.4.3:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_function_cloud_native_environment",
                  product: {
                     name: "communications_cloud_native_core_network_function_cloud_native_environment",
                     product_id: "CSAFPID-219838",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_function_cloud_native_environment",
                  product: {
                     name: "communications_cloud_native_core_network_function_cloud_native_environment",
                     product_id: "CSAFPID-611387",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_function_cloud_native_environment",
                  product: {
                     name: "communications_cloud_native_core_network_function_cloud_native_environment",
                     product_id: "CSAFPID-816773",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.3.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_function_cloud_native_environment",
                  product: {
                     name: "communications_cloud_native_core_network_function_cloud_native_environment",
                     product_id: "CSAFPID-912101",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:23.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_function_cloud_native_environment",
                  product: {
                     name: "communications_cloud_native_core_network_function_cloud_native_environment",
                     product_id: "CSAFPID-1503581",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:24.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_function_cloud_native_environment",
                  product: {
                     name: "communications_cloud_native_core_network_function_cloud_native_environment",
                     product_id: "CSAFPID-1751208",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:24.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_function_cloud_native_environment",
                  product: {
                     name: "communications_cloud_native_core_network_function_cloud_native_environment",
                     product_id: "CSAFPID-1751209",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:24.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_function_cloud_native_environment",
                  product: {
                     name: "communications_cloud_native_core_network_function_cloud_native_environment",
                     product_id: "CSAFPID-912539",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_install_upgrade___23.3.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_function_cloud_native_environment",
                  product: {
                     name: "communications_cloud_native_core_network_function_cloud_native_environment",
                     product_id: "CSAFPID-912540",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_install_upgrade___23.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_function_cloud_native_environment",
                  product: {
                     name: "communications_cloud_native_core_network_function_cloud_native_environment",
                     product_id: "CSAFPID-912541",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_installation___23.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_function_cloud_native_environment",
                  product: {
                     name: "communications_cloud_native_core_network_function_cloud_native_environment",
                     product_id: "CSAFPID-912542",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_obserability_services_overlay___23.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_function_cloud_native_environment",
                  product: {
                     name: "communications_cloud_native_core_network_function_cloud_native_environment",
                     product_id: "CSAFPID-912543",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:_observability_services_overlay___23.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_repository_function",
                  product: {
                     name: "communications_cloud_native_core_network_repository_function",
                     product_id: "CSAFPID-816774",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.1.4:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_repository_function",
                  product: {
                     name: "communications_cloud_native_core_network_repository_function",
                     product_id: "CSAFPID-816346",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.3.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_repository_function",
                  product: {
                     name: "communications_cloud_native_core_network_repository_function",
                     product_id: "CSAFPID-912077",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_repository_function",
                  product: {
                     name: "communications_cloud_native_core_network_repository_function",
                     product_id: "CSAFPID-1503322",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_repository_function",
                  product: {
                     name: "communications_cloud_native_core_network_repository_function",
                     product_id: "CSAFPID-1673413",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:23.4.4:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_repository_function",
                  product: {
                     name: "communications_cloud_native_core_network_repository_function",
                     product_id: "CSAFPID-1673415",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:24.2.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_repository_function",
                  product: {
                     name: "communications_cloud_native_core_network_repository_function",
                     product_id: "CSAFPID-1751231",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:24.2.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_repository_function",
                  product: {
                     name: "communications_cloud_native_core_network_repository_function",
                     product_id: "CSAFPID-816775",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:_install_upgrade___23.3.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_repository_function",
                  product: {
                     name: "communications_cloud_native_core_network_repository_function",
                     product_id: "CSAFPID-912544",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:_install_upgrade___23.4.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_slice_selection_function",
                  product: {
                     name: "communications_cloud_native_core_network_slice_selection_function",
                     product_id: "CSAFPID-816348",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:23.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_slice_selection_function",
                  product: {
                     name: "communications_cloud_native_core_network_slice_selection_function",
                     product_id: "CSAFPID-912545",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:23.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_slice_selection_function",
                  product: {
                     name: "communications_cloud_native_core_network_slice_selection_function",
                     product_id: "CSAFPID-816347",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:23.3.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_slice_selection_function",
                  product: {
                     name: "communications_cloud_native_core_network_slice_selection_function",
                     product_id: "CSAFPID-1673494",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:24.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_slice_selection_function",
                  product: {
                     name: "communications_cloud_native_core_network_slice_selection_function",
                     product_id: "CSAFPID-816776",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:_install_upgrade___23.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_network_slice_selection_function",
                  product: {
                     name: "communications_cloud_native_core_network_slice_selection_function",
                     product_id: "CSAFPID-816777",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:_install_upgrade___23.3.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_policy",
                  product: {
                     name: "communications_cloud_native_core_policy",
                     product_id: "CSAFPID-764240",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_policy:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_policy",
                  product: {
                     name: "communications_cloud_native_core_policy",
                     product_id: "CSAFPID-1650751",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0-23.4.4:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_policy",
                  product: {
                     name: "communications_cloud_native_core_policy",
                     product_id: "CSAFPID-1673517",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0-23.4.5:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_policy",
                  product: {
                     name: "communications_cloud_native_core_policy",
                     product_id: "CSAFPID-1673395",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0-23.4.6:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_policy",
                  product: {
                     name: "communications_cloud_native_core_policy",
                     product_id: "CSAFPID-912069",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_policy:23.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_policy",
                  product: {
                     name: "communications_cloud_native_core_policy",
                     product_id: "CSAFPID-1751225",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_policy:24.2.0-24.2.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_policy",
                  product: {
                     name: "communications_cloud_native_core_policy",
                     product_id: "CSAFPID-1751088",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_policy:24.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_policy",
                  product: {
                     name: "communications_cloud_native_core_policy",
                     product_id: "CSAFPID-1751089",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_policy:24.2.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_security_edge_protection_proxy",
                  product: {
                     name: "communications_cloud_native_core_security_edge_protection_proxy",
                     product_id: "CSAFPID-94291",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_security_edge_protection_proxy",
                  product: {
                     name: "communications_cloud_native_core_security_edge_protection_proxy",
                     product_id: "CSAFPID-816778",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_security_edge_protection_proxy",
                  product: {
                     name: "communications_cloud_native_core_security_edge_protection_proxy",
                     product_id: "CSAFPID-614517",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_security_edge_protection_proxy",
                  product: {
                     name: "communications_cloud_native_core_security_edge_protection_proxy",
                     product_id: "CSAFPID-912547",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_security_edge_protection_proxy",
                  product: {
                     name: "communications_cloud_native_core_security_edge_protection_proxy",
                     product_id: "CSAFPID-1673392",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:23.4.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_security_edge_protection_proxy",
                  product: {
                     name: "communications_cloud_native_core_security_edge_protection_proxy",
                     product_id: "CSAFPID-1503582",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_security_edge_protection_proxy",
                  product: {
                     name: "communications_cloud_native_core_security_edge_protection_proxy",
                     product_id: "CSAFPID-1673393",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_security_edge_protection_proxy",
                  product: {
                     name: "communications_cloud_native_core_security_edge_protection_proxy",
                     product_id: "CSAFPID-1751081",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.2.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_security_edge_protection_proxy",
                  product: {
                     name: "communications_cloud_native_core_security_edge_protection_proxy",
                     product_id: "CSAFPID-1751084",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:24.2.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_security_edge_protection_proxy",
                  product: {
                     name: "communications_cloud_native_core_security_edge_protection_proxy",
                     product_id: "CSAFPID-912546",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:_automated_test_suite___23.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_service_communication_proxy",
                  product: {
                     name: "communications_cloud_native_core_service_communication_proxy",
                     product_id: "CSAFPID-224795",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_service_communication_proxy",
                  product: {
                     name: "communications_cloud_native_core_service_communication_proxy",
                     product_id: "CSAFPID-912548",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.2.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_service_communication_proxy",
                  product: {
                     name: "communications_cloud_native_core_service_communication_proxy",
                     product_id: "CSAFPID-912102",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_service_communication_proxy",
                  product: {
                     name: "communications_cloud_native_core_service_communication_proxy",
                     product_id: "CSAFPID-912549",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_service_communication_proxy",
                  product: {
                     name: "communications_cloud_native_core_service_communication_proxy",
                     product_id: "CSAFPID-1503583",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_service_communication_proxy",
                  product: {
                     name: "communications_cloud_native_core_service_communication_proxy",
                     product_id: "CSAFPID-1503584",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:23.4.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_service_communication_proxy",
                  product: {
                     name: "communications_cloud_native_core_service_communication_proxy",
                     product_id: "CSAFPID-1503585",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_service_communication_proxy",
                  product: {
                     name: "communications_cloud_native_core_service_communication_proxy",
                     product_id: "CSAFPID-1672767",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_service_communication_proxy",
                  product: {
                     name: "communications_cloud_native_core_service_communication_proxy",
                     product_id: "CSAFPID-1751241",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:24.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_unified_data_repository",
                  product: {
                     name: "communications_cloud_native_core_unified_data_repository",
                     product_id: "CSAFPID-764826",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_unified_data_repository",
                  product: {
                     name: "communications_cloud_native_core_unified_data_repository",
                     product_id: "CSAFPID-90016",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_unified_data_repository",
                  product: {
                     name: "communications_cloud_native_core_unified_data_repository",
                     product_id: "CSAFPID-912078",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_unified_data_repository",
                  product: {
                     name: "communications_cloud_native_core_unified_data_repository",
                     product_id: "CSAFPID-816349",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.3.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_unified_data_repository",
                  product: {
                     name: "communications_cloud_native_core_unified_data_repository",
                     product_id: "CSAFPID-912550",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.3.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_unified_data_repository",
                  product: {
                     name: "communications_cloud_native_core_unified_data_repository",
                     product_id: "CSAFPID-1503586",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_unified_data_repository",
                  product: {
                     name: "communications_cloud_native_core_unified_data_repository",
                     product_id: "CSAFPID-1503587",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_unified_data_repository",
                  product: {
                     name: "communications_cloud_native_core_unified_data_repository",
                     product_id: "CSAFPID-1751238",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:23.4.4:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_unified_data_repository",
                  product: {
                     name: "communications_cloud_native_core_unified_data_repository",
                     product_id: "CSAFPID-1751240",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:24.1.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_unified_data_repository",
                  product: {
                     name: "communications_cloud_native_core_unified_data_repository",
                     product_id: "CSAFPID-1673399",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:24.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_unified_data_repository",
                  product: {
                     name: "communications_cloud_native_core_unified_data_repository",
                     product_id: "CSAFPID-1751239",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:24.2.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_unified_data_repository",
                  product: {
                     name: "communications_cloud_native_core_unified_data_repository",
                     product_id: "CSAFPID-1751080",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:24.2.3:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_unified_data_repository",
                  product: {
                     name: "communications_cloud_native_core_unified_data_repository",
                     product_id: "CSAFPID-1751082",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:24.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_cloud_native_core_unified_data_repository",
                  product: {
                     name: "communications_cloud_native_core_unified_data_repository",
                     product_id: "CSAFPID-816779",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:_signaling___23.3.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_converged_application_server",
                  product: {
                     name: "communications_converged_application_server",
                     product_id: "CSAFPID-1751229",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_converged_application_server:8.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_converged_application_server",
                  product: {
                     name: "communications_converged_application_server",
                     product_id: "CSAFPID-1751230",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_converged_application_server:8.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_converged_charging_system",
                  product: {
                     name: "communications_converged_charging_system",
                     product_id: "CSAFPID-1503599",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_converged_charging_system",
                  product: {
                     name: "communications_converged_charging_system",
                     product_id: "CSAFPID-1503600",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_converged_charging_system:2.0.0.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_convergence",
                  product: {
                     name: "communications_convergence",
                     product_id: "CSAFPID-1751292",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_convergence:3.0.2.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_convergence",
                  product: {
                     name: "communications_convergence",
                     product_id: "CSAFPID-1751294",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_convergence:3.0.3.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_convergence",
                  product: {
                     name: "communications_convergence",
                     product_id: "CSAFPID-224793",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_convergence:3.0.3.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_convergence",
                  product: {
                     name: "communications_convergence",
                     product_id: "CSAFPID-1751295",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_convergence:3.0.3.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_convergence",
                  product: {
                     name: "communications_convergence",
                     product_id: "CSAFPID-816794",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_convergence:3.0.3.3:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_convergent_charging_controller",
                  product: {
                     name: "communications_convergent_charging_controller",
                     product_id: "CSAFPID-342793",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_convergent_charging_controller:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_convergent_charging_controller",
                  product: {
                     name: "communications_convergent_charging_controller",
                     product_id: "CSAFPID-1650777",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_convergent_charging_controller:12.0.1.0.0-12.0.6.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_convergent_charging_controller",
                  product: {
                     name: "communications_convergent_charging_controller",
                     product_id: "CSAFPID-1265",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_convergent_charging_controller:12.0.6.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_convergent_charging_controller",
                  product: {
                     name: "communications_convergent_charging_controller",
                     product_id: "CSAFPID-816350",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_convergent_charging_controller:15.0.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_convergent_charging_controller",
                  product: {
                     name: "communications_convergent_charging_controller",
                     product_id: "CSAFPID-1261",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_convergent_charging_controller:6.0.1.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_core_session_manager",
                  product: {
                     name: "communications_core_session_manager",
                     product_id: "CSAFPID-1672764",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_core_session_manager:9.1.5:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_diameter_signaling_router",
                  product: {
                     name: "communications_diameter_signaling_router",
                     product_id: "CSAFPID-1503588",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_diameter_signaling_router:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_diameter_signaling_router",
                  product: {
                     name: "communications_diameter_signaling_router",
                     product_id: "CSAFPID-1751104",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_diameter_signaling_router:8.2.3.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_diameter_signaling_router",
                  product: {
                     name: "communications_diameter_signaling_router",
                     product_id: "CSAFPID-40293",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_diameter_signaling_router:8.6.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_diameter_signaling_router",
                  product: {
                     name: "communications_diameter_signaling_router",
                     product_id: "CSAFPID-1751242",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_diameter_signaling_router:8.6.0.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_diameter_signaling_router",
                  product: {
                     name: "communications_diameter_signaling_router",
                     product_id: "CSAFPID-1751237",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_diameter_signaling_router:9.0.0.0.0-9.0.2.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_diameter_signaling_router",
                  product: {
                     name: "communications_diameter_signaling_router",
                     product_id: "CSAFPID-1751097",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_diameter_signaling_router:9.0.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_diameter_signaling_router",
                  product: {
                     name: "communications_diameter_signaling_router",
                     product_id: "CSAFPID-611413",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_diameter_signaling_router:9.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_diameter_signaling_router",
                  product: {
                     name: "communications_diameter_signaling_router",
                     product_id: "CSAFPID-1751211",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_diameter_signaling_router:9.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_diameter_signaling_router",
                  product: {
                     name: "communications_diameter_signaling_router",
                     product_id: "CSAFPID-912551",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_diameter_signaling_router:_patches___9.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_diameter_signaling_router",
                  product: {
                     name: "communications_diameter_signaling_router",
                     product_id: "CSAFPID-912552",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_diameter_signaling_router:_platform___9.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_eagle_element_management_system",
                  product: {
                     name: "communications_eagle_element_management_system",
                     product_id: "CSAFPID-1503316",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.4:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_eagle_element_management_system",
                  product: {
                     name: "communications_eagle_element_management_system",
                     product_id: "CSAFPID-1503317",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_eagle_element_management_system:46.6.5:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_eagle_element_management_system",
                  product: {
                     name: "communications_eagle_element_management_system",
                     product_id: "CSAFPID-1751243",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_eagle_element_management_system:47.0.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_element_manager",
                  product: {
                     name: "communications_element_manager",
                     product_id: "CSAFPID-764242",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_element_manager:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_element_manager",
                  product: {
                     name: "communications_element_manager",
                     product_id: "CSAFPID-819413",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_element_manager:9.0.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_element_manager",
                  product: {
                     name: "communications_element_manager",
                     product_id: "CSAFPID-819414",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_element_manager:9.0.2.0.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_element_manager",
                  product: {
                     name: "communications_element_manager",
                     product_id: "CSAFPID-816780",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_element_manager:9.4.53:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_fraud_monitor",
                  product: {
                     name: "communications_fraud_monitor",
                     product_id: "CSAFPID-816781",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_fraud_monitor:5.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_fraud_monitor",
                  product: {
                     name: "communications_fraud_monitor",
                     product_id: "CSAFPID-816782",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_fraud_monitor:5.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_fraud_monitor",
                  product: {
                     name: "communications_fraud_monitor",
                     product_id: "CSAFPID-912553",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_fraud_monitor:5.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_instant_messaging_server",
                  product: {
                     name: "communications_instant_messaging_server",
                     product_id: "CSAFPID-219803",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_instant_messaging_server:10.0.1.7.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_ip_service_activator",
                  product: {
                     name: "communications_ip_service_activator",
                     product_id: "CSAFPID-204622",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_ip_service_activator:7.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_ip_service_activator",
                  product: {
                     name: "communications_ip_service_activator",
                     product_id: "CSAFPID-219909",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_ip_service_activator:7.5.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_messaging_server",
                  product: {
                     name: "communications_messaging_server",
                     product_id: "CSAFPID-816351",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_messaging_server:8.1.0.24.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_messaging_server",
                  product: {
                     name: "communications_messaging_server",
                     product_id: "CSAFPID-1751218",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_messaging_server:8.1.0.26:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_metasolv_solution",
                  product: {
                     name: "communications_metasolv_solution",
                     product_id: "CSAFPID-611595",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_metasolv_solution:6.3.1.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_network_analytics_data_director",
                  product: {
                     name: "communications_network_analytics_data_director",
                     product_id: "CSAFPID-816353",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_network_analytics_data_director:23.2.0.0.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_network_analytics_data_director",
                  product: {
                     name: "communications_network_analytics_data_director",
                     product_id: "CSAFPID-816352",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_network_analytics_data_director:23.3.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_network_analytics_data_director",
                  product: {
                     name: "communications_network_analytics_data_director",
                     product_id: "CSAFPID-1503589",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_network_analytics_data_director:23.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_network_analytics_data_director",
                  product: {
                     name: "communications_network_analytics_data_director",
                     product_id: "CSAFPID-1503590",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_network_analytics_data_director:24.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_network_analytics_data_director",
                  product: {
                     name: "communications_network_analytics_data_director",
                     product_id: "CSAFPID-1673414",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_network_analytics_data_director:24.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_network_analytics_data_director",
                  product: {
                     name: "communications_network_analytics_data_director",
                     product_id: "CSAFPID-816783",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_network_analytics_data_director:_general___23.2.0.0.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_network_analytics_data_director",
                  product: {
                     name: "communications_network_analytics_data_director",
                     product_id: "CSAFPID-816786",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_network_analytics_data_director:_general___23.3.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_network_analytics_data_director",
                  product: {
                     name: "communications_network_analytics_data_director",
                     product_id: "CSAFPID-816784",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_network_analytics_data_director:_install_upgrade___23.2.0.0.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_network_analytics_data_director",
                  product: {
                     name: "communications_network_analytics_data_director",
                     product_id: "CSAFPID-816787",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_network_analytics_data_director:_install_upgrade___23.3.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_network_analytics_data_director",
                  product: {
                     name: "communications_network_analytics_data_director",
                     product_id: "CSAFPID-816785",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_network_analytics_data_director:_third_party___23.2.0.0.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_network_analytics_data_director",
                  product: {
                     name: "communications_network_analytics_data_director",
                     product_id: "CSAFPID-816788",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_network_analytics_data_director:_third_party___23.3.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_network_charging_and_control",
                  product: {
                     name: "communications_network_charging_and_control",
                     product_id: "CSAFPID-342803",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_network_charging_and_control:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_network_charging_and_control",
                  product: {
                     name: "communications_network_charging_and_control",
                     product_id: "CSAFPID-1650778",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_network_charging_and_control:12.0.1.0.0-12.0.6.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_network_charging_and_control",
                  product: {
                     name: "communications_network_charging_and_control",
                     product_id: "CSAFPID-1266",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_network_charging_and_control:12.0.6.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_network_charging_and_control",
                  product: {
                     name: "communications_network_charging_and_control",
                     product_id: "CSAFPID-816354",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_network_charging_and_control:15.0.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_network_charging_and_control",
                  product: {
                     name: "communications_network_charging_and_control",
                     product_id: "CSAFPID-204563",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_network_charging_and_control:6.0.1.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_network_integrity",
                  product: {
                     name: "communications_network_integrity",
                     product_id: "CSAFPID-219776",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_network_integrity:7.3.6.4:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_offline_mediation_controller",
                  product: {
                     name: "communications_offline_mediation_controller",
                     product_id: "CSAFPID-765242",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_offline_mediation_controller:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_offline_mediation_controller",
                  product: {
                     name: "communications_offline_mediation_controller",
                     product_id: "CSAFPID-916906",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_offline_mediation_controller:12.0.0.8:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_offline_mediation_controller",
                  product: {
                     name: "communications_offline_mediation_controller",
                     product_id: "CSAFPID-1751247",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_offline_mediation_controller:15.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_offline_mediation_controller",
                  product: {
                     name: "communications_offline_mediation_controller",
                     product_id: "CSAFPID-1751248",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_offline_mediation_controller:15.0.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_operations_monitor",
                  product: {
                     name: "communications_operations_monitor",
                     product_id: "CSAFPID-93781",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_operations_monitor:5.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_operations_monitor",
                  product: {
                     name: "communications_operations_monitor",
                     product_id: "CSAFPID-220132",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_operations_monitor:5.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_operations_monitor",
                  product: {
                     name: "communications_operations_monitor",
                     product_id: "CSAFPID-912079",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_operations_monitor:5.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_order_and_service_management",
                  product: {
                     name: "communications_order_and_service_management",
                     product_id: "CSAFPID-224790",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_order_and_service_management:7.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_order_and_service_management",
                  product: {
                     name: "communications_order_and_service_management",
                     product_id: "CSAFPID-221118",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_order_and_service_management:7.4.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_order_and_service_management",
                  product: {
                     name: "communications_order_and_service_management",
                     product_id: "CSAFPID-1673496",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_order_and_service_management:7.5.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_performance_intelligence",
                  product: {
                     name: "communications_performance_intelligence",
                     product_id: "CSAFPID-1503591",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_performance_intelligence:10.5:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_policy_management",
                  product: {
                     name: "communications_policy_management",
                     product_id: "CSAFPID-816789",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_policy_management:12.6.1.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_policy_management",
                  product: {
                     name: "communications_policy_management",
                     product_id: "CSAFPID-816790",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_policy_management:15.0.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_pricing_design_center",
                  product: {
                     name: "communications_pricing_design_center",
                     product_id: "CSAFPID-764738",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_pricing_design_center:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_pricing_design_center",
                  product: {
                     name: "communications_pricing_design_center",
                     product_id: "CSAFPID-816355",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_pricing_design_center:15.0.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_service_catalog_and_design",
                  product: {
                     name: "communications_service_catalog_and_design",
                     product_id: "CSAFPID-1503601",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_service_catalog_and_design:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_service_catalog_and_design",
                  product: {
                     name: "communications_service_catalog_and_design",
                     product_id: "CSAFPID-816359",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_service_catalog_and_design:7.4.0.7.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_service_catalog_and_design",
                  product: {
                     name: "communications_service_catalog_and_design",
                     product_id: "CSAFPID-816358",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_service_catalog_and_design:7.4.1.5.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_service_catalog_and_design",
                  product: {
                     name: "communications_service_catalog_and_design",
                     product_id: "CSAFPID-816357",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_service_catalog_and_design:7.4.2.8.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_service_catalog_and_design",
                  product: {
                     name: "communications_service_catalog_and_design",
                     product_id: "CSAFPID-912558",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_service_catalog_and_design",
                  product: {
                     name: "communications_service_catalog_and_design",
                     product_id: "CSAFPID-1751233",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0.3:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_service_catalog_and_design",
                  product: {
                     name: "communications_service_catalog_and_design",
                     product_id: "CSAFPID-1503602",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_service_catalog_and_design:8.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_service_catalog_and_design",
                  product: {
                     name: "communications_service_catalog_and_design",
                     product_id: "CSAFPID-1751234",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_service_catalog_and_design:8.1.0.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_service_catalog_and_design",
                  product: {
                     name: "communications_service_catalog_and_design",
                     product_id: "CSAFPID-816795",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_service_catalog_and_design:_psr_designer___7.4.0.7.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_service_catalog_and_design",
                  product: {
                     name: "communications_service_catalog_and_design",
                     product_id: "CSAFPID-816796",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_service_catalog_and_design:_psr_designer___7.4.1.5.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_service_catalog_and_design",
                  product: {
                     name: "communications_service_catalog_and_design",
                     product_id: "CSAFPID-816797",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_service_catalog_and_design:_psr_designer___7.4.2.8.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_session_border_controller",
                  product: {
                     name: "communications_session_border_controller",
                     product_id: "CSAFPID-1503592",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_session_border_controller:4.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_session_border_controller",
                  product: {
                     name: "communications_session_border_controller",
                     product_id: "CSAFPID-1503593",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_session_border_controller:4.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_session_border_controller",
                  product: {
                     name: "communications_session_border_controller",
                     product_id: "CSAFPID-1672762",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_session_border_controller:9.1.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_session_border_controller",
                  product: {
                     name: "communications_session_border_controller",
                     product_id: "CSAFPID-1503594",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_session_border_controller:9.2.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_session_border_controller",
                  product: {
                     name: "communications_session_border_controller",
                     product_id: "CSAFPID-1503595",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_session_border_controller:9.3.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_session_report_manager",
                  product: {
                     name: "communications_session_report_manager",
                     product_id: "CSAFPID-342804",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_session_report_manager:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_session_report_manager",
                  product: {
                     name: "communications_session_report_manager",
                     product_id: "CSAFPID-819415",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_session_report_manager:9.0.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_session_report_manager",
                  product: {
                     name: "communications_session_report_manager",
                     product_id: "CSAFPID-819416",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_session_report_manager:9.0.2.0.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_session_report_manager",
                  product: {
                     name: "communications_session_report_manager",
                     product_id: "CSAFPID-816791",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_session_report_manager:9.4.53:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_unified_assurance",
                  product: {
                     name: "communications_unified_assurance",
                     product_id: "CSAFPID-240600",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_unified_assurance:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_unified_assurance",
                  product: {
                     name: "communications_unified_assurance",
                     product_id: "CSAFPID-1673382",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_unified_assurance:5.5.0-5.5.22:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_unified_assurance",
                  product: {
                     name: "communications_unified_assurance",
                     product_id: "CSAFPID-1650731",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_unified_assurance:6.0.0-6.0.4:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_unified_assurance",
                  product: {
                     name: "communications_unified_assurance",
                     product_id: "CSAFPID-1673530",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_unified_assurance:6.0.0-6.0.5:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_unified_assurance",
                  product: {
                     name: "communications_unified_assurance",
                     product_id: "CSAFPID-1751235",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_unified_assurance:6.0.1-6.0.5:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_unified_assurance",
                  product: {
                     name: "communications_unified_assurance",
                     product_id: "CSAFPID-1751296",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_unified_assurance:6.0.4-6.0.5:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_unified_inventory_management",
                  product: {
                     name: "communications_unified_inventory_management",
                     product_id: "CSAFPID-764739",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_unified_inventory_management:*:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_unified_inventory_management",
                  product: {
                     name: "communications_unified_inventory_management",
                     product_id: "CSAFPID-8984",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_unified_inventory_management",
                  product: {
                     name: "communications_unified_inventory_management",
                     product_id: "CSAFPID-204510",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_unified_inventory_management",
                  product: {
                     name: "communications_unified_inventory_management",
                     product_id: "CSAFPID-204569",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_unified_inventory_management",
                  product: {
                     name: "communications_unified_inventory_management",
                     product_id: "CSAFPID-219826",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_unified_inventory_management:7.5.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_unified_inventory_management",
                  product: {
                     name: "communications_unified_inventory_management",
                     product_id: "CSAFPID-912073",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_unified_inventory_management:7.5.1:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_user_data_repository",
                  product: {
                     name: "communications_user_data_repository",
                     product_id: "CSAFPID-1503596",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_user_data_repository:12.11.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_user_data_repository",
                  product: {
                     name: "communications_user_data_repository",
                     product_id: "CSAFPID-1503597",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_user_data_repository:12.11.3:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_user_data_repository",
                  product: {
                     name: "communications_user_data_repository",
                     product_id: "CSAFPID-1503598",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_user_data_repository:12.11.4:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_user_data_repository",
                  product: {
                     name: "communications_user_data_repository",
                     product_id: "CSAFPID-1751217",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_user_data_repository:12.11:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_user_data_repository",
                  product: {
                     name: "communications_user_data_repository",
                     product_id: "CSAFPID-912080",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_user_data_repository:14.0.0.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_user_data_repository",
                  product: {
                     name: "communications_user_data_repository",
                     product_id: "CSAFPID-1673481",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_user_data_repository:14.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_user_data_repository",
                  product: {
                     name: "communications_user_data_repository",
                     product_id: "CSAFPID-1751258",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_user_data_repository:15.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "communications_webrtc_session_controller",
                  product: {
                     name: "communications_webrtc_session_controller",
                     product_id: "CSAFPID-912554",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:communications_webrtc_session_controller:*:*:*:*:*:*:*:*",
                     },
                  },
               },
            ],
            category: "vendor",
            name: "oracle",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2022-41727",
         cwe: {
            id: "CWE-400",
            name: "Uncontrolled Resource Consumption",
         },
         notes: [
            {
               category: "other",
               text: "Uncontrolled Resource Consumption",
               title: "CWE-400",
            },
            {
               category: "other",
               text: "Allocation of Resources Without Limits or Throttling",
               title: "CWE-770",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1673530",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2022-41727",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-41727.json",
            },
         ],
         title: "CVE-2022-41727",
      },
      {
         cve: "CVE-2023-4408",
         cwe: {
            id: "CWE-400",
            name: "Uncontrolled Resource Consumption",
         },
         notes: [
            {
               category: "other",
               text: "Uncontrolled Resource Consumption",
               title: "CWE-400",
            },
         ],
         references: [
            {
               category: "self",
               summary: "CVE-2023-4408",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-4408.json",
            },
         ],
         title: "CVE-2023-4408",
      },
      {
         cve: "CVE-2023-5678",
         cwe: {
            id: "CWE-754",
            name: "Improper Check for Unusual or Exceptional Conditions",
         },
         notes: [
            {
               category: "other",
               text: "Improper Check for Unusual or Exceptional Conditions",
               title: "CWE-754",
            },
            {
               category: "other",
               text: "Missing Cryptographic Step",
               title: "CWE-325",
            },
            {
               category: "other",
               text: "Unchecked Input for Loop Condition",
               title: "CWE-606",
            },
            {
               category: "other",
               text: "Improper Input Validation",
               title: "CWE-20",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-764237",
               "CSAFPID-912068",
               "CSAFPID-912076",
               "CSAFPID-611387",
               "CSAFPID-816773",
               "CSAFPID-816348",
               "CSAFPID-764240",
               "CSAFPID-614517",
               "CSAFPID-224795",
               "CSAFPID-764826",
               "CSAFPID-90016",
               "CSAFPID-611413",
               "CSAFPID-764242",
               "CSAFPID-816781",
               "CSAFPID-816782",
               "CSAFPID-93781",
               "CSAFPID-220132",
               "CSAFPID-342804",
               "CSAFPID-764247",
               "CSAFPID-764735",
               "CSAFPID-219776",
               "CSAFPID-765242",
               "CSAFPID-764739",
               "CSAFPID-204510",
               "CSAFPID-204569",
               "CSAFPID-219826",
               "CSAFPID-912073",
               "CSAFPID-912101",
               "CSAFPID-912102",
               "CSAFPID-912539",
               "CSAFPID-912540",
               "CSAFPID-912541",
               "CSAFPID-912542",
               "CSAFPID-912543",
               "CSAFPID-912544",
               "CSAFPID-912545",
               "CSAFPID-912546",
               "CSAFPID-912547",
               "CSAFPID-912548",
               "CSAFPID-912549",
               "CSAFPID-912550",
               "CSAFPID-912551",
               "CSAFPID-912552",
               "CSAFPID-912553",
               "CSAFPID-912554",
               "CSAFPID-912556",
               "CSAFPID-912557",
               "CSAFPID-912558",
               "CSAFPID-912077",
               "CSAFPID-912078",
               "CSAFPID-912079",
               "CSAFPID-912080",
               "CSAFPID-912085",
               "CSAFPID-220055",
               "CSAFPID-1503577",
               "CSAFPID-1503578",
               "CSAFPID-1503579",
               "CSAFPID-1503580",
               "CSAFPID-1503581",
               "CSAFPID-1503322",
               "CSAFPID-912069",
               "CSAFPID-1503582",
               "CSAFPID-1503583",
               "CSAFPID-1503584",
               "CSAFPID-1503585",
               "CSAFPID-1503586",
               "CSAFPID-1503587",
               "CSAFPID-1503588",
               "CSAFPID-1503316",
               "CSAFPID-1503317",
               "CSAFPID-1503589",
               "CSAFPID-1503590",
               "CSAFPID-1503591",
               "CSAFPID-816789",
               "CSAFPID-816790",
               "CSAFPID-1503592",
               "CSAFPID-1503593",
               "CSAFPID-1503594",
               "CSAFPID-1503595",
               "CSAFPID-1503596",
               "CSAFPID-1503597",
               "CSAFPID-1503598",
               "CSAFPID-816792",
               "CSAFPID-816793",
               "CSAFPID-1503599",
               "CSAFPID-1503600",
               "CSAFPID-342793",
               "CSAFPID-816350",
               "CSAFPID-1261",
               "CSAFPID-342803",
               "CSAFPID-816354",
               "CSAFPID-204563",
               "CSAFPID-764738",
               "CSAFPID-816355",
               "CSAFPID-1503601",
               "CSAFPID-1503602",
               "CSAFPID-240600",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2023-5678",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-5678.json",
            },
         ],
         title: "CVE-2023-5678",
      },
      {
         cve: "CVE-2023-5981",
         cwe: {
            id: "CWE-203",
            name: "Observable Discrepancy",
         },
         notes: [
            {
               category: "other",
               text: "Observable Discrepancy",
               title: "CWE-203",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-220055",
               "CSAFPID-1503577",
               "CSAFPID-764237",
               "CSAFPID-912085",
               "CSAFPID-1503578",
               "CSAFPID-1503579",
               "CSAFPID-1503580",
               "CSAFPID-912101",
               "CSAFPID-1503581",
               "CSAFPID-1503322",
               "CSAFPID-912069",
               "CSAFPID-764240",
               "CSAFPID-912547",
               "CSAFPID-1503582",
               "CSAFPID-912549",
               "CSAFPID-1503583",
               "CSAFPID-1503584",
               "CSAFPID-1503585",
               "CSAFPID-1503586",
               "CSAFPID-1503587",
               "CSAFPID-1503588",
               "CSAFPID-1503316",
               "CSAFPID-1503317",
               "CSAFPID-764242",
               "CSAFPID-1503589",
               "CSAFPID-1503590",
               "CSAFPID-220132",
               "CSAFPID-912079",
               "CSAFPID-1503591",
               "CSAFPID-816789",
               "CSAFPID-816790",
               "CSAFPID-1503592",
               "CSAFPID-1503593",
               "CSAFPID-1503594",
               "CSAFPID-1503595",
               "CSAFPID-342804",
               "CSAFPID-1503596",
               "CSAFPID-1503597",
               "CSAFPID-1503598",
               "CSAFPID-816792",
               "CSAFPID-764247",
               "CSAFPID-912556",
               "CSAFPID-764735",
               "CSAFPID-816793",
               "CSAFPID-1503599",
               "CSAFPID-1503600",
               "CSAFPID-342793",
               "CSAFPID-816350",
               "CSAFPID-1261",
               "CSAFPID-342803",
               "CSAFPID-816354",
               "CSAFPID-204563",
               "CSAFPID-764738",
               "CSAFPID-816355",
               "CSAFPID-1503601",
               "CSAFPID-1503602",
               "CSAFPID-240600",
               "CSAFPID-204510",
               "CSAFPID-204569",
               "CSAFPID-1751217",
               "CSAFPID-1673481",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2023-5981",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-5981.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.9,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-220055",
                  "CSAFPID-1503577",
                  "CSAFPID-764237",
                  "CSAFPID-912085",
                  "CSAFPID-1503578",
                  "CSAFPID-1503579",
                  "CSAFPID-1503580",
                  "CSAFPID-912101",
                  "CSAFPID-1503581",
                  "CSAFPID-1503322",
                  "CSAFPID-912069",
                  "CSAFPID-764240",
                  "CSAFPID-912547",
                  "CSAFPID-1503582",
                  "CSAFPID-912549",
                  "CSAFPID-1503583",
                  "CSAFPID-1503584",
                  "CSAFPID-1503585",
                  "CSAFPID-1503586",
                  "CSAFPID-1503587",
                  "CSAFPID-1503588",
                  "CSAFPID-1503316",
                  "CSAFPID-1503317",
                  "CSAFPID-764242",
                  "CSAFPID-1503589",
                  "CSAFPID-1503590",
                  "CSAFPID-220132",
                  "CSAFPID-912079",
                  "CSAFPID-1503591",
                  "CSAFPID-816789",
                  "CSAFPID-816790",
                  "CSAFPID-1503592",
                  "CSAFPID-1503593",
                  "CSAFPID-1503594",
                  "CSAFPID-1503595",
                  "CSAFPID-342804",
                  "CSAFPID-1503596",
                  "CSAFPID-1503597",
                  "CSAFPID-1503598",
                  "CSAFPID-816792",
                  "CSAFPID-764247",
                  "CSAFPID-912556",
                  "CSAFPID-764735",
                  "CSAFPID-816793",
                  "CSAFPID-1503599",
                  "CSAFPID-1503600",
                  "CSAFPID-342793",
                  "CSAFPID-816350",
                  "CSAFPID-1261",
                  "CSAFPID-342803",
                  "CSAFPID-816354",
                  "CSAFPID-204563",
                  "CSAFPID-764738",
                  "CSAFPID-816355",
                  "CSAFPID-1503601",
                  "CSAFPID-1503602",
                  "CSAFPID-240600",
                  "CSAFPID-204510",
                  "CSAFPID-204569",
                  "CSAFPID-1751217",
                  "CSAFPID-1673481",
               ],
            },
         ],
         title: "CVE-2023-5981",
      },
      {
         cve: "CVE-2023-6597",
         cwe: {
            id: "CWE-61",
            name: "UNIX Symbolic Link (Symlink) Following",
         },
         notes: [
            {
               category: "other",
               text: "UNIX Symbolic Link (Symlink) Following",
               title: "CWE-61",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1673395",
               "CSAFPID-1673420",
               "CSAFPID-1673421",
               "CSAFPID-1673396",
               "CSAFPID-1635305",
               "CSAFPID-1635306",
               "CSAFPID-1635307",
               "CSAFPID-1635308",
               "CSAFPID-1635309",
               "CSAFPID-1670434",
               "CSAFPID-1674629",
               "CSAFPID-1635315",
               "CSAFPID-1635316",
               "CSAFPID-1635318",
               "CSAFPID-1674630",
               "CSAFPID-1674631",
               "CSAFPID-1674632",
               "CSAFPID-1674633",
               "CSAFPID-1674634",
               "CSAFPID-1674635",
               "CSAFPID-1635323",
               "CSAFPID-1674636",
               "CSAFPID-1635324",
               "CSAFPID-1674637",
               "CSAFPID-1674638",
               "CSAFPID-1674639",
               "CSAFPID-1674640",
               "CSAFPID-1674641",
               "CSAFPID-1674642",
               "CSAFPID-1635320",
               "CSAFPID-1635321",
               "CSAFPID-1674643",
               "CSAFPID-1674644",
               "CSAFPID-1674645",
               "CSAFPID-1674646",
               "CSAFPID-220055",
               "CSAFPID-1503577",
               "CSAFPID-764237",
               "CSAFPID-912085",
               "CSAFPID-1503578",
               "CSAFPID-1503579",
               "CSAFPID-1503580",
               "CSAFPID-912101",
               "CSAFPID-1503581",
               "CSAFPID-1503322",
               "CSAFPID-912069",
               "CSAFPID-764240",
               "CSAFPID-912547",
               "CSAFPID-1503582",
               "CSAFPID-912549",
               "CSAFPID-1503583",
               "CSAFPID-1503584",
               "CSAFPID-1503585",
               "CSAFPID-1503586",
               "CSAFPID-1503587",
               "CSAFPID-1503588",
               "CSAFPID-1503316",
               "CSAFPID-1503317",
               "CSAFPID-764242",
               "CSAFPID-1503589",
               "CSAFPID-1503590",
               "CSAFPID-220132",
               "CSAFPID-912079",
               "CSAFPID-1503591",
               "CSAFPID-816789",
               "CSAFPID-816790",
               "CSAFPID-1503592",
               "CSAFPID-1503593",
               "CSAFPID-1503594",
               "CSAFPID-1503595",
               "CSAFPID-342804",
               "CSAFPID-1503596",
               "CSAFPID-1503597",
               "CSAFPID-1503598",
               "CSAFPID-816792",
               "CSAFPID-764247",
               "CSAFPID-912556",
               "CSAFPID-764735",
               "CSAFPID-816793",
               "CSAFPID-1503599",
               "CSAFPID-1503600",
               "CSAFPID-342793",
               "CSAFPID-816350",
               "CSAFPID-1261",
               "CSAFPID-342803",
               "CSAFPID-816354",
               "CSAFPID-204563",
               "CSAFPID-764738",
               "CSAFPID-816355",
               "CSAFPID-1503601",
               "CSAFPID-1503602",
               "CSAFPID-240600",
               "CSAFPID-204510",
               "CSAFPID-204569",
               "CSAFPID-1751097",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2023-6597",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-6597.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.8,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1673395",
                  "CSAFPID-1673420",
                  "CSAFPID-1673421",
                  "CSAFPID-1673396",
                  "CSAFPID-1635305",
                  "CSAFPID-1635306",
                  "CSAFPID-1635307",
                  "CSAFPID-1635308",
                  "CSAFPID-1635309",
                  "CSAFPID-1670434",
                  "CSAFPID-1674629",
                  "CSAFPID-1635315",
                  "CSAFPID-1635316",
                  "CSAFPID-1635318",
                  "CSAFPID-1674630",
                  "CSAFPID-1674631",
                  "CSAFPID-1674632",
                  "CSAFPID-1674633",
                  "CSAFPID-1674634",
                  "CSAFPID-1674635",
                  "CSAFPID-1635323",
                  "CSAFPID-1674636",
                  "CSAFPID-1635324",
                  "CSAFPID-1674637",
                  "CSAFPID-1674638",
                  "CSAFPID-1674639",
                  "CSAFPID-1674640",
                  "CSAFPID-1674641",
                  "CSAFPID-1674642",
                  "CSAFPID-1635320",
                  "CSAFPID-1635321",
                  "CSAFPID-1674643",
                  "CSAFPID-1674644",
                  "CSAFPID-1674645",
                  "CSAFPID-1674646",
                  "CSAFPID-220055",
                  "CSAFPID-1503577",
                  "CSAFPID-764237",
                  "CSAFPID-912085",
                  "CSAFPID-1503578",
                  "CSAFPID-1503579",
                  "CSAFPID-1503580",
                  "CSAFPID-912101",
                  "CSAFPID-1503581",
                  "CSAFPID-1503322",
                  "CSAFPID-912069",
                  "CSAFPID-764240",
                  "CSAFPID-912547",
                  "CSAFPID-1503582",
                  "CSAFPID-912549",
                  "CSAFPID-1503583",
                  "CSAFPID-1503584",
                  "CSAFPID-1503585",
                  "CSAFPID-1503586",
                  "CSAFPID-1503587",
                  "CSAFPID-1503588",
                  "CSAFPID-1503316",
                  "CSAFPID-1503317",
                  "CSAFPID-764242",
                  "CSAFPID-1503589",
                  "CSAFPID-1503590",
                  "CSAFPID-220132",
                  "CSAFPID-912079",
                  "CSAFPID-1503591",
                  "CSAFPID-816789",
                  "CSAFPID-816790",
                  "CSAFPID-1503592",
                  "CSAFPID-1503593",
                  "CSAFPID-1503594",
                  "CSAFPID-1503595",
                  "CSAFPID-342804",
                  "CSAFPID-1503596",
                  "CSAFPID-1503597",
                  "CSAFPID-1503598",
                  "CSAFPID-816792",
                  "CSAFPID-764247",
                  "CSAFPID-912556",
                  "CSAFPID-764735",
                  "CSAFPID-816793",
                  "CSAFPID-1503599",
                  "CSAFPID-1503600",
                  "CSAFPID-342793",
                  "CSAFPID-816350",
                  "CSAFPID-1261",
                  "CSAFPID-342803",
                  "CSAFPID-816354",
                  "CSAFPID-204563",
                  "CSAFPID-764738",
                  "CSAFPID-816355",
                  "CSAFPID-1503601",
                  "CSAFPID-1503602",
                  "CSAFPID-240600",
                  "CSAFPID-204510",
                  "CSAFPID-204569",
                  "CSAFPID-1751097",
               ],
            },
         ],
         title: "CVE-2023-6597",
      },
      {
         cve: "CVE-2023-7256",
         cwe: {
            id: "CWE-415",
            name: "Double Free",
         },
         notes: [
            {
               category: "other",
               text: "Double Free",
               title: "CWE-415",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-220132",
               "CSAFPID-1751084",
               "CSAFPID-912079",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2023-7256",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-7256.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 4.4,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-220132",
                  "CSAFPID-1751084",
                  "CSAFPID-912079",
               ],
            },
         ],
         title: "CVE-2023-7256",
      },
      {
         cve: "CVE-2023-29407",
         cwe: {
            id: "CWE-834",
            name: "Excessive Iteration",
         },
         notes: [
            {
               category: "other",
               text: "Excessive Iteration",
               title: "CWE-834",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1673530",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2023-29407",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-29407.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6.5,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1673530",
               ],
            },
         ],
         title: "CVE-2023-29407",
      },
      {
         cve: "CVE-2023-29408",
         cwe: {
            id: "CWE-770",
            name: "Allocation of Resources Without Limits or Throttling",
         },
         notes: [
            {
               category: "other",
               text: "Allocation of Resources Without Limits or Throttling",
               title: "CWE-770",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1673530",
               "CSAFPID-1751377",
               "CSAFPID-1751378",
               "CSAFPID-1751379",
               "CSAFPID-1751380",
               "CSAFPID-1751381",
               "CSAFPID-1751382",
               "CSAFPID-1751383",
               "CSAFPID-1674619",
               "CSAFPID-1674622",
               "CSAFPID-1674623",
               "CSAFPID-1751384",
               "CSAFPID-1751385",
               "CSAFPID-1751386",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2023-29408",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-29408.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6.5,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1673530",
                  "CSAFPID-1751377",
                  "CSAFPID-1751378",
                  "CSAFPID-1751379",
                  "CSAFPID-1751380",
                  "CSAFPID-1751381",
                  "CSAFPID-1751382",
                  "CSAFPID-1751383",
                  "CSAFPID-1674619",
                  "CSAFPID-1674622",
                  "CSAFPID-1674623",
                  "CSAFPID-1751384",
                  "CSAFPID-1751385",
                  "CSAFPID-1751386",
               ],
            },
         ],
         title: "CVE-2023-29408",
      },
      {
         cve: "CVE-2023-40577",
         cwe: {
            id: "CWE-79",
            name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
         },
         notes: [
            {
               category: "other",
               text: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
               title: "CWE-79",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751208",
               "CSAFPID-1751209",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2023-40577",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-40577.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751208",
                  "CSAFPID-1751209",
               ],
            },
         ],
         title: "CVE-2023-40577",
      },
      {
         cve: "CVE-2023-46218",
         cwe: {
            id: "CWE-201",
            name: "Insertion of Sensitive Information Into Sent Data",
         },
         notes: [
            {
               category: "other",
               text: "Insertion of Sensitive Information Into Sent Data",
               title: "CWE-201",
            },
            {
               category: "other",
               text: "Improper Input Validation",
               title: "CWE-20",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-90016",
               "CSAFPID-93781",
               "CSAFPID-204510",
               "CSAFPID-204569",
               "CSAFPID-219776",
               "CSAFPID-219826",
               "CSAFPID-220132",
               "CSAFPID-224795",
               "CSAFPID-342804",
               "CSAFPID-611387",
               "CSAFPID-611413",
               "CSAFPID-614517",
               "CSAFPID-764237",
               "CSAFPID-764240",
               "CSAFPID-764242",
               "CSAFPID-764247",
               "CSAFPID-764735",
               "CSAFPID-764739",
               "CSAFPID-764826",
               "CSAFPID-765242",
               "CSAFPID-816348",
               "CSAFPID-816773",
               "CSAFPID-816781",
               "CSAFPID-816782",
               "CSAFPID-912068",
               "CSAFPID-912073",
               "CSAFPID-912076",
               "CSAFPID-912077",
               "CSAFPID-912078",
               "CSAFPID-912079",
               "CSAFPID-912080",
               "CSAFPID-912085",
               "CSAFPID-912101",
               "CSAFPID-912102",
               "CSAFPID-912539",
               "CSAFPID-912540",
               "CSAFPID-912541",
               "CSAFPID-912542",
               "CSAFPID-912543",
               "CSAFPID-912544",
               "CSAFPID-912545",
               "CSAFPID-912546",
               "CSAFPID-912547",
               "CSAFPID-912548",
               "CSAFPID-912549",
               "CSAFPID-912550",
               "CSAFPID-912551",
               "CSAFPID-912552",
               "CSAFPID-912553",
               "CSAFPID-912554",
               "CSAFPID-912556",
               "CSAFPID-912557",
               "CSAFPID-912558",
               "CSAFPID-220055",
               "CSAFPID-1503577",
               "CSAFPID-1503578",
               "CSAFPID-1503579",
               "CSAFPID-1503580",
               "CSAFPID-1503581",
               "CSAFPID-1503322",
               "CSAFPID-912069",
               "CSAFPID-1503582",
               "CSAFPID-1503583",
               "CSAFPID-1503584",
               "CSAFPID-1503585",
               "CSAFPID-1503586",
               "CSAFPID-1503587",
               "CSAFPID-1503588",
               "CSAFPID-1503316",
               "CSAFPID-1503317",
               "CSAFPID-1503589",
               "CSAFPID-1503590",
               "CSAFPID-1503591",
               "CSAFPID-816789",
               "CSAFPID-816790",
               "CSAFPID-1503592",
               "CSAFPID-1503593",
               "CSAFPID-1503594",
               "CSAFPID-1503595",
               "CSAFPID-1503596",
               "CSAFPID-1503597",
               "CSAFPID-1503598",
               "CSAFPID-816792",
               "CSAFPID-816793",
               "CSAFPID-1503599",
               "CSAFPID-1503600",
               "CSAFPID-342793",
               "CSAFPID-816350",
               "CSAFPID-1261",
               "CSAFPID-342803",
               "CSAFPID-816354",
               "CSAFPID-204563",
               "CSAFPID-764738",
               "CSAFPID-816355",
               "CSAFPID-1503601",
               "CSAFPID-1503602",
               "CSAFPID-240600",
               "CSAFPID-1751211",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2023-46218",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-46218.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6.5,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-90016",
                  "CSAFPID-93781",
                  "CSAFPID-204510",
                  "CSAFPID-204569",
                  "CSAFPID-219776",
                  "CSAFPID-219826",
                  "CSAFPID-220132",
                  "CSAFPID-224795",
                  "CSAFPID-342804",
                  "CSAFPID-611387",
                  "CSAFPID-611413",
                  "CSAFPID-614517",
                  "CSAFPID-764237",
                  "CSAFPID-764240",
                  "CSAFPID-764242",
                  "CSAFPID-764247",
                  "CSAFPID-764735",
                  "CSAFPID-764739",
                  "CSAFPID-764826",
                  "CSAFPID-765242",
                  "CSAFPID-816348",
                  "CSAFPID-816773",
                  "CSAFPID-816781",
                  "CSAFPID-816782",
                  "CSAFPID-912068",
                  "CSAFPID-912073",
                  "CSAFPID-912076",
                  "CSAFPID-912077",
                  "CSAFPID-912078",
                  "CSAFPID-912079",
                  "CSAFPID-912080",
                  "CSAFPID-912085",
                  "CSAFPID-912101",
                  "CSAFPID-912102",
                  "CSAFPID-912539",
                  "CSAFPID-912540",
                  "CSAFPID-912541",
                  "CSAFPID-912542",
                  "CSAFPID-912543",
                  "CSAFPID-912544",
                  "CSAFPID-912545",
                  "CSAFPID-912546",
                  "CSAFPID-912547",
                  "CSAFPID-912548",
                  "CSAFPID-912549",
                  "CSAFPID-912550",
                  "CSAFPID-912551",
                  "CSAFPID-912552",
                  "CSAFPID-912553",
                  "CSAFPID-912554",
                  "CSAFPID-912556",
                  "CSAFPID-912557",
                  "CSAFPID-912558",
                  "CSAFPID-220055",
                  "CSAFPID-1503577",
                  "CSAFPID-1503578",
                  "CSAFPID-1503579",
                  "CSAFPID-1503580",
                  "CSAFPID-1503581",
                  "CSAFPID-1503322",
                  "CSAFPID-912069",
                  "CSAFPID-1503582",
                  "CSAFPID-1503583",
                  "CSAFPID-1503584",
                  "CSAFPID-1503585",
                  "CSAFPID-1503586",
                  "CSAFPID-1503587",
                  "CSAFPID-1503588",
                  "CSAFPID-1503316",
                  "CSAFPID-1503317",
                  "CSAFPID-1503589",
                  "CSAFPID-1503590",
                  "CSAFPID-1503591",
                  "CSAFPID-816789",
                  "CSAFPID-816790",
                  "CSAFPID-1503592",
                  "CSAFPID-1503593",
                  "CSAFPID-1503594",
                  "CSAFPID-1503595",
                  "CSAFPID-1503596",
                  "CSAFPID-1503597",
                  "CSAFPID-1503598",
                  "CSAFPID-816792",
                  "CSAFPID-816793",
                  "CSAFPID-1503599",
                  "CSAFPID-1503600",
                  "CSAFPID-342793",
                  "CSAFPID-816350",
                  "CSAFPID-1261",
                  "CSAFPID-342803",
                  "CSAFPID-816354",
                  "CSAFPID-204563",
                  "CSAFPID-764738",
                  "CSAFPID-816355",
                  "CSAFPID-1503601",
                  "CSAFPID-1503602",
                  "CSAFPID-240600",
                  "CSAFPID-1751211",
               ],
            },
         ],
         title: "CVE-2023-46218",
      },
      {
         cve: "CVE-2023-46219",
         cwe: {
            id: "CWE-311",
            name: "Missing Encryption of Sensitive Data",
         },
         notes: [
            {
               category: "other",
               text: "Missing Encryption of Sensitive Data",
               title: "CWE-311",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-764237",
               "CSAFPID-912085",
               "CSAFPID-912068",
               "CSAFPID-912076",
               "CSAFPID-611387",
               "CSAFPID-912539",
               "CSAFPID-816773",
               "CSAFPID-912540",
               "CSAFPID-912541",
               "CSAFPID-912542",
               "CSAFPID-912543",
               "CSAFPID-912101",
               "CSAFPID-912544",
               "CSAFPID-912077",
               "CSAFPID-816348",
               "CSAFPID-912545",
               "CSAFPID-764240",
               "CSAFPID-912546",
               "CSAFPID-614517",
               "CSAFPID-912547",
               "CSAFPID-224795",
               "CSAFPID-912548",
               "CSAFPID-912102",
               "CSAFPID-912549",
               "CSAFPID-764826",
               "CSAFPID-90016",
               "CSAFPID-912078",
               "CSAFPID-912550",
               "CSAFPID-912551",
               "CSAFPID-912552",
               "CSAFPID-611413",
               "CSAFPID-764242",
               "CSAFPID-816781",
               "CSAFPID-816782",
               "CSAFPID-912553",
               "CSAFPID-93781",
               "CSAFPID-204510",
               "CSAFPID-204569",
               "CSAFPID-219776",
               "CSAFPID-219826",
               "CSAFPID-220132",
               "CSAFPID-342804",
               "CSAFPID-764247",
               "CSAFPID-764735",
               "CSAFPID-764739",
               "CSAFPID-765242",
               "CSAFPID-912073",
               "CSAFPID-912079",
               "CSAFPID-912080",
               "CSAFPID-912554",
               "CSAFPID-912556",
               "CSAFPID-912557",
               "CSAFPID-912558",
               "CSAFPID-220055",
               "CSAFPID-1503577",
               "CSAFPID-1503578",
               "CSAFPID-1503579",
               "CSAFPID-1503580",
               "CSAFPID-1503581",
               "CSAFPID-1503322",
               "CSAFPID-912069",
               "CSAFPID-1503582",
               "CSAFPID-1503583",
               "CSAFPID-1503584",
               "CSAFPID-1503585",
               "CSAFPID-1503586",
               "CSAFPID-1503587",
               "CSAFPID-1503588",
               "CSAFPID-1503316",
               "CSAFPID-1503317",
               "CSAFPID-1503589",
               "CSAFPID-1503590",
               "CSAFPID-1503591",
               "CSAFPID-816789",
               "CSAFPID-816790",
               "CSAFPID-1503592",
               "CSAFPID-1503593",
               "CSAFPID-1503594",
               "CSAFPID-1503595",
               "CSAFPID-1503596",
               "CSAFPID-1503597",
               "CSAFPID-1503598",
               "CSAFPID-816792",
               "CSAFPID-816793",
               "CSAFPID-1503599",
               "CSAFPID-1503600",
               "CSAFPID-342793",
               "CSAFPID-816350",
               "CSAFPID-1261",
               "CSAFPID-342803",
               "CSAFPID-816354",
               "CSAFPID-204563",
               "CSAFPID-764738",
               "CSAFPID-816355",
               "CSAFPID-1503601",
               "CSAFPID-1503602",
               "CSAFPID-240600",
               "CSAFPID-1751211",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2023-46219",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-46219.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-764237",
                  "CSAFPID-912085",
                  "CSAFPID-912068",
                  "CSAFPID-912076",
                  "CSAFPID-611387",
                  "CSAFPID-912539",
                  "CSAFPID-816773",
                  "CSAFPID-912540",
                  "CSAFPID-912541",
                  "CSAFPID-912542",
                  "CSAFPID-912543",
                  "CSAFPID-912101",
                  "CSAFPID-912544",
                  "CSAFPID-912077",
                  "CSAFPID-816348",
                  "CSAFPID-912545",
                  "CSAFPID-764240",
                  "CSAFPID-912546",
                  "CSAFPID-614517",
                  "CSAFPID-912547",
                  "CSAFPID-224795",
                  "CSAFPID-912548",
                  "CSAFPID-912102",
                  "CSAFPID-912549",
                  "CSAFPID-764826",
                  "CSAFPID-90016",
                  "CSAFPID-912078",
                  "CSAFPID-912550",
                  "CSAFPID-912551",
                  "CSAFPID-912552",
                  "CSAFPID-611413",
                  "CSAFPID-764242",
                  "CSAFPID-816781",
                  "CSAFPID-816782",
                  "CSAFPID-912553",
                  "CSAFPID-93781",
                  "CSAFPID-204510",
                  "CSAFPID-204569",
                  "CSAFPID-219776",
                  "CSAFPID-219826",
                  "CSAFPID-220132",
                  "CSAFPID-342804",
                  "CSAFPID-764247",
                  "CSAFPID-764735",
                  "CSAFPID-764739",
                  "CSAFPID-765242",
                  "CSAFPID-912073",
                  "CSAFPID-912079",
                  "CSAFPID-912080",
                  "CSAFPID-912554",
                  "CSAFPID-912556",
                  "CSAFPID-912557",
                  "CSAFPID-912558",
                  "CSAFPID-220055",
                  "CSAFPID-1503577",
                  "CSAFPID-1503578",
                  "CSAFPID-1503579",
                  "CSAFPID-1503580",
                  "CSAFPID-1503581",
                  "CSAFPID-1503322",
                  "CSAFPID-912069",
                  "CSAFPID-1503582",
                  "CSAFPID-1503583",
                  "CSAFPID-1503584",
                  "CSAFPID-1503585",
                  "CSAFPID-1503586",
                  "CSAFPID-1503587",
                  "CSAFPID-1503588",
                  "CSAFPID-1503316",
                  "CSAFPID-1503317",
                  "CSAFPID-1503589",
                  "CSAFPID-1503590",
                  "CSAFPID-1503591",
                  "CSAFPID-816789",
                  "CSAFPID-816790",
                  "CSAFPID-1503592",
                  "CSAFPID-1503593",
                  "CSAFPID-1503594",
                  "CSAFPID-1503595",
                  "CSAFPID-1503596",
                  "CSAFPID-1503597",
                  "CSAFPID-1503598",
                  "CSAFPID-816792",
                  "CSAFPID-816793",
                  "CSAFPID-1503599",
                  "CSAFPID-1503600",
                  "CSAFPID-342793",
                  "CSAFPID-816350",
                  "CSAFPID-1261",
                  "CSAFPID-342803",
                  "CSAFPID-816354",
                  "CSAFPID-204563",
                  "CSAFPID-764738",
                  "CSAFPID-816355",
                  "CSAFPID-1503601",
                  "CSAFPID-1503602",
                  "CSAFPID-240600",
                  "CSAFPID-1751211",
               ],
            },
         ],
         title: "CVE-2023-46219",
      },
      {
         cve: "CVE-2023-46604",
         cwe: {
            id: "CWE-502",
            name: "Deserialization of Untrusted Data",
         },
         notes: [
            {
               category: "other",
               text: "Deserialization of Untrusted Data",
               title: "CWE-502",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-94291",
               "CSAFPID-40293",
               "CSAFPID-1265",
               "CSAFPID-1261",
               "CSAFPID-1266",
               "CSAFPID-8984",
               "CSAFPID-764237",
               "CSAFPID-764240",
               "CSAFPID-224795",
               "CSAFPID-764826",
               "CSAFPID-90016",
               "CSAFPID-93781",
               "CSAFPID-220132",
               "CSAFPID-219776",
               "CSAFPID-765242",
               "CSAFPID-764739",
               "CSAFPID-219826",
               "CSAFPID-204510",
               "CSAFPID-204563",
               "CSAFPID-204569",
               "CSAFPID-204622",
               "CSAFPID-219803",
               "CSAFPID-219838",
               "CSAFPID-219909",
               "CSAFPID-221118",
               "CSAFPID-224790",
               "CSAFPID-224793",
               "CSAFPID-240600",
               "CSAFPID-342793",
               "CSAFPID-342803",
               "CSAFPID-342804",
               "CSAFPID-611387",
               "CSAFPID-611413",
               "CSAFPID-611595",
               "CSAFPID-614517",
               "CSAFPID-764242",
               "CSAFPID-764247",
               "CSAFPID-764735",
               "CSAFPID-764738",
               "CSAFPID-816346",
               "CSAFPID-816347",
               "CSAFPID-816348",
               "CSAFPID-816349",
               "CSAFPID-816350",
               "CSAFPID-816351",
               "CSAFPID-816352",
               "CSAFPID-816353",
               "CSAFPID-816354",
               "CSAFPID-816355",
               "CSAFPID-816357",
               "CSAFPID-816358",
               "CSAFPID-816359",
               "CSAFPID-816765",
               "CSAFPID-816766",
               "CSAFPID-816767",
               "CSAFPID-816768",
               "CSAFPID-816769",
               "CSAFPID-816770",
               "CSAFPID-816771",
               "CSAFPID-816772",
               "CSAFPID-816773",
               "CSAFPID-816774",
               "CSAFPID-816775",
               "CSAFPID-816776",
               "CSAFPID-816777",
               "CSAFPID-816778",
               "CSAFPID-816779",
               "CSAFPID-816780",
               "CSAFPID-816781",
               "CSAFPID-816782",
               "CSAFPID-816783",
               "CSAFPID-816784",
               "CSAFPID-816785",
               "CSAFPID-816786",
               "CSAFPID-816787",
               "CSAFPID-816788",
               "CSAFPID-816789",
               "CSAFPID-816790",
               "CSAFPID-816791",
               "CSAFPID-816792",
               "CSAFPID-816793",
               "CSAFPID-816794",
               "CSAFPID-816795",
               "CSAFPID-816796",
               "CSAFPID-816797",
               "CSAFPID-912068",
               "CSAFPID-912073",
               "CSAFPID-912076",
               "CSAFPID-912077",
               "CSAFPID-912078",
               "CSAFPID-912079",
               "CSAFPID-912080",
               "CSAFPID-912085",
               "CSAFPID-912101",
               "CSAFPID-912102",
               "CSAFPID-912539",
               "CSAFPID-912540",
               "CSAFPID-912541",
               "CSAFPID-912542",
               "CSAFPID-912543",
               "CSAFPID-912544",
               "CSAFPID-912545",
               "CSAFPID-912546",
               "CSAFPID-912547",
               "CSAFPID-912548",
               "CSAFPID-912549",
               "CSAFPID-912550",
               "CSAFPID-912551",
               "CSAFPID-912552",
               "CSAFPID-912553",
               "CSAFPID-912554",
               "CSAFPID-912556",
               "CSAFPID-912557",
               "CSAFPID-912558",
               "CSAFPID-1751104",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2023-46604",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-46604.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 10,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-94291",
                  "CSAFPID-40293",
                  "CSAFPID-1265",
                  "CSAFPID-1261",
                  "CSAFPID-1266",
                  "CSAFPID-8984",
                  "CSAFPID-764237",
                  "CSAFPID-764240",
                  "CSAFPID-224795",
                  "CSAFPID-764826",
                  "CSAFPID-90016",
                  "CSAFPID-93781",
                  "CSAFPID-220132",
                  "CSAFPID-219776",
                  "CSAFPID-765242",
                  "CSAFPID-764739",
                  "CSAFPID-219826",
                  "CSAFPID-204510",
                  "CSAFPID-204563",
                  "CSAFPID-204569",
                  "CSAFPID-204622",
                  "CSAFPID-219803",
                  "CSAFPID-219838",
                  "CSAFPID-219909",
                  "CSAFPID-221118",
                  "CSAFPID-224790",
                  "CSAFPID-224793",
                  "CSAFPID-240600",
                  "CSAFPID-342793",
                  "CSAFPID-342803",
                  "CSAFPID-342804",
                  "CSAFPID-611387",
                  "CSAFPID-611413",
                  "CSAFPID-611595",
                  "CSAFPID-614517",
                  "CSAFPID-764242",
                  "CSAFPID-764247",
                  "CSAFPID-764735",
                  "CSAFPID-764738",
                  "CSAFPID-816346",
                  "CSAFPID-816347",
                  "CSAFPID-816348",
                  "CSAFPID-816349",
                  "CSAFPID-816350",
                  "CSAFPID-816351",
                  "CSAFPID-816352",
                  "CSAFPID-816353",
                  "CSAFPID-816354",
                  "CSAFPID-816355",
                  "CSAFPID-816357",
                  "CSAFPID-816358",
                  "CSAFPID-816359",
                  "CSAFPID-816765",
                  "CSAFPID-816766",
                  "CSAFPID-816767",
                  "CSAFPID-816768",
                  "CSAFPID-816769",
                  "CSAFPID-816770",
                  "CSAFPID-816771",
                  "CSAFPID-816772",
                  "CSAFPID-816773",
                  "CSAFPID-816774",
                  "CSAFPID-816775",
                  "CSAFPID-816776",
                  "CSAFPID-816777",
                  "CSAFPID-816778",
                  "CSAFPID-816779",
                  "CSAFPID-816780",
                  "CSAFPID-816781",
                  "CSAFPID-816782",
                  "CSAFPID-816783",
                  "CSAFPID-816784",
                  "CSAFPID-816785",
                  "CSAFPID-816786",
                  "CSAFPID-816787",
                  "CSAFPID-816788",
                  "CSAFPID-816789",
                  "CSAFPID-816790",
                  "CSAFPID-816791",
                  "CSAFPID-816792",
                  "CSAFPID-816793",
                  "CSAFPID-816794",
                  "CSAFPID-816795",
                  "CSAFPID-816796",
                  "CSAFPID-816797",
                  "CSAFPID-912068",
                  "CSAFPID-912073",
                  "CSAFPID-912076",
                  "CSAFPID-912077",
                  "CSAFPID-912078",
                  "CSAFPID-912079",
                  "CSAFPID-912080",
                  "CSAFPID-912085",
                  "CSAFPID-912101",
                  "CSAFPID-912102",
                  "CSAFPID-912539",
                  "CSAFPID-912540",
                  "CSAFPID-912541",
                  "CSAFPID-912542",
                  "CSAFPID-912543",
                  "CSAFPID-912544",
                  "CSAFPID-912545",
                  "CSAFPID-912546",
                  "CSAFPID-912547",
                  "CSAFPID-912548",
                  "CSAFPID-912549",
                  "CSAFPID-912550",
                  "CSAFPID-912551",
                  "CSAFPID-912552",
                  "CSAFPID-912553",
                  "CSAFPID-912554",
                  "CSAFPID-912556",
                  "CSAFPID-912557",
                  "CSAFPID-912558",
                  "CSAFPID-1751104",
               ],
            },
         ],
         title: "CVE-2023-46604",
      },
      {
         cve: "CVE-2023-50868",
         cwe: {
            id: "CWE-400",
            name: "Uncontrolled Resource Consumption",
         },
         notes: [
            {
               category: "other",
               text: "Uncontrolled Resource Consumption",
               title: "CWE-400",
            },
         ],
         references: [
            {
               category: "self",
               summary: "CVE-2023-50868",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-50868.json",
            },
         ],
         title: "CVE-2023-50868",
      },
      {
         cve: "CVE-2024-0232",
         cwe: {
            id: "CWE-416",
            name: "Use After Free",
         },
         notes: [
            {
               category: "other",
               text: "Use After Free",
               title: "CWE-416",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1650777",
               "CSAFPID-1650778",
               "CSAFPID-220055",
               "CSAFPID-1503577",
               "CSAFPID-764237",
               "CSAFPID-912085",
               "CSAFPID-1503578",
               "CSAFPID-1503579",
               "CSAFPID-1503580",
               "CSAFPID-912101",
               "CSAFPID-1503581",
               "CSAFPID-1503322",
               "CSAFPID-912069",
               "CSAFPID-764240",
               "CSAFPID-912547",
               "CSAFPID-1503582",
               "CSAFPID-912549",
               "CSAFPID-1503583",
               "CSAFPID-1503584",
               "CSAFPID-1503585",
               "CSAFPID-1503586",
               "CSAFPID-1503587",
               "CSAFPID-1503588",
               "CSAFPID-1503316",
               "CSAFPID-1503317",
               "CSAFPID-764242",
               "CSAFPID-1503589",
               "CSAFPID-1503590",
               "CSAFPID-220132",
               "CSAFPID-912079",
               "CSAFPID-1503591",
               "CSAFPID-816789",
               "CSAFPID-816790",
               "CSAFPID-1503592",
               "CSAFPID-1503593",
               "CSAFPID-1503594",
               "CSAFPID-1503595",
               "CSAFPID-342804",
               "CSAFPID-1503596",
               "CSAFPID-1503597",
               "CSAFPID-1503598",
               "CSAFPID-816792",
               "CSAFPID-764247",
               "CSAFPID-912556",
               "CSAFPID-764735",
               "CSAFPID-816793",
               "CSAFPID-1503599",
               "CSAFPID-1503600",
               "CSAFPID-342793",
               "CSAFPID-816350",
               "CSAFPID-1261",
               "CSAFPID-342803",
               "CSAFPID-816354",
               "CSAFPID-204563",
               "CSAFPID-764738",
               "CSAFPID-816355",
               "CSAFPID-1503601",
               "CSAFPID-1503602",
               "CSAFPID-240600",
               "CSAFPID-204510",
               "CSAFPID-204569",
               "CSAFPID-1751218",
               "CSAFPID-1751377",
               "CSAFPID-1751378",
               "CSAFPID-1751379",
               "CSAFPID-1751380",
               "CSAFPID-1751381",
               "CSAFPID-1751382",
               "CSAFPID-1751383",
               "CSAFPID-1674619",
               "CSAFPID-1674622",
               "CSAFPID-1674623",
               "CSAFPID-1751384",
               "CSAFPID-1751385",
               "CSAFPID-1751386",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-0232",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-0232.json",
            },
         ],
         title: "CVE-2024-0232",
      },
      {
         cve: "CVE-2024-0397",
         product_status: {
            known_affected: [
               "CSAFPID-220055",
               "CSAFPID-1503577",
               "CSAFPID-764237",
               "CSAFPID-912085",
               "CSAFPID-1503578",
               "CSAFPID-1503579",
               "CSAFPID-1503580",
               "CSAFPID-912101",
               "CSAFPID-1503581",
               "CSAFPID-1503322",
               "CSAFPID-912069",
               "CSAFPID-764240",
               "CSAFPID-912547",
               "CSAFPID-1503582",
               "CSAFPID-912549",
               "CSAFPID-1503583",
               "CSAFPID-1503584",
               "CSAFPID-1503585",
               "CSAFPID-1503586",
               "CSAFPID-1503587",
               "CSAFPID-1503588",
               "CSAFPID-1503316",
               "CSAFPID-1503317",
               "CSAFPID-764242",
               "CSAFPID-1503589",
               "CSAFPID-1503590",
               "CSAFPID-220132",
               "CSAFPID-912079",
               "CSAFPID-1503591",
               "CSAFPID-816789",
               "CSAFPID-816790",
               "CSAFPID-1503592",
               "CSAFPID-1503593",
               "CSAFPID-1503594",
               "CSAFPID-1503595",
               "CSAFPID-342804",
               "CSAFPID-1503596",
               "CSAFPID-1503597",
               "CSAFPID-1503598",
               "CSAFPID-816792",
               "CSAFPID-764247",
               "CSAFPID-912556",
               "CSAFPID-764735",
               "CSAFPID-816793",
               "CSAFPID-1503599",
               "CSAFPID-1503600",
               "CSAFPID-342793",
               "CSAFPID-816350",
               "CSAFPID-1261",
               "CSAFPID-342803",
               "CSAFPID-816354",
               "CSAFPID-204563",
               "CSAFPID-764738",
               "CSAFPID-816355",
               "CSAFPID-1503601",
               "CSAFPID-1503602",
               "CSAFPID-240600",
               "CSAFPID-204510",
               "CSAFPID-204569",
               "CSAFPID-1673530",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-0397",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-0397.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-220055",
                  "CSAFPID-1503577",
                  "CSAFPID-764237",
                  "CSAFPID-912085",
                  "CSAFPID-1503578",
                  "CSAFPID-1503579",
                  "CSAFPID-1503580",
                  "CSAFPID-912101",
                  "CSAFPID-1503581",
                  "CSAFPID-1503322",
                  "CSAFPID-912069",
                  "CSAFPID-764240",
                  "CSAFPID-912547",
                  "CSAFPID-1503582",
                  "CSAFPID-912549",
                  "CSAFPID-1503583",
                  "CSAFPID-1503584",
                  "CSAFPID-1503585",
                  "CSAFPID-1503586",
                  "CSAFPID-1503587",
                  "CSAFPID-1503588",
                  "CSAFPID-1503316",
                  "CSAFPID-1503317",
                  "CSAFPID-764242",
                  "CSAFPID-1503589",
                  "CSAFPID-1503590",
                  "CSAFPID-220132",
                  "CSAFPID-912079",
                  "CSAFPID-1503591",
                  "CSAFPID-816789",
                  "CSAFPID-816790",
                  "CSAFPID-1503592",
                  "CSAFPID-1503593",
                  "CSAFPID-1503594",
                  "CSAFPID-1503595",
                  "CSAFPID-342804",
                  "CSAFPID-1503596",
                  "CSAFPID-1503597",
                  "CSAFPID-1503598",
                  "CSAFPID-816792",
                  "CSAFPID-764247",
                  "CSAFPID-912556",
                  "CSAFPID-764735",
                  "CSAFPID-816793",
                  "CSAFPID-1503599",
                  "CSAFPID-1503600",
                  "CSAFPID-342793",
                  "CSAFPID-816350",
                  "CSAFPID-1261",
                  "CSAFPID-342803",
                  "CSAFPID-816354",
                  "CSAFPID-204563",
                  "CSAFPID-764738",
                  "CSAFPID-816355",
                  "CSAFPID-1503601",
                  "CSAFPID-1503602",
                  "CSAFPID-240600",
                  "CSAFPID-204510",
                  "CSAFPID-204569",
                  "CSAFPID-1673530",
               ],
            },
         ],
         title: "CVE-2024-0397",
      },
      {
         cve: "CVE-2024-0450",
         cwe: {
            id: "CWE-450",
            name: "Multiple Interpretations of UI Input",
         },
         notes: [
            {
               category: "other",
               text: "Multiple Interpretations of UI Input",
               title: "CWE-450",
            },
            {
               category: "other",
               text: "Asymmetric Resource Consumption (Amplification)",
               title: "CWE-405",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1635305",
               "CSAFPID-1635306",
               "CSAFPID-1635307",
               "CSAFPID-1635308",
               "CSAFPID-1635309",
               "CSAFPID-1635310",
               "CSAFPID-1635311",
               "CSAFPID-1635312",
               "CSAFPID-1635313",
               "CSAFPID-1635314",
               "CSAFPID-1635315",
               "CSAFPID-1635316",
               "CSAFPID-1635317",
               "CSAFPID-1635318",
               "CSAFPID-1635319",
               "CSAFPID-1635320",
               "CSAFPID-1635321",
               "CSAFPID-1635322",
               "CSAFPID-1635323",
               "CSAFPID-1635324",
               "CSAFPID-1635325",
               "CSAFPID-1635326",
               "CSAFPID-1635327",
               "CSAFPID-1635328",
               "CSAFPID-1635329",
               "CSAFPID-1673420",
               "CSAFPID-1673421",
               "CSAFPID-1670434",
               "CSAFPID-1674629",
               "CSAFPID-1674630",
               "CSAFPID-1674631",
               "CSAFPID-1674632",
               "CSAFPID-1674633",
               "CSAFPID-1674634",
               "CSAFPID-1674635",
               "CSAFPID-1674636",
               "CSAFPID-1674637",
               "CSAFPID-1674638",
               "CSAFPID-1674639",
               "CSAFPID-1674640",
               "CSAFPID-1674641",
               "CSAFPID-1674642",
               "CSAFPID-1674643",
               "CSAFPID-1674644",
               "CSAFPID-1674645",
               "CSAFPID-1674646",
               "CSAFPID-220055",
               "CSAFPID-1503577",
               "CSAFPID-764237",
               "CSAFPID-912085",
               "CSAFPID-1503578",
               "CSAFPID-1503579",
               "CSAFPID-1503580",
               "CSAFPID-912101",
               "CSAFPID-1503581",
               "CSAFPID-1503322",
               "CSAFPID-912069",
               "CSAFPID-764240",
               "CSAFPID-912547",
               "CSAFPID-1503582",
               "CSAFPID-912549",
               "CSAFPID-1503583",
               "CSAFPID-1503584",
               "CSAFPID-1503585",
               "CSAFPID-1503586",
               "CSAFPID-1503587",
               "CSAFPID-1503588",
               "CSAFPID-1503316",
               "CSAFPID-1503317",
               "CSAFPID-764242",
               "CSAFPID-1503589",
               "CSAFPID-1503590",
               "CSAFPID-220132",
               "CSAFPID-912079",
               "CSAFPID-1503591",
               "CSAFPID-816789",
               "CSAFPID-816790",
               "CSAFPID-1503592",
               "CSAFPID-1503593",
               "CSAFPID-1503594",
               "CSAFPID-1503595",
               "CSAFPID-342804",
               "CSAFPID-1503596",
               "CSAFPID-1503597",
               "CSAFPID-1503598",
               "CSAFPID-816792",
               "CSAFPID-764247",
               "CSAFPID-912556",
               "CSAFPID-764735",
               "CSAFPID-816793",
               "CSAFPID-1503599",
               "CSAFPID-1503600",
               "CSAFPID-342793",
               "CSAFPID-816350",
               "CSAFPID-1261",
               "CSAFPID-342803",
               "CSAFPID-816354",
               "CSAFPID-204563",
               "CSAFPID-764738",
               "CSAFPID-816355",
               "CSAFPID-1503601",
               "CSAFPID-1503602",
               "CSAFPID-240600",
               "CSAFPID-204510",
               "CSAFPID-204569",
               "CSAFPID-1727475",
               "CSAFPID-1751097",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-0450",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-0450.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6.2,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1635305",
                  "CSAFPID-1635306",
                  "CSAFPID-1635307",
                  "CSAFPID-1635308",
                  "CSAFPID-1635309",
                  "CSAFPID-1635310",
                  "CSAFPID-1635311",
                  "CSAFPID-1635312",
                  "CSAFPID-1635313",
                  "CSAFPID-1635314",
                  "CSAFPID-1635315",
                  "CSAFPID-1635316",
                  "CSAFPID-1635317",
                  "CSAFPID-1635318",
                  "CSAFPID-1635319",
                  "CSAFPID-1635320",
                  "CSAFPID-1635321",
                  "CSAFPID-1635322",
                  "CSAFPID-1635323",
                  "CSAFPID-1635324",
                  "CSAFPID-1635325",
                  "CSAFPID-1635326",
                  "CSAFPID-1635327",
                  "CSAFPID-1635328",
                  "CSAFPID-1635329",
                  "CSAFPID-1673420",
                  "CSAFPID-1673421",
                  "CSAFPID-1670434",
                  "CSAFPID-1674629",
                  "CSAFPID-1674630",
                  "CSAFPID-1674631",
                  "CSAFPID-1674632",
                  "CSAFPID-1674633",
                  "CSAFPID-1674634",
                  "CSAFPID-1674635",
                  "CSAFPID-1674636",
                  "CSAFPID-1674637",
                  "CSAFPID-1674638",
                  "CSAFPID-1674639",
                  "CSAFPID-1674640",
                  "CSAFPID-1674641",
                  "CSAFPID-1674642",
                  "CSAFPID-1674643",
                  "CSAFPID-1674644",
                  "CSAFPID-1674645",
                  "CSAFPID-1674646",
                  "CSAFPID-220055",
                  "CSAFPID-1503577",
                  "CSAFPID-764237",
                  "CSAFPID-912085",
                  "CSAFPID-1503578",
                  "CSAFPID-1503579",
                  "CSAFPID-1503580",
                  "CSAFPID-912101",
                  "CSAFPID-1503581",
                  "CSAFPID-1503322",
                  "CSAFPID-912069",
                  "CSAFPID-764240",
                  "CSAFPID-912547",
                  "CSAFPID-1503582",
                  "CSAFPID-912549",
                  "CSAFPID-1503583",
                  "CSAFPID-1503584",
                  "CSAFPID-1503585",
                  "CSAFPID-1503586",
                  "CSAFPID-1503587",
                  "CSAFPID-1503588",
                  "CSAFPID-1503316",
                  "CSAFPID-1503317",
                  "CSAFPID-764242",
                  "CSAFPID-1503589",
                  "CSAFPID-1503590",
                  "CSAFPID-220132",
                  "CSAFPID-912079",
                  "CSAFPID-1503591",
                  "CSAFPID-816789",
                  "CSAFPID-816790",
                  "CSAFPID-1503592",
                  "CSAFPID-1503593",
                  "CSAFPID-1503594",
                  "CSAFPID-1503595",
                  "CSAFPID-342804",
                  "CSAFPID-1503596",
                  "CSAFPID-1503597",
                  "CSAFPID-1503598",
                  "CSAFPID-816792",
                  "CSAFPID-764247",
                  "CSAFPID-912556",
                  "CSAFPID-764735",
                  "CSAFPID-816793",
                  "CSAFPID-1503599",
                  "CSAFPID-1503600",
                  "CSAFPID-342793",
                  "CSAFPID-816350",
                  "CSAFPID-1261",
                  "CSAFPID-342803",
                  "CSAFPID-816354",
                  "CSAFPID-204563",
                  "CSAFPID-764738",
                  "CSAFPID-816355",
                  "CSAFPID-1503601",
                  "CSAFPID-1503602",
                  "CSAFPID-240600",
                  "CSAFPID-204510",
                  "CSAFPID-204569",
                  "CSAFPID-1727475",
                  "CSAFPID-1751097",
               ],
            },
         ],
         title: "CVE-2024-0450",
      },
      {
         cve: "CVE-2024-1442",
         cwe: {
            id: "CWE-269",
            name: "Improper Privilege Management",
         },
         notes: [
            {
               category: "other",
               text: "Improper Privilege Management",
               title: "CWE-269",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1673530",
               "CSAFPID-1751377",
               "CSAFPID-1751378",
               "CSAFPID-1751379",
               "CSAFPID-1751380",
               "CSAFPID-1751381",
               "CSAFPID-1751382",
               "CSAFPID-1751383",
               "CSAFPID-1674619",
               "CSAFPID-1674622",
               "CSAFPID-1674623",
               "CSAFPID-1751384",
               "CSAFPID-1751385",
               "CSAFPID-1751386",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-1442",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-1442.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:L",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1673530",
                  "CSAFPID-1751377",
                  "CSAFPID-1751378",
                  "CSAFPID-1751379",
                  "CSAFPID-1751380",
                  "CSAFPID-1751381",
                  "CSAFPID-1751382",
                  "CSAFPID-1751383",
                  "CSAFPID-1674619",
                  "CSAFPID-1674622",
                  "CSAFPID-1674623",
                  "CSAFPID-1751384",
                  "CSAFPID-1751385",
                  "CSAFPID-1751386",
               ],
            },
         ],
         title: "CVE-2024-1442",
      },
      {
         cve: "CVE-2024-2961",
         cwe: {
            id: "CWE-787",
            name: "Out-of-bounds Write",
         },
         notes: [
            {
               category: "other",
               text: "Out-of-bounds Write",
               title: "CWE-787",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1635305",
               "CSAFPID-1635306",
               "CSAFPID-1635307",
               "CSAFPID-1635308",
               "CSAFPID-1635309",
               "CSAFPID-1635310",
               "CSAFPID-1635311",
               "CSAFPID-1635312",
               "CSAFPID-1635313",
               "CSAFPID-1635314",
               "CSAFPID-1635315",
               "CSAFPID-1635316",
               "CSAFPID-1635317",
               "CSAFPID-1635318",
               "CSAFPID-1635319",
               "CSAFPID-1635320",
               "CSAFPID-1635321",
               "CSAFPID-1635322",
               "CSAFPID-1635323",
               "CSAFPID-1635324",
               "CSAFPID-1635325",
               "CSAFPID-1635326",
               "CSAFPID-1635327",
               "CSAFPID-1635328",
               "CSAFPID-1635329",
               "CSAFPID-1672762",
               "CSAFPID-1672764",
               "CSAFPID-1672767",
               "CSAFPID-1673396",
               "CSAFPID-1673395",
               "CSAFPID-1673494",
               "CSAFPID-220055",
               "CSAFPID-1503577",
               "CSAFPID-764237",
               "CSAFPID-912085",
               "CSAFPID-1503578",
               "CSAFPID-1503579",
               "CSAFPID-1503580",
               "CSAFPID-912101",
               "CSAFPID-1503581",
               "CSAFPID-1503322",
               "CSAFPID-912069",
               "CSAFPID-764240",
               "CSAFPID-912547",
               "CSAFPID-1503582",
               "CSAFPID-912549",
               "CSAFPID-1503583",
               "CSAFPID-1503584",
               "CSAFPID-1503585",
               "CSAFPID-1503586",
               "CSAFPID-1503587",
               "CSAFPID-1503588",
               "CSAFPID-1503316",
               "CSAFPID-1503317",
               "CSAFPID-764242",
               "CSAFPID-1503589",
               "CSAFPID-1503590",
               "CSAFPID-220132",
               "CSAFPID-912079",
               "CSAFPID-1503591",
               "CSAFPID-816789",
               "CSAFPID-816790",
               "CSAFPID-1503592",
               "CSAFPID-1503593",
               "CSAFPID-1503594",
               "CSAFPID-1503595",
               "CSAFPID-342804",
               "CSAFPID-1503596",
               "CSAFPID-1503597",
               "CSAFPID-1503598",
               "CSAFPID-816792",
               "CSAFPID-764247",
               "CSAFPID-912556",
               "CSAFPID-764735",
               "CSAFPID-816793",
               "CSAFPID-1503599",
               "CSAFPID-1503600",
               "CSAFPID-342793",
               "CSAFPID-816350",
               "CSAFPID-1261",
               "CSAFPID-342803",
               "CSAFPID-816354",
               "CSAFPID-204563",
               "CSAFPID-764738",
               "CSAFPID-816355",
               "CSAFPID-1503601",
               "CSAFPID-1503602",
               "CSAFPID-240600",
               "CSAFPID-204510",
               "CSAFPID-204569",
               "CSAFPID-1727475",
               "CSAFPID-1751097",
               "CSAFPID-1751237",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-2961",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-2961.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.8,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1635305",
                  "CSAFPID-1635306",
                  "CSAFPID-1635307",
                  "CSAFPID-1635308",
                  "CSAFPID-1635309",
                  "CSAFPID-1635310",
                  "CSAFPID-1635311",
                  "CSAFPID-1635312",
                  "CSAFPID-1635313",
                  "CSAFPID-1635314",
                  "CSAFPID-1635315",
                  "CSAFPID-1635316",
                  "CSAFPID-1635317",
                  "CSAFPID-1635318",
                  "CSAFPID-1635319",
                  "CSAFPID-1635320",
                  "CSAFPID-1635321",
                  "CSAFPID-1635322",
                  "CSAFPID-1635323",
                  "CSAFPID-1635324",
                  "CSAFPID-1635325",
                  "CSAFPID-1635326",
                  "CSAFPID-1635327",
                  "CSAFPID-1635328",
                  "CSAFPID-1635329",
                  "CSAFPID-1672762",
                  "CSAFPID-1672764",
                  "CSAFPID-1672767",
                  "CSAFPID-1673396",
                  "CSAFPID-1673395",
                  "CSAFPID-1673494",
                  "CSAFPID-220055",
                  "CSAFPID-1503577",
                  "CSAFPID-764237",
                  "CSAFPID-912085",
                  "CSAFPID-1503578",
                  "CSAFPID-1503579",
                  "CSAFPID-1503580",
                  "CSAFPID-912101",
                  "CSAFPID-1503581",
                  "CSAFPID-1503322",
                  "CSAFPID-912069",
                  "CSAFPID-764240",
                  "CSAFPID-912547",
                  "CSAFPID-1503582",
                  "CSAFPID-912549",
                  "CSAFPID-1503583",
                  "CSAFPID-1503584",
                  "CSAFPID-1503585",
                  "CSAFPID-1503586",
                  "CSAFPID-1503587",
                  "CSAFPID-1503588",
                  "CSAFPID-1503316",
                  "CSAFPID-1503317",
                  "CSAFPID-764242",
                  "CSAFPID-1503589",
                  "CSAFPID-1503590",
                  "CSAFPID-220132",
                  "CSAFPID-912079",
                  "CSAFPID-1503591",
                  "CSAFPID-816789",
                  "CSAFPID-816790",
                  "CSAFPID-1503592",
                  "CSAFPID-1503593",
                  "CSAFPID-1503594",
                  "CSAFPID-1503595",
                  "CSAFPID-342804",
                  "CSAFPID-1503596",
                  "CSAFPID-1503597",
                  "CSAFPID-1503598",
                  "CSAFPID-816792",
                  "CSAFPID-764247",
                  "CSAFPID-912556",
                  "CSAFPID-764735",
                  "CSAFPID-816793",
                  "CSAFPID-1503599",
                  "CSAFPID-1503600",
                  "CSAFPID-342793",
                  "CSAFPID-816350",
                  "CSAFPID-1261",
                  "CSAFPID-342803",
                  "CSAFPID-816354",
                  "CSAFPID-204563",
                  "CSAFPID-764738",
                  "CSAFPID-816355",
                  "CSAFPID-1503601",
                  "CSAFPID-1503602",
                  "CSAFPID-240600",
                  "CSAFPID-204510",
                  "CSAFPID-204569",
                  "CSAFPID-1727475",
                  "CSAFPID-1751097",
                  "CSAFPID-1751237",
               ],
            },
         ],
         title: "CVE-2024-2961",
      },
      {
         cve: "CVE-2024-3596",
         cwe: {
            id: "CWE-924",
            name: "Improper Enforcement of Message Integrity During Transmission in a Communication Channel",
         },
         notes: [
            {
               category: "other",
               text: "Improper Enforcement of Message Integrity During Transmission in a Communication Channel",
               title: "CWE-924",
            },
            {
               category: "other",
               text: "Use of Weak Hash",
               title: "CWE-328",
            },
            {
               category: "other",
               text: "Authentication Bypass by Capture-replay",
               title: "CWE-294",
            },
            {
               category: "other",
               text: "Use of Password Hash Instead of Password for Authentication",
               title: "CWE-836",
            },
            {
               category: "other",
               text: "Use of a Broken or Risky Cryptographic Algorithm",
               title: "CWE-327",
            },
            {
               category: "other",
               text: "User Interface (UI) Misrepresentation of Critical Information",
               title: "CWE-451",
            },
            {
               category: "other",
               text: "Improper Validation of Integrity Check Value",
               title: "CWE-354",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751090",
               "CSAFPID-912079",
               "CSAFPID-220132",
               "CSAFPID-1751253",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-3596",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-3596.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751090",
                  "CSAFPID-912079",
                  "CSAFPID-220132",
                  "CSAFPID-1751253",
               ],
            },
         ],
         title: "CVE-2024-3596",
      },
      {
         cve: "CVE-2024-4030",
         cwe: {
            id: "CWE-276",
            name: "Incorrect Default Permissions",
         },
         notes: [
            {
               category: "other",
               text: "Incorrect Default Permissions",
               title: "CWE-276",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1673530",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-4030",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-4030.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1673530",
               ],
            },
         ],
         title: "CVE-2024-4030",
      },
      {
         cve: "CVE-2024-4032",
         cwe: {
            id: "CWE-440",
            name: "Expected Behavior Violation",
         },
         notes: [
            {
               category: "other",
               text: "Expected Behavior Violation",
               title: "CWE-440",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1673530",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-4032",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-4032.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1673530",
               ],
            },
         ],
         title: "CVE-2024-4032",
      },
      {
         cve: "CVE-2024-5535",
         cwe: {
            id: "CWE-200",
            name: "Exposure of Sensitive Information to an Unauthorized Actor",
         },
         notes: [
            {
               category: "other",
               text: "Exposure of Sensitive Information to an Unauthorized Actor",
               title: "CWE-200",
            },
            {
               category: "other",
               text: "Improper Restriction of Operations within the Bounds of a Memory Buffer",
               title: "CWE-119",
            },
            {
               category: "other",
               text: "Dependency on Vulnerable Third-Party Component",
               title: "CWE-1395",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751090",
               "CSAFPID-1751253",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-5535",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-5535.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.1,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751090",
                  "CSAFPID-1751253",
               ],
            },
         ],
         title: "CVE-2024-5535",
      },
      {
         cve: "CVE-2024-6119",
         cwe: {
            id: "CWE-843",
            name: "Access of Resource Using Incompatible Type ('Type Confusion')",
         },
         notes: [
            {
               category: "other",
               text: "Access of Resource Using Incompatible Type ('Type Confusion')",
               title: "CWE-843",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751209",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-6119",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-6119.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.1,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751209",
               ],
            },
         ],
         title: "CVE-2024-6119",
      },
      {
         cve: "CVE-2024-6162",
         cwe: {
            id: "CWE-404",
            name: "Improper Resource Shutdown or Release",
         },
         notes: [
            {
               category: "other",
               text: "Improper Resource Shutdown or Release",
               title: "CWE-404",
            },
            {
               category: "other",
               text: "Uncontrolled Resource Consumption",
               title: "CWE-400",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1635305",
               "CSAFPID-1635306",
               "CSAFPID-1635307",
               "CSAFPID-1635308",
               "CSAFPID-1635309",
               "CSAFPID-1635310",
               "CSAFPID-1635311",
               "CSAFPID-1635312",
               "CSAFPID-1635313",
               "CSAFPID-1635314",
               "CSAFPID-1635315",
               "CSAFPID-1635316",
               "CSAFPID-1635317",
               "CSAFPID-1635318",
               "CSAFPID-1635319",
               "CSAFPID-1635320",
               "CSAFPID-1635321",
               "CSAFPID-1635322",
               "CSAFPID-1635323",
               "CSAFPID-1635324",
               "CSAFPID-1635325",
               "CSAFPID-1635326",
               "CSAFPID-1635327",
               "CSAFPID-1635328",
               "CSAFPID-1635329",
               "CSAFPID-1650752",
               "CSAFPID-1650751",
               "CSAFPID-1673526",
               "CSAFPID-1673399",
               "CSAFPID-1670434",
               "CSAFPID-1674629",
               "CSAFPID-1674630",
               "CSAFPID-1674631",
               "CSAFPID-1674632",
               "CSAFPID-1674633",
               "CSAFPID-1674634",
               "CSAFPID-1674635",
               "CSAFPID-1674636",
               "CSAFPID-1674637",
               "CSAFPID-1674638",
               "CSAFPID-1674639",
               "CSAFPID-1674640",
               "CSAFPID-1674641",
               "CSAFPID-1674642",
               "CSAFPID-1674643",
               "CSAFPID-1674644",
               "CSAFPID-1674645",
               "CSAFPID-1674646",
               "CSAFPID-220055",
               "CSAFPID-1503577",
               "CSAFPID-764237",
               "CSAFPID-912085",
               "CSAFPID-1503578",
               "CSAFPID-1503579",
               "CSAFPID-1503580",
               "CSAFPID-912101",
               "CSAFPID-1503581",
               "CSAFPID-1503322",
               "CSAFPID-912069",
               "CSAFPID-764240",
               "CSAFPID-912547",
               "CSAFPID-1503582",
               "CSAFPID-912549",
               "CSAFPID-1503583",
               "CSAFPID-1503584",
               "CSAFPID-1503585",
               "CSAFPID-1503586",
               "CSAFPID-1503587",
               "CSAFPID-1503588",
               "CSAFPID-1503316",
               "CSAFPID-1503317",
               "CSAFPID-764242",
               "CSAFPID-1503589",
               "CSAFPID-1503590",
               "CSAFPID-220132",
               "CSAFPID-912079",
               "CSAFPID-1503591",
               "CSAFPID-816789",
               "CSAFPID-816790",
               "CSAFPID-1503592",
               "CSAFPID-1503593",
               "CSAFPID-1503594",
               "CSAFPID-1503595",
               "CSAFPID-342804",
               "CSAFPID-1503596",
               "CSAFPID-1503597",
               "CSAFPID-1503598",
               "CSAFPID-816792",
               "CSAFPID-764247",
               "CSAFPID-912556",
               "CSAFPID-764735",
               "CSAFPID-816793",
               "CSAFPID-1503599",
               "CSAFPID-1503600",
               "CSAFPID-342793",
               "CSAFPID-816350",
               "CSAFPID-1261",
               "CSAFPID-342803",
               "CSAFPID-816354",
               "CSAFPID-204563",
               "CSAFPID-764738",
               "CSAFPID-816355",
               "CSAFPID-1503601",
               "CSAFPID-1503602",
               "CSAFPID-240600",
               "CSAFPID-204510",
               "CSAFPID-204569",
               "CSAFPID-1727475",
               "CSAFPID-1751303",
               "CSAFPID-1650820",
               "CSAFPID-1751377",
               "CSAFPID-1751378",
               "CSAFPID-1751379",
               "CSAFPID-1751380",
               "CSAFPID-1751381",
               "CSAFPID-1751382",
               "CSAFPID-1751383",
               "CSAFPID-1674619",
               "CSAFPID-1674622",
               "CSAFPID-1674623",
               "CSAFPID-1751384",
               "CSAFPID-1751385",
               "CSAFPID-1751386",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-6162",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-6162.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1635305",
                  "CSAFPID-1635306",
                  "CSAFPID-1635307",
                  "CSAFPID-1635308",
                  "CSAFPID-1635309",
                  "CSAFPID-1635310",
                  "CSAFPID-1635311",
                  "CSAFPID-1635312",
                  "CSAFPID-1635313",
                  "CSAFPID-1635314",
                  "CSAFPID-1635315",
                  "CSAFPID-1635316",
                  "CSAFPID-1635317",
                  "CSAFPID-1635318",
                  "CSAFPID-1635319",
                  "CSAFPID-1635320",
                  "CSAFPID-1635321",
                  "CSAFPID-1635322",
                  "CSAFPID-1635323",
                  "CSAFPID-1635324",
                  "CSAFPID-1635325",
                  "CSAFPID-1635326",
                  "CSAFPID-1635327",
                  "CSAFPID-1635328",
                  "CSAFPID-1635329",
                  "CSAFPID-1650752",
                  "CSAFPID-1650751",
                  "CSAFPID-1673526",
                  "CSAFPID-1673399",
                  "CSAFPID-1670434",
                  "CSAFPID-1674629",
                  "CSAFPID-1674630",
                  "CSAFPID-1674631",
                  "CSAFPID-1674632",
                  "CSAFPID-1674633",
                  "CSAFPID-1674634",
                  "CSAFPID-1674635",
                  "CSAFPID-1674636",
                  "CSAFPID-1674637",
                  "CSAFPID-1674638",
                  "CSAFPID-1674639",
                  "CSAFPID-1674640",
                  "CSAFPID-1674641",
                  "CSAFPID-1674642",
                  "CSAFPID-1674643",
                  "CSAFPID-1674644",
                  "CSAFPID-1674645",
                  "CSAFPID-1674646",
                  "CSAFPID-220055",
                  "CSAFPID-1503577",
                  "CSAFPID-764237",
                  "CSAFPID-912085",
                  "CSAFPID-1503578",
                  "CSAFPID-1503579",
                  "CSAFPID-1503580",
                  "CSAFPID-912101",
                  "CSAFPID-1503581",
                  "CSAFPID-1503322",
                  "CSAFPID-912069",
                  "CSAFPID-764240",
                  "CSAFPID-912547",
                  "CSAFPID-1503582",
                  "CSAFPID-912549",
                  "CSAFPID-1503583",
                  "CSAFPID-1503584",
                  "CSAFPID-1503585",
                  "CSAFPID-1503586",
                  "CSAFPID-1503587",
                  "CSAFPID-1503588",
                  "CSAFPID-1503316",
                  "CSAFPID-1503317",
                  "CSAFPID-764242",
                  "CSAFPID-1503589",
                  "CSAFPID-1503590",
                  "CSAFPID-220132",
                  "CSAFPID-912079",
                  "CSAFPID-1503591",
                  "CSAFPID-816789",
                  "CSAFPID-816790",
                  "CSAFPID-1503592",
                  "CSAFPID-1503593",
                  "CSAFPID-1503594",
                  "CSAFPID-1503595",
                  "CSAFPID-342804",
                  "CSAFPID-1503596",
                  "CSAFPID-1503597",
                  "CSAFPID-1503598",
                  "CSAFPID-816792",
                  "CSAFPID-764247",
                  "CSAFPID-912556",
                  "CSAFPID-764735",
                  "CSAFPID-816793",
                  "CSAFPID-1503599",
                  "CSAFPID-1503600",
                  "CSAFPID-342793",
                  "CSAFPID-816350",
                  "CSAFPID-1261",
                  "CSAFPID-342803",
                  "CSAFPID-816354",
                  "CSAFPID-204563",
                  "CSAFPID-764738",
                  "CSAFPID-816355",
                  "CSAFPID-1503601",
                  "CSAFPID-1503602",
                  "CSAFPID-240600",
                  "CSAFPID-204510",
                  "CSAFPID-204569",
                  "CSAFPID-1727475",
                  "CSAFPID-1751303",
                  "CSAFPID-1650820",
                  "CSAFPID-1751377",
                  "CSAFPID-1751378",
                  "CSAFPID-1751379",
                  "CSAFPID-1751380",
                  "CSAFPID-1751381",
                  "CSAFPID-1751382",
                  "CSAFPID-1751383",
                  "CSAFPID-1674619",
                  "CSAFPID-1674622",
                  "CSAFPID-1674623",
                  "CSAFPID-1751384",
                  "CSAFPID-1751385",
                  "CSAFPID-1751386",
               ],
            },
         ],
         title: "CVE-2024-6162",
      },
      {
         cve: "CVE-2024-6232",
         cwe: {
            id: "CWE-1333",
            name: "Inefficient Regular Expression Complexity",
         },
         notes: [
            {
               category: "other",
               text: "Inefficient Regular Expression Complexity",
               title: "CWE-1333",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1673530",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-6232",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-6232.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1673530",
               ],
            },
         ],
         title: "CVE-2024-6232",
      },
      {
         cve: "CVE-2024-7254",
         cwe: {
            id: "CWE-20",
            name: "Improper Input Validation",
         },
         notes: [
            {
               category: "other",
               text: "Improper Input Validation",
               title: "CWE-20",
            },
            {
               category: "other",
               text: "Uncontrolled Recursion",
               title: "CWE-674",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-912549",
               "CSAFPID-1672767",
               "CSAFPID-1503585",
               "CSAFPID-1673391",
               "CSAFPID-1673394",
               "CSAFPID-1635305",
               "CSAFPID-1635306",
               "CSAFPID-1635307",
               "CSAFPID-1635308",
               "CSAFPID-1635309",
               "CSAFPID-1670434",
               "CSAFPID-1674629",
               "CSAFPID-1635315",
               "CSAFPID-1635316",
               "CSAFPID-1635318",
               "CSAFPID-1674630",
               "CSAFPID-1674631",
               "CSAFPID-1674632",
               "CSAFPID-1674633",
               "CSAFPID-1674634",
               "CSAFPID-1674635",
               "CSAFPID-1635323",
               "CSAFPID-1674636",
               "CSAFPID-1635324",
               "CSAFPID-1674637",
               "CSAFPID-1674638",
               "CSAFPID-1674639",
               "CSAFPID-1674640",
               "CSAFPID-1674641",
               "CSAFPID-1674642",
               "CSAFPID-1635320",
               "CSAFPID-1635321",
               "CSAFPID-1674643",
               "CSAFPID-1674644",
               "CSAFPID-1674645",
               "CSAFPID-1674646",
               "CSAFPID-1751225",
               "CSAFPID-1751233",
               "CSAFPID-1673530",
               "CSAFPID-1751234",
               "CSAFPID-1751377",
               "CSAFPID-1751378",
               "CSAFPID-1751379",
               "CSAFPID-1751380",
               "CSAFPID-1751381",
               "CSAFPID-1751382",
               "CSAFPID-1751383",
               "CSAFPID-1674619",
               "CSAFPID-1674622",
               "CSAFPID-1674623",
               "CSAFPID-1751384",
               "CSAFPID-1751385",
               "CSAFPID-1751386",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-7254",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-7254.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.2,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-912549",
                  "CSAFPID-1672767",
                  "CSAFPID-1503585",
                  "CSAFPID-1673391",
                  "CSAFPID-1673394",
                  "CSAFPID-1635305",
                  "CSAFPID-1635306",
                  "CSAFPID-1635307",
                  "CSAFPID-1635308",
                  "CSAFPID-1635309",
                  "CSAFPID-1670434",
                  "CSAFPID-1674629",
                  "CSAFPID-1635315",
                  "CSAFPID-1635316",
                  "CSAFPID-1635318",
                  "CSAFPID-1674630",
                  "CSAFPID-1674631",
                  "CSAFPID-1674632",
                  "CSAFPID-1674633",
                  "CSAFPID-1674634",
                  "CSAFPID-1674635",
                  "CSAFPID-1635323",
                  "CSAFPID-1674636",
                  "CSAFPID-1635324",
                  "CSAFPID-1674637",
                  "CSAFPID-1674638",
                  "CSAFPID-1674639",
                  "CSAFPID-1674640",
                  "CSAFPID-1674641",
                  "CSAFPID-1674642",
                  "CSAFPID-1635320",
                  "CSAFPID-1635321",
                  "CSAFPID-1674643",
                  "CSAFPID-1674644",
                  "CSAFPID-1674645",
                  "CSAFPID-1674646",
                  "CSAFPID-1751225",
                  "CSAFPID-1751233",
                  "CSAFPID-1673530",
                  "CSAFPID-1751234",
                  "CSAFPID-1751377",
                  "CSAFPID-1751378",
                  "CSAFPID-1751379",
                  "CSAFPID-1751380",
                  "CSAFPID-1751381",
                  "CSAFPID-1751382",
                  "CSAFPID-1751383",
                  "CSAFPID-1674619",
                  "CSAFPID-1674622",
                  "CSAFPID-1674623",
                  "CSAFPID-1751384",
                  "CSAFPID-1751385",
                  "CSAFPID-1751386",
               ],
            },
         ],
         title: "CVE-2024-7254",
      },
      {
         cve: "CVE-2024-7592",
         cwe: {
            id: "CWE-400",
            name: "Uncontrolled Resource Consumption",
         },
         notes: [
            {
               category: "other",
               text: "Uncontrolled Resource Consumption",
               title: "CWE-400",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1673530",
               "CSAFPID-1751377",
               "CSAFPID-1751378",
               "CSAFPID-1751379",
               "CSAFPID-1751380",
               "CSAFPID-1751381",
               "CSAFPID-1751382",
               "CSAFPID-1751383",
               "CSAFPID-1674619",
               "CSAFPID-1674622",
               "CSAFPID-1674623",
               "CSAFPID-1751384",
               "CSAFPID-1751385",
               "CSAFPID-1751386",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-7592",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-7592.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1673530",
                  "CSAFPID-1751377",
                  "CSAFPID-1751378",
                  "CSAFPID-1751379",
                  "CSAFPID-1751380",
                  "CSAFPID-1751381",
                  "CSAFPID-1751382",
                  "CSAFPID-1751383",
                  "CSAFPID-1674619",
                  "CSAFPID-1674622",
                  "CSAFPID-1674623",
                  "CSAFPID-1751384",
                  "CSAFPID-1751385",
                  "CSAFPID-1751386",
               ],
            },
         ],
         title: "CVE-2024-7592",
      },
      {
         cve: "CVE-2024-7885",
         cwe: {
            id: "CWE-200",
            name: "Exposure of Sensitive Information to an Unauthorized Actor",
         },
         notes: [
            {
               category: "other",
               text: "Exposure of Sensitive Information to an Unauthorized Actor",
               title: "CWE-200",
            },
            {
               category: "other",
               text: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')",
               title: "CWE-362",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1673526",
               "CSAFPID-1673399",
               "CSAFPID-1751080",
               "CSAFPID-1751090",
               "CSAFPID-1751079",
               "CSAFPID-1751225",
               "CSAFPID-1672767",
               "CSAFPID-1751241",
               "CSAFPID-1751081",
               "CSAFPID-1751084",
               "CSAFPID-1673393",
               "CSAFPID-1751085",
               "CSAFPID-1751231",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-7885",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-7885.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1673526",
                  "CSAFPID-1673399",
                  "CSAFPID-1751080",
                  "CSAFPID-1751090",
                  "CSAFPID-1751079",
                  "CSAFPID-1751225",
                  "CSAFPID-1672767",
                  "CSAFPID-1751241",
                  "CSAFPID-1751081",
                  "CSAFPID-1751084",
                  "CSAFPID-1673393",
                  "CSAFPID-1751085",
                  "CSAFPID-1751231",
               ],
            },
         ],
         title: "CVE-2024-7885",
      },
      {
         cve: "CVE-2024-8006",
         cwe: {
            id: "CWE-476",
            name: "NULL Pointer Dereference",
         },
         notes: [
            {
               category: "other",
               text: "NULL Pointer Dereference",
               title: "CWE-476",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-220132",
               "CSAFPID-1751084",
               "CSAFPID-912079",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-8006",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-8006.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 4.4,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-220132",
                  "CSAFPID-1751084",
                  "CSAFPID-912079",
               ],
            },
         ],
         title: "CVE-2024-8006",
      },
      {
         cve: "CVE-2024-9143",
         cwe: {
            id: "CWE-787",
            name: "Out-of-bounds Write",
         },
         notes: [
            {
               category: "other",
               text: "Out-of-bounds Write",
               title: "CWE-787",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751253",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-9143",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-9143.json",
            },
         ],
         title: "CVE-2024-9143",
      },
      {
         cve: "CVE-2024-22195",
         cwe: {
            id: "CWE-79",
            name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
         },
         notes: [
            {
               category: "other",
               text: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
               title: "CWE-79",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-764237",
               "CSAFPID-912068",
               "CSAFPID-912076",
               "CSAFPID-611387",
               "CSAFPID-816773",
               "CSAFPID-912077",
               "CSAFPID-816348",
               "CSAFPID-764240",
               "CSAFPID-614517",
               "CSAFPID-224795",
               "CSAFPID-764826",
               "CSAFPID-90016",
               "CSAFPID-912078",
               "CSAFPID-611413",
               "CSAFPID-764242",
               "CSAFPID-816781",
               "CSAFPID-816782",
               "CSAFPID-93781",
               "CSAFPID-220132",
               "CSAFPID-342804",
               "CSAFPID-764247",
               "CSAFPID-764735",
               "CSAFPID-219776",
               "CSAFPID-765242",
               "CSAFPID-764739",
               "CSAFPID-204510",
               "CSAFPID-204569",
               "CSAFPID-219826",
               "CSAFPID-912073",
               "CSAFPID-912079",
               "CSAFPID-912080",
               "CSAFPID-912085",
               "CSAFPID-912101",
               "CSAFPID-912102",
               "CSAFPID-912539",
               "CSAFPID-912540",
               "CSAFPID-912541",
               "CSAFPID-912542",
               "CSAFPID-912543",
               "CSAFPID-912544",
               "CSAFPID-912545",
               "CSAFPID-912546",
               "CSAFPID-912547",
               "CSAFPID-912548",
               "CSAFPID-912549",
               "CSAFPID-912550",
               "CSAFPID-912551",
               "CSAFPID-912552",
               "CSAFPID-912553",
               "CSAFPID-912554",
               "CSAFPID-912556",
               "CSAFPID-912557",
               "CSAFPID-912558",
               "CSAFPID-1751225",
               "CSAFPID-1751079",
               "CSAFPID-1751081",
               "CSAFPID-1673393",
               "CSAFPID-1751085",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-22195",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-22195.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6.1,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-764237",
                  "CSAFPID-912068",
                  "CSAFPID-912076",
                  "CSAFPID-611387",
                  "CSAFPID-816773",
                  "CSAFPID-912077",
                  "CSAFPID-816348",
                  "CSAFPID-764240",
                  "CSAFPID-614517",
                  "CSAFPID-224795",
                  "CSAFPID-764826",
                  "CSAFPID-90016",
                  "CSAFPID-912078",
                  "CSAFPID-611413",
                  "CSAFPID-764242",
                  "CSAFPID-816781",
                  "CSAFPID-816782",
                  "CSAFPID-93781",
                  "CSAFPID-220132",
                  "CSAFPID-342804",
                  "CSAFPID-764247",
                  "CSAFPID-764735",
                  "CSAFPID-219776",
                  "CSAFPID-765242",
                  "CSAFPID-764739",
                  "CSAFPID-204510",
                  "CSAFPID-204569",
                  "CSAFPID-219826",
                  "CSAFPID-912073",
                  "CSAFPID-912079",
                  "CSAFPID-912080",
                  "CSAFPID-912085",
                  "CSAFPID-912101",
                  "CSAFPID-912102",
                  "CSAFPID-912539",
                  "CSAFPID-912540",
                  "CSAFPID-912541",
                  "CSAFPID-912542",
                  "CSAFPID-912543",
                  "CSAFPID-912544",
                  "CSAFPID-912545",
                  "CSAFPID-912546",
                  "CSAFPID-912547",
                  "CSAFPID-912548",
                  "CSAFPID-912549",
                  "CSAFPID-912550",
                  "CSAFPID-912551",
                  "CSAFPID-912552",
                  "CSAFPID-912553",
                  "CSAFPID-912554",
                  "CSAFPID-912556",
                  "CSAFPID-912557",
                  "CSAFPID-912558",
                  "CSAFPID-1751225",
                  "CSAFPID-1751079",
                  "CSAFPID-1751081",
                  "CSAFPID-1673393",
                  "CSAFPID-1751085",
               ],
            },
         ],
         title: "CVE-2024-22195",
      },
      {
         cve: "CVE-2024-24786",
         cwe: {
            id: "CWE-835",
            name: "Loop with Unreachable Exit Condition ('Infinite Loop')",
         },
         notes: [
            {
               category: "other",
               text: "Loop with Unreachable Exit Condition ('Infinite Loop')",
               title: "CWE-835",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1673530",
               "CSAFPID-1751377",
               "CSAFPID-1751378",
               "CSAFPID-1751379",
               "CSAFPID-1751380",
               "CSAFPID-1751381",
               "CSAFPID-1751382",
               "CSAFPID-1751383",
               "CSAFPID-1674619",
               "CSAFPID-1674622",
               "CSAFPID-1674623",
               "CSAFPID-1751384",
               "CSAFPID-1751385",
               "CSAFPID-1751386",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-24786",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-24786.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1673530",
                  "CSAFPID-1751377",
                  "CSAFPID-1751378",
                  "CSAFPID-1751379",
                  "CSAFPID-1751380",
                  "CSAFPID-1751381",
                  "CSAFPID-1751382",
                  "CSAFPID-1751383",
                  "CSAFPID-1674619",
                  "CSAFPID-1674622",
                  "CSAFPID-1674623",
                  "CSAFPID-1751384",
                  "CSAFPID-1751385",
                  "CSAFPID-1751386",
               ],
            },
         ],
         title: "CVE-2024-24786",
      },
      {
         cve: "CVE-2024-24791",
         cwe: {
            id: "CWE-404",
            name: "Improper Resource Shutdown or Release",
         },
         notes: [
            {
               category: "other",
               text: "Improper Resource Shutdown or Release",
               title: "CWE-404",
            },
            {
               category: "other",
               text: "Improper Input Validation",
               title: "CWE-20",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751208",
               "CSAFPID-1751209",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-24791",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-24791.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751208",
                  "CSAFPID-1751209",
               ],
            },
         ],
         title: "CVE-2024-24791",
      },
      {
         cve: "CVE-2024-25638",
         cwe: {
            id: "CWE-345",
            name: "Insufficient Verification of Data Authenticity",
         },
         notes: [
            {
               category: "other",
               text: "Insufficient Verification of Data Authenticity",
               title: "CWE-345",
            },
            {
               category: "other",
               text: "Acceptance of Extraneous Untrusted Data With Trusted Data",
               title: "CWE-349",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-912549",
               "CSAFPID-1672767",
               "CSAFPID-1503585",
               "CSAFPID-1635305",
               "CSAFPID-1635306",
               "CSAFPID-1635307",
               "CSAFPID-1635308",
               "CSAFPID-1635309",
               "CSAFPID-1670434",
               "CSAFPID-1674629",
               "CSAFPID-1635315",
               "CSAFPID-1635316",
               "CSAFPID-1635318",
               "CSAFPID-1674630",
               "CSAFPID-1674631",
               "CSAFPID-1674632",
               "CSAFPID-1674633",
               "CSAFPID-1674634",
               "CSAFPID-1674635",
               "CSAFPID-1635323",
               "CSAFPID-1674636",
               "CSAFPID-1635324",
               "CSAFPID-1674637",
               "CSAFPID-1674638",
               "CSAFPID-1674639",
               "CSAFPID-1674640",
               "CSAFPID-1674641",
               "CSAFPID-1674642",
               "CSAFPID-1635320",
               "CSAFPID-1635321",
               "CSAFPID-1674643",
               "CSAFPID-1674644",
               "CSAFPID-1674645",
               "CSAFPID-1674646",
               "CSAFPID-1751225",
               "CSAFPID-1751079",
               "CSAFPID-1751229",
               "CSAFPID-1751230",
               "CSAFPID-1751081",
               "CSAFPID-1751084",
               "CSAFPID-1673393",
               "CSAFPID-1751085",
               "CSAFPID-1751231",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-25638",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-25638.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.9,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:L",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-912549",
                  "CSAFPID-1672767",
                  "CSAFPID-1503585",
                  "CSAFPID-1635305",
                  "CSAFPID-1635306",
                  "CSAFPID-1635307",
                  "CSAFPID-1635308",
                  "CSAFPID-1635309",
                  "CSAFPID-1670434",
                  "CSAFPID-1674629",
                  "CSAFPID-1635315",
                  "CSAFPID-1635316",
                  "CSAFPID-1635318",
                  "CSAFPID-1674630",
                  "CSAFPID-1674631",
                  "CSAFPID-1674632",
                  "CSAFPID-1674633",
                  "CSAFPID-1674634",
                  "CSAFPID-1674635",
                  "CSAFPID-1635323",
                  "CSAFPID-1674636",
                  "CSAFPID-1635324",
                  "CSAFPID-1674637",
                  "CSAFPID-1674638",
                  "CSAFPID-1674639",
                  "CSAFPID-1674640",
                  "CSAFPID-1674641",
                  "CSAFPID-1674642",
                  "CSAFPID-1635320",
                  "CSAFPID-1635321",
                  "CSAFPID-1674643",
                  "CSAFPID-1674644",
                  "CSAFPID-1674645",
                  "CSAFPID-1674646",
                  "CSAFPID-1751225",
                  "CSAFPID-1751079",
                  "CSAFPID-1751229",
                  "CSAFPID-1751230",
                  "CSAFPID-1751081",
                  "CSAFPID-1751084",
                  "CSAFPID-1673393",
                  "CSAFPID-1751085",
                  "CSAFPID-1751231",
               ],
            },
         ],
         title: "CVE-2024-25638",
      },
      {
         cve: "CVE-2024-25710",
         cwe: {
            id: "CWE-835",
            name: "Loop with Unreachable Exit Condition ('Infinite Loop')",
         },
         notes: [
            {
               category: "other",
               text: "Loop with Unreachable Exit Condition ('Infinite Loop')",
               title: "CWE-835",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1635305",
               "CSAFPID-1635306",
               "CSAFPID-1635307",
               "CSAFPID-1635308",
               "CSAFPID-1635309",
               "CSAFPID-1635310",
               "CSAFPID-1635311",
               "CSAFPID-1635312",
               "CSAFPID-1635313",
               "CSAFPID-1635314",
               "CSAFPID-1635315",
               "CSAFPID-1635316",
               "CSAFPID-1635317",
               "CSAFPID-1635318",
               "CSAFPID-1635319",
               "CSAFPID-1635320",
               "CSAFPID-1635321",
               "CSAFPID-1635322",
               "CSAFPID-1635323",
               "CSAFPID-1635324",
               "CSAFPID-1635325",
               "CSAFPID-1635326",
               "CSAFPID-1635327",
               "CSAFPID-1635328",
               "CSAFPID-1635329",
               "CSAFPID-1673389",
               "CSAFPID-1673390",
               "CSAFPID-764237",
               "CSAFPID-912085",
               "CSAFPID-912068",
               "CSAFPID-912076",
               "CSAFPID-611387",
               "CSAFPID-816773",
               "CSAFPID-912101",
               "CSAFPID-912077",
               "CSAFPID-816348",
               "CSAFPID-764240",
               "CSAFPID-614517",
               "CSAFPID-224795",
               "CSAFPID-912102",
               "CSAFPID-764826",
               "CSAFPID-90016",
               "CSAFPID-912078",
               "CSAFPID-611413",
               "CSAFPID-764242",
               "CSAFPID-816781",
               "CSAFPID-816782",
               "CSAFPID-93781",
               "CSAFPID-220132",
               "CSAFPID-912079",
               "CSAFPID-342804",
               "CSAFPID-912080",
               "CSAFPID-764247",
               "CSAFPID-764735",
               "CSAFPID-219776",
               "CSAFPID-765242",
               "CSAFPID-764739",
               "CSAFPID-204510",
               "CSAFPID-204569",
               "CSAFPID-219826",
               "CSAFPID-912073",
               "CSAFPID-912539",
               "CSAFPID-912540",
               "CSAFPID-912541",
               "CSAFPID-912542",
               "CSAFPID-912543",
               "CSAFPID-912544",
               "CSAFPID-912545",
               "CSAFPID-912546",
               "CSAFPID-912547",
               "CSAFPID-912548",
               "CSAFPID-912549",
               "CSAFPID-912550",
               "CSAFPID-912551",
               "CSAFPID-912552",
               "CSAFPID-912553",
               "CSAFPID-912554",
               "CSAFPID-912556",
               "CSAFPID-912557",
               "CSAFPID-912558",
               "CSAFPID-220055",
               "CSAFPID-1503577",
               "CSAFPID-1503578",
               "CSAFPID-1503579",
               "CSAFPID-1503580",
               "CSAFPID-1503581",
               "CSAFPID-1503322",
               "CSAFPID-912069",
               "CSAFPID-1503582",
               "CSAFPID-1503583",
               "CSAFPID-1503584",
               "CSAFPID-1503585",
               "CSAFPID-1503586",
               "CSAFPID-1503587",
               "CSAFPID-1503588",
               "CSAFPID-1503316",
               "CSAFPID-1503317",
               "CSAFPID-1503589",
               "CSAFPID-1503590",
               "CSAFPID-1503591",
               "CSAFPID-816789",
               "CSAFPID-816790",
               "CSAFPID-1503592",
               "CSAFPID-1503593",
               "CSAFPID-1503594",
               "CSAFPID-1503595",
               "CSAFPID-1503596",
               "CSAFPID-1503597",
               "CSAFPID-1503598",
               "CSAFPID-816792",
               "CSAFPID-816793",
               "CSAFPID-1503599",
               "CSAFPID-1503600",
               "CSAFPID-342793",
               "CSAFPID-816350",
               "CSAFPID-1261",
               "CSAFPID-342803",
               "CSAFPID-816354",
               "CSAFPID-204563",
               "CSAFPID-764738",
               "CSAFPID-816355",
               "CSAFPID-1503601",
               "CSAFPID-1503602",
               "CSAFPID-240600",
               "CSAFPID-1727475",
               "CSAFPID-1751218",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-25710",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-25710.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.1,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1635305",
                  "CSAFPID-1635306",
                  "CSAFPID-1635307",
                  "CSAFPID-1635308",
                  "CSAFPID-1635309",
                  "CSAFPID-1635310",
                  "CSAFPID-1635311",
                  "CSAFPID-1635312",
                  "CSAFPID-1635313",
                  "CSAFPID-1635314",
                  "CSAFPID-1635315",
                  "CSAFPID-1635316",
                  "CSAFPID-1635317",
                  "CSAFPID-1635318",
                  "CSAFPID-1635319",
                  "CSAFPID-1635320",
                  "CSAFPID-1635321",
                  "CSAFPID-1635322",
                  "CSAFPID-1635323",
                  "CSAFPID-1635324",
                  "CSAFPID-1635325",
                  "CSAFPID-1635326",
                  "CSAFPID-1635327",
                  "CSAFPID-1635328",
                  "CSAFPID-1635329",
                  "CSAFPID-1673389",
                  "CSAFPID-1673390",
                  "CSAFPID-764237",
                  "CSAFPID-912085",
                  "CSAFPID-912068",
                  "CSAFPID-912076",
                  "CSAFPID-611387",
                  "CSAFPID-816773",
                  "CSAFPID-912101",
                  "CSAFPID-912077",
                  "CSAFPID-816348",
                  "CSAFPID-764240",
                  "CSAFPID-614517",
                  "CSAFPID-224795",
                  "CSAFPID-912102",
                  "CSAFPID-764826",
                  "CSAFPID-90016",
                  "CSAFPID-912078",
                  "CSAFPID-611413",
                  "CSAFPID-764242",
                  "CSAFPID-816781",
                  "CSAFPID-816782",
                  "CSAFPID-93781",
                  "CSAFPID-220132",
                  "CSAFPID-912079",
                  "CSAFPID-342804",
                  "CSAFPID-912080",
                  "CSAFPID-764247",
                  "CSAFPID-764735",
                  "CSAFPID-219776",
                  "CSAFPID-765242",
                  "CSAFPID-764739",
                  "CSAFPID-204510",
                  "CSAFPID-204569",
                  "CSAFPID-219826",
                  "CSAFPID-912073",
                  "CSAFPID-912539",
                  "CSAFPID-912540",
                  "CSAFPID-912541",
                  "CSAFPID-912542",
                  "CSAFPID-912543",
                  "CSAFPID-912544",
                  "CSAFPID-912545",
                  "CSAFPID-912546",
                  "CSAFPID-912547",
                  "CSAFPID-912548",
                  "CSAFPID-912549",
                  "CSAFPID-912550",
                  "CSAFPID-912551",
                  "CSAFPID-912552",
                  "CSAFPID-912553",
                  "CSAFPID-912554",
                  "CSAFPID-912556",
                  "CSAFPID-912557",
                  "CSAFPID-912558",
                  "CSAFPID-220055",
                  "CSAFPID-1503577",
                  "CSAFPID-1503578",
                  "CSAFPID-1503579",
                  "CSAFPID-1503580",
                  "CSAFPID-1503581",
                  "CSAFPID-1503322",
                  "CSAFPID-912069",
                  "CSAFPID-1503582",
                  "CSAFPID-1503583",
                  "CSAFPID-1503584",
                  "CSAFPID-1503585",
                  "CSAFPID-1503586",
                  "CSAFPID-1503587",
                  "CSAFPID-1503588",
                  "CSAFPID-1503316",
                  "CSAFPID-1503317",
                  "CSAFPID-1503589",
                  "CSAFPID-1503590",
                  "CSAFPID-1503591",
                  "CSAFPID-816789",
                  "CSAFPID-816790",
                  "CSAFPID-1503592",
                  "CSAFPID-1503593",
                  "CSAFPID-1503594",
                  "CSAFPID-1503595",
                  "CSAFPID-1503596",
                  "CSAFPID-1503597",
                  "CSAFPID-1503598",
                  "CSAFPID-816792",
                  "CSAFPID-816793",
                  "CSAFPID-1503599",
                  "CSAFPID-1503600",
                  "CSAFPID-342793",
                  "CSAFPID-816350",
                  "CSAFPID-1261",
                  "CSAFPID-342803",
                  "CSAFPID-816354",
                  "CSAFPID-204563",
                  "CSAFPID-764738",
                  "CSAFPID-816355",
                  "CSAFPID-1503601",
                  "CSAFPID-1503602",
                  "CSAFPID-240600",
                  "CSAFPID-1727475",
                  "CSAFPID-1751218",
               ],
            },
         ],
         title: "CVE-2024-25710",
      },
      {
         cve: "CVE-2024-26308",
         cwe: {
            id: "CWE-770",
            name: "Allocation of Resources Without Limits or Throttling",
         },
         notes: [
            {
               category: "other",
               text: "Allocation of Resources Without Limits or Throttling",
               title: "CWE-770",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1635305",
               "CSAFPID-1635306",
               "CSAFPID-1635307",
               "CSAFPID-1635308",
               "CSAFPID-1635309",
               "CSAFPID-1635310",
               "CSAFPID-1635311",
               "CSAFPID-1635312",
               "CSAFPID-1635313",
               "CSAFPID-1635314",
               "CSAFPID-1635315",
               "CSAFPID-1635316",
               "CSAFPID-1635317",
               "CSAFPID-1635318",
               "CSAFPID-1635319",
               "CSAFPID-1635320",
               "CSAFPID-1635321",
               "CSAFPID-1635322",
               "CSAFPID-1635323",
               "CSAFPID-1635324",
               "CSAFPID-1635325",
               "CSAFPID-1635326",
               "CSAFPID-1635327",
               "CSAFPID-1635328",
               "CSAFPID-1635329",
               "CSAFPID-1673389",
               "CSAFPID-1673390",
               "CSAFPID-1674629",
               "CSAFPID-1674630",
               "CSAFPID-1674631",
               "CSAFPID-1674632",
               "CSAFPID-1674633",
               "CSAFPID-1674634",
               "CSAFPID-1674635",
               "CSAFPID-1674636",
               "CSAFPID-1674637",
               "CSAFPID-1674638",
               "CSAFPID-1674639",
               "CSAFPID-1674640",
               "CSAFPID-1674641",
               "CSAFPID-1674642",
               "CSAFPID-1674643",
               "CSAFPID-1674644",
               "CSAFPID-1674645",
               "CSAFPID-1674646",
               "CSAFPID-1670429",
               "CSAFPID-1670430",
               "CSAFPID-1670431",
               "CSAFPID-1670432",
               "CSAFPID-1670433",
               "CSAFPID-1670434",
               "CSAFPID-1670435",
               "CSAFPID-1670436",
               "CSAFPID-1670437",
               "CSAFPID-1670438",
               "CSAFPID-1670439",
               "CSAFPID-1670440",
               "CSAFPID-1670441",
               "CSAFPID-1670442",
               "CSAFPID-90016",
               "CSAFPID-93781",
               "CSAFPID-204510",
               "CSAFPID-204569",
               "CSAFPID-219776",
               "CSAFPID-219826",
               "CSAFPID-220132",
               "CSAFPID-224795",
               "CSAFPID-342804",
               "CSAFPID-611387",
               "CSAFPID-611413",
               "CSAFPID-614517",
               "CSAFPID-764237",
               "CSAFPID-764240",
               "CSAFPID-764242",
               "CSAFPID-764247",
               "CSAFPID-764735",
               "CSAFPID-764739",
               "CSAFPID-764826",
               "CSAFPID-765242",
               "CSAFPID-816348",
               "CSAFPID-816773",
               "CSAFPID-816781",
               "CSAFPID-816782",
               "CSAFPID-912068",
               "CSAFPID-912073",
               "CSAFPID-912076",
               "CSAFPID-912077",
               "CSAFPID-912078",
               "CSAFPID-912079",
               "CSAFPID-912080",
               "CSAFPID-912085",
               "CSAFPID-912101",
               "CSAFPID-912102",
               "CSAFPID-912539",
               "CSAFPID-912540",
               "CSAFPID-912541",
               "CSAFPID-912542",
               "CSAFPID-912543",
               "CSAFPID-912544",
               "CSAFPID-912545",
               "CSAFPID-912546",
               "CSAFPID-912547",
               "CSAFPID-912548",
               "CSAFPID-912549",
               "CSAFPID-912550",
               "CSAFPID-912551",
               "CSAFPID-912552",
               "CSAFPID-912553",
               "CSAFPID-912554",
               "CSAFPID-912556",
               "CSAFPID-912557",
               "CSAFPID-912558",
               "CSAFPID-220055",
               "CSAFPID-1503577",
               "CSAFPID-1503578",
               "CSAFPID-1503579",
               "CSAFPID-1503580",
               "CSAFPID-1503581",
               "CSAFPID-1503322",
               "CSAFPID-912069",
               "CSAFPID-1503582",
               "CSAFPID-1503583",
               "CSAFPID-1503584",
               "CSAFPID-1503585",
               "CSAFPID-1503586",
               "CSAFPID-1503587",
               "CSAFPID-1503588",
               "CSAFPID-1503316",
               "CSAFPID-1503317",
               "CSAFPID-1503589",
               "CSAFPID-1503590",
               "CSAFPID-1503591",
               "CSAFPID-816789",
               "CSAFPID-816790",
               "CSAFPID-1503592",
               "CSAFPID-1503593",
               "CSAFPID-1503594",
               "CSAFPID-1503595",
               "CSAFPID-1503596",
               "CSAFPID-1503597",
               "CSAFPID-1503598",
               "CSAFPID-816792",
               "CSAFPID-816793",
               "CSAFPID-1503599",
               "CSAFPID-1503600",
               "CSAFPID-342793",
               "CSAFPID-816350",
               "CSAFPID-1261",
               "CSAFPID-342803",
               "CSAFPID-816354",
               "CSAFPID-204563",
               "CSAFPID-764738",
               "CSAFPID-816355",
               "CSAFPID-1503601",
               "CSAFPID-1503602",
               "CSAFPID-240600",
               "CSAFPID-1727475",
               "CSAFPID-1751218",
               "CSAFPID-1751377",
               "CSAFPID-1751378",
               "CSAFPID-1751379",
               "CSAFPID-1751380",
               "CSAFPID-1751381",
               "CSAFPID-1751382",
               "CSAFPID-1751383",
               "CSAFPID-1674619",
               "CSAFPID-1674622",
               "CSAFPID-1674623",
               "CSAFPID-1751384",
               "CSAFPID-1751385",
               "CSAFPID-1751386",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-26308",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-26308.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.9,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1635305",
                  "CSAFPID-1635306",
                  "CSAFPID-1635307",
                  "CSAFPID-1635308",
                  "CSAFPID-1635309",
                  "CSAFPID-1635310",
                  "CSAFPID-1635311",
                  "CSAFPID-1635312",
                  "CSAFPID-1635313",
                  "CSAFPID-1635314",
                  "CSAFPID-1635315",
                  "CSAFPID-1635316",
                  "CSAFPID-1635317",
                  "CSAFPID-1635318",
                  "CSAFPID-1635319",
                  "CSAFPID-1635320",
                  "CSAFPID-1635321",
                  "CSAFPID-1635322",
                  "CSAFPID-1635323",
                  "CSAFPID-1635324",
                  "CSAFPID-1635325",
                  "CSAFPID-1635326",
                  "CSAFPID-1635327",
                  "CSAFPID-1635328",
                  "CSAFPID-1635329",
                  "CSAFPID-1673389",
                  "CSAFPID-1673390",
                  "CSAFPID-1674629",
                  "CSAFPID-1674630",
                  "CSAFPID-1674631",
                  "CSAFPID-1674632",
                  "CSAFPID-1674633",
                  "CSAFPID-1674634",
                  "CSAFPID-1674635",
                  "CSAFPID-1674636",
                  "CSAFPID-1674637",
                  "CSAFPID-1674638",
                  "CSAFPID-1674639",
                  "CSAFPID-1674640",
                  "CSAFPID-1674641",
                  "CSAFPID-1674642",
                  "CSAFPID-1674643",
                  "CSAFPID-1674644",
                  "CSAFPID-1674645",
                  "CSAFPID-1674646",
                  "CSAFPID-1670429",
                  "CSAFPID-1670430",
                  "CSAFPID-1670431",
                  "CSAFPID-1670432",
                  "CSAFPID-1670433",
                  "CSAFPID-1670434",
                  "CSAFPID-1670435",
                  "CSAFPID-1670436",
                  "CSAFPID-1670437",
                  "CSAFPID-1670438",
                  "CSAFPID-1670439",
                  "CSAFPID-1670440",
                  "CSAFPID-1670441",
                  "CSAFPID-1670442",
                  "CSAFPID-90016",
                  "CSAFPID-93781",
                  "CSAFPID-204510",
                  "CSAFPID-204569",
                  "CSAFPID-219776",
                  "CSAFPID-219826",
                  "CSAFPID-220132",
                  "CSAFPID-224795",
                  "CSAFPID-342804",
                  "CSAFPID-611387",
                  "CSAFPID-611413",
                  "CSAFPID-614517",
                  "CSAFPID-764237",
                  "CSAFPID-764240",
                  "CSAFPID-764242",
                  "CSAFPID-764247",
                  "CSAFPID-764735",
                  "CSAFPID-764739",
                  "CSAFPID-764826",
                  "CSAFPID-765242",
                  "CSAFPID-816348",
                  "CSAFPID-816773",
                  "CSAFPID-816781",
                  "CSAFPID-816782",
                  "CSAFPID-912068",
                  "CSAFPID-912073",
                  "CSAFPID-912076",
                  "CSAFPID-912077",
                  "CSAFPID-912078",
                  "CSAFPID-912079",
                  "CSAFPID-912080",
                  "CSAFPID-912085",
                  "CSAFPID-912101",
                  "CSAFPID-912102",
                  "CSAFPID-912539",
                  "CSAFPID-912540",
                  "CSAFPID-912541",
                  "CSAFPID-912542",
                  "CSAFPID-912543",
                  "CSAFPID-912544",
                  "CSAFPID-912545",
                  "CSAFPID-912546",
                  "CSAFPID-912547",
                  "CSAFPID-912548",
                  "CSAFPID-912549",
                  "CSAFPID-912550",
                  "CSAFPID-912551",
                  "CSAFPID-912552",
                  "CSAFPID-912553",
                  "CSAFPID-912554",
                  "CSAFPID-912556",
                  "CSAFPID-912557",
                  "CSAFPID-912558",
                  "CSAFPID-220055",
                  "CSAFPID-1503577",
                  "CSAFPID-1503578",
                  "CSAFPID-1503579",
                  "CSAFPID-1503580",
                  "CSAFPID-1503581",
                  "CSAFPID-1503322",
                  "CSAFPID-912069",
                  "CSAFPID-1503582",
                  "CSAFPID-1503583",
                  "CSAFPID-1503584",
                  "CSAFPID-1503585",
                  "CSAFPID-1503586",
                  "CSAFPID-1503587",
                  "CSAFPID-1503588",
                  "CSAFPID-1503316",
                  "CSAFPID-1503317",
                  "CSAFPID-1503589",
                  "CSAFPID-1503590",
                  "CSAFPID-1503591",
                  "CSAFPID-816789",
                  "CSAFPID-816790",
                  "CSAFPID-1503592",
                  "CSAFPID-1503593",
                  "CSAFPID-1503594",
                  "CSAFPID-1503595",
                  "CSAFPID-1503596",
                  "CSAFPID-1503597",
                  "CSAFPID-1503598",
                  "CSAFPID-816792",
                  "CSAFPID-816793",
                  "CSAFPID-1503599",
                  "CSAFPID-1503600",
                  "CSAFPID-342793",
                  "CSAFPID-816350",
                  "CSAFPID-1261",
                  "CSAFPID-342803",
                  "CSAFPID-816354",
                  "CSAFPID-204563",
                  "CSAFPID-764738",
                  "CSAFPID-816355",
                  "CSAFPID-1503601",
                  "CSAFPID-1503602",
                  "CSAFPID-240600",
                  "CSAFPID-1727475",
                  "CSAFPID-1751218",
                  "CSAFPID-1751377",
                  "CSAFPID-1751378",
                  "CSAFPID-1751379",
                  "CSAFPID-1751380",
                  "CSAFPID-1751381",
                  "CSAFPID-1751382",
                  "CSAFPID-1751383",
                  "CSAFPID-1674619",
                  "CSAFPID-1674622",
                  "CSAFPID-1674623",
                  "CSAFPID-1751384",
                  "CSAFPID-1751385",
                  "CSAFPID-1751386",
               ],
            },
         ],
         title: "CVE-2024-26308",
      },
      {
         cve: "CVE-2024-27309",
         cwe: {
            id: "CWE-284",
            name: "Improper Access Control",
         },
         notes: [
            {
               category: "other",
               text: "Improper Access Control",
               title: "CWE-284",
            },
            {
               category: "other",
               text: "Incorrect Authorization",
               title: "CWE-863",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751233",
               "CSAFPID-1751234",
               "CSAFPID-1751377",
               "CSAFPID-1751378",
               "CSAFPID-1751379",
               "CSAFPID-1751380",
               "CSAFPID-1751381",
               "CSAFPID-1751382",
               "CSAFPID-1751383",
               "CSAFPID-1674619",
               "CSAFPID-1674622",
               "CSAFPID-1674623",
               "CSAFPID-1751384",
               "CSAFPID-1751385",
               "CSAFPID-1751386",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-27309",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-27309.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.4,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751233",
                  "CSAFPID-1751234",
                  "CSAFPID-1751377",
                  "CSAFPID-1751378",
                  "CSAFPID-1751379",
                  "CSAFPID-1751380",
                  "CSAFPID-1751381",
                  "CSAFPID-1751382",
                  "CSAFPID-1751383",
                  "CSAFPID-1674619",
                  "CSAFPID-1674622",
                  "CSAFPID-1674623",
                  "CSAFPID-1751384",
                  "CSAFPID-1751385",
                  "CSAFPID-1751386",
               ],
            },
         ],
         title: "CVE-2024-27309",
      },
      {
         cve: "CVE-2024-28219",
         cwe: {
            id: "CWE-120",
            name: "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')",
         },
         notes: [
            {
               category: "other",
               text: "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')",
               title: "CWE-120",
            },
            {
               category: "other",
               text: "Use of Potentially Dangerous Function",
               title: "CWE-676",
            },
            {
               category: "other",
               text: "Integer Overflow to Buffer Overflow",
               title: "CWE-680",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751079",
               "CSAFPID-1751225",
               "CSAFPID-220132",
               "CSAFPID-912079",
               "CSAFPID-1751085",
               "CSAFPID-912547",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-28219",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-28219.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.3,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751079",
                  "CSAFPID-1751225",
                  "CSAFPID-220132",
                  "CSAFPID-912079",
                  "CSAFPID-1751085",
                  "CSAFPID-912547",
               ],
            },
         ],
         title: "CVE-2024-28219",
      },
      {
         cve: "CVE-2024-28834",
         cwe: {
            id: "CWE-200",
            name: "Exposure of Sensitive Information to an Unauthorized Actor",
         },
         notes: [
            {
               category: "other",
               text: "Exposure of Sensitive Information to an Unauthorized Actor",
               title: "CWE-200",
            },
            {
               category: "other",
               text: "Use of a Broken or Risky Cryptographic Algorithm",
               title: "CWE-327",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1673481",
               "CSAFPID-1751217",
               "CSAFPID-1503590",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-28834",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-28834.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1673481",
                  "CSAFPID-1751217",
                  "CSAFPID-1503590",
               ],
            },
         ],
         title: "CVE-2024-28834",
      },
      {
         cve: "CVE-2024-28835",
         cwe: {
            id: "CWE-248",
            name: "Uncaught Exception",
         },
         notes: [
            {
               category: "other",
               text: "Uncaught Exception",
               title: "CWE-248",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1673481",
               "CSAFPID-1751217",
               "CSAFPID-1503590",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-28835",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-28835.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1673481",
                  "CSAFPID-1751217",
                  "CSAFPID-1503590",
               ],
            },
         ],
         title: "CVE-2024-28835",
      },
      {
         cve: "CVE-2024-28849",
         cwe: {
            id: "CWE-200",
            name: "Exposure of Sensitive Information to an Unauthorized Actor",
         },
         notes: [
            {
               category: "other",
               text: "Exposure of Sensitive Information to an Unauthorized Actor",
               title: "CWE-200",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1635305",
               "CSAFPID-1635306",
               "CSAFPID-1635307",
               "CSAFPID-1635308",
               "CSAFPID-1635309",
               "CSAFPID-1635310",
               "CSAFPID-1635311",
               "CSAFPID-1635312",
               "CSAFPID-1635313",
               "CSAFPID-1635314",
               "CSAFPID-1635315",
               "CSAFPID-1635316",
               "CSAFPID-1635317",
               "CSAFPID-1635318",
               "CSAFPID-1635319",
               "CSAFPID-1635320",
               "CSAFPID-1635321",
               "CSAFPID-1635322",
               "CSAFPID-1635323",
               "CSAFPID-1635324",
               "CSAFPID-1635325",
               "CSAFPID-1635326",
               "CSAFPID-1635327",
               "CSAFPID-1635328",
               "CSAFPID-1635329",
               "CSAFPID-1673414",
               "CSAFPID-1670434",
               "CSAFPID-1674629",
               "CSAFPID-1674630",
               "CSAFPID-1674631",
               "CSAFPID-1674632",
               "CSAFPID-1674633",
               "CSAFPID-1674634",
               "CSAFPID-1674635",
               "CSAFPID-1674636",
               "CSAFPID-1674637",
               "CSAFPID-1674638",
               "CSAFPID-1674639",
               "CSAFPID-1674640",
               "CSAFPID-1674641",
               "CSAFPID-1674642",
               "CSAFPID-1674643",
               "CSAFPID-1674644",
               "CSAFPID-1674645",
               "CSAFPID-1674646",
               "CSAFPID-220055",
               "CSAFPID-1503577",
               "CSAFPID-764237",
               "CSAFPID-912085",
               "CSAFPID-1503578",
               "CSAFPID-1503579",
               "CSAFPID-1503580",
               "CSAFPID-912101",
               "CSAFPID-1503581",
               "CSAFPID-1503322",
               "CSAFPID-912069",
               "CSAFPID-764240",
               "CSAFPID-912547",
               "CSAFPID-1503582",
               "CSAFPID-912549",
               "CSAFPID-1503583",
               "CSAFPID-1503584",
               "CSAFPID-1503585",
               "CSAFPID-1503586",
               "CSAFPID-1503587",
               "CSAFPID-1503588",
               "CSAFPID-1503316",
               "CSAFPID-1503317",
               "CSAFPID-764242",
               "CSAFPID-1503589",
               "CSAFPID-1503590",
               "CSAFPID-220132",
               "CSAFPID-912079",
               "CSAFPID-1503591",
               "CSAFPID-816789",
               "CSAFPID-816790",
               "CSAFPID-1503592",
               "CSAFPID-1503593",
               "CSAFPID-1503594",
               "CSAFPID-1503595",
               "CSAFPID-342804",
               "CSAFPID-1503596",
               "CSAFPID-1503597",
               "CSAFPID-1503598",
               "CSAFPID-816792",
               "CSAFPID-764247",
               "CSAFPID-912556",
               "CSAFPID-764735",
               "CSAFPID-816793",
               "CSAFPID-1503599",
               "CSAFPID-1503600",
               "CSAFPID-342793",
               "CSAFPID-816350",
               "CSAFPID-1261",
               "CSAFPID-342803",
               "CSAFPID-816354",
               "CSAFPID-204563",
               "CSAFPID-764738",
               "CSAFPID-816355",
               "CSAFPID-1503601",
               "CSAFPID-1503602",
               "CSAFPID-240600",
               "CSAFPID-204510",
               "CSAFPID-204569",
               "CSAFPID-1727475",
               "CSAFPID-1751235",
               "CSAFPID-1751377",
               "CSAFPID-1751378",
               "CSAFPID-1751379",
               "CSAFPID-1751380",
               "CSAFPID-1751381",
               "CSAFPID-1751382",
               "CSAFPID-1751383",
               "CSAFPID-1674619",
               "CSAFPID-1674622",
               "CSAFPID-1674623",
               "CSAFPID-1751384",
               "CSAFPID-1751385",
               "CSAFPID-1751386",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-28849",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-28849.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6.5,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1635305",
                  "CSAFPID-1635306",
                  "CSAFPID-1635307",
                  "CSAFPID-1635308",
                  "CSAFPID-1635309",
                  "CSAFPID-1635310",
                  "CSAFPID-1635311",
                  "CSAFPID-1635312",
                  "CSAFPID-1635313",
                  "CSAFPID-1635314",
                  "CSAFPID-1635315",
                  "CSAFPID-1635316",
                  "CSAFPID-1635317",
                  "CSAFPID-1635318",
                  "CSAFPID-1635319",
                  "CSAFPID-1635320",
                  "CSAFPID-1635321",
                  "CSAFPID-1635322",
                  "CSAFPID-1635323",
                  "CSAFPID-1635324",
                  "CSAFPID-1635325",
                  "CSAFPID-1635326",
                  "CSAFPID-1635327",
                  "CSAFPID-1635328",
                  "CSAFPID-1635329",
                  "CSAFPID-1673414",
                  "CSAFPID-1670434",
                  "CSAFPID-1674629",
                  "CSAFPID-1674630",
                  "CSAFPID-1674631",
                  "CSAFPID-1674632",
                  "CSAFPID-1674633",
                  "CSAFPID-1674634",
                  "CSAFPID-1674635",
                  "CSAFPID-1674636",
                  "CSAFPID-1674637",
                  "CSAFPID-1674638",
                  "CSAFPID-1674639",
                  "CSAFPID-1674640",
                  "CSAFPID-1674641",
                  "CSAFPID-1674642",
                  "CSAFPID-1674643",
                  "CSAFPID-1674644",
                  "CSAFPID-1674645",
                  "CSAFPID-1674646",
                  "CSAFPID-220055",
                  "CSAFPID-1503577",
                  "CSAFPID-764237",
                  "CSAFPID-912085",
                  "CSAFPID-1503578",
                  "CSAFPID-1503579",
                  "CSAFPID-1503580",
                  "CSAFPID-912101",
                  "CSAFPID-1503581",
                  "CSAFPID-1503322",
                  "CSAFPID-912069",
                  "CSAFPID-764240",
                  "CSAFPID-912547",
                  "CSAFPID-1503582",
                  "CSAFPID-912549",
                  "CSAFPID-1503583",
                  "CSAFPID-1503584",
                  "CSAFPID-1503585",
                  "CSAFPID-1503586",
                  "CSAFPID-1503587",
                  "CSAFPID-1503588",
                  "CSAFPID-1503316",
                  "CSAFPID-1503317",
                  "CSAFPID-764242",
                  "CSAFPID-1503589",
                  "CSAFPID-1503590",
                  "CSAFPID-220132",
                  "CSAFPID-912079",
                  "CSAFPID-1503591",
                  "CSAFPID-816789",
                  "CSAFPID-816790",
                  "CSAFPID-1503592",
                  "CSAFPID-1503593",
                  "CSAFPID-1503594",
                  "CSAFPID-1503595",
                  "CSAFPID-342804",
                  "CSAFPID-1503596",
                  "CSAFPID-1503597",
                  "CSAFPID-1503598",
                  "CSAFPID-816792",
                  "CSAFPID-764247",
                  "CSAFPID-912556",
                  "CSAFPID-764735",
                  "CSAFPID-816793",
                  "CSAFPID-1503599",
                  "CSAFPID-1503600",
                  "CSAFPID-342793",
                  "CSAFPID-816350",
                  "CSAFPID-1261",
                  "CSAFPID-342803",
                  "CSAFPID-816354",
                  "CSAFPID-204563",
                  "CSAFPID-764738",
                  "CSAFPID-816355",
                  "CSAFPID-1503601",
                  "CSAFPID-1503602",
                  "CSAFPID-240600",
                  "CSAFPID-204510",
                  "CSAFPID-204569",
                  "CSAFPID-1727475",
                  "CSAFPID-1751235",
                  "CSAFPID-1751377",
                  "CSAFPID-1751378",
                  "CSAFPID-1751379",
                  "CSAFPID-1751380",
                  "CSAFPID-1751381",
                  "CSAFPID-1751382",
                  "CSAFPID-1751383",
                  "CSAFPID-1674619",
                  "CSAFPID-1674622",
                  "CSAFPID-1674623",
                  "CSAFPID-1751384",
                  "CSAFPID-1751385",
                  "CSAFPID-1751386",
               ],
            },
         ],
         title: "CVE-2024-28849",
      },
      {
         cve: "CVE-2024-29025",
         cwe: {
            id: "CWE-770",
            name: "Allocation of Resources Without Limits or Throttling",
         },
         notes: [
            {
               category: "other",
               text: "Allocation of Resources Without Limits or Throttling",
               title: "CWE-770",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1635305",
               "CSAFPID-1635306",
               "CSAFPID-1635307",
               "CSAFPID-1635308",
               "CSAFPID-1635309",
               "CSAFPID-1635310",
               "CSAFPID-1635311",
               "CSAFPID-1635312",
               "CSAFPID-1635313",
               "CSAFPID-1635314",
               "CSAFPID-1635315",
               "CSAFPID-1635316",
               "CSAFPID-1635317",
               "CSAFPID-1635318",
               "CSAFPID-1635319",
               "CSAFPID-1635320",
               "CSAFPID-1635321",
               "CSAFPID-1635322",
               "CSAFPID-1635323",
               "CSAFPID-1635324",
               "CSAFPID-1635325",
               "CSAFPID-1635326",
               "CSAFPID-1635327",
               "CSAFPID-1635328",
               "CSAFPID-1635329",
               "CSAFPID-1650752",
               "CSAFPID-1650751",
               "CSAFPID-1673494",
               "CSAFPID-1673420",
               "CSAFPID-1673421",
               "CSAFPID-1670434",
               "CSAFPID-1674629",
               "CSAFPID-1674630",
               "CSAFPID-1674631",
               "CSAFPID-1674632",
               "CSAFPID-1674633",
               "CSAFPID-1674634",
               "CSAFPID-1674635",
               "CSAFPID-1674636",
               "CSAFPID-1674637",
               "CSAFPID-1674638",
               "CSAFPID-1674639",
               "CSAFPID-1674640",
               "CSAFPID-1674641",
               "CSAFPID-1674642",
               "CSAFPID-1674643",
               "CSAFPID-1674644",
               "CSAFPID-1674645",
               "CSAFPID-1674646",
               "CSAFPID-220055",
               "CSAFPID-1503577",
               "CSAFPID-764237",
               "CSAFPID-912085",
               "CSAFPID-1503578",
               "CSAFPID-1503579",
               "CSAFPID-1503580",
               "CSAFPID-912101",
               "CSAFPID-1503581",
               "CSAFPID-1503322",
               "CSAFPID-912069",
               "CSAFPID-764240",
               "CSAFPID-912547",
               "CSAFPID-1503582",
               "CSAFPID-912549",
               "CSAFPID-1503583",
               "CSAFPID-1503584",
               "CSAFPID-1503585",
               "CSAFPID-1503586",
               "CSAFPID-1503587",
               "CSAFPID-1503588",
               "CSAFPID-1503316",
               "CSAFPID-1503317",
               "CSAFPID-764242",
               "CSAFPID-1503589",
               "CSAFPID-1503590",
               "CSAFPID-220132",
               "CSAFPID-912079",
               "CSAFPID-1503591",
               "CSAFPID-816789",
               "CSAFPID-816790",
               "CSAFPID-1503592",
               "CSAFPID-1503593",
               "CSAFPID-1503594",
               "CSAFPID-1503595",
               "CSAFPID-342804",
               "CSAFPID-1503596",
               "CSAFPID-1503597",
               "CSAFPID-1503598",
               "CSAFPID-816792",
               "CSAFPID-764247",
               "CSAFPID-912556",
               "CSAFPID-764735",
               "CSAFPID-816793",
               "CSAFPID-1503599",
               "CSAFPID-1503600",
               "CSAFPID-342793",
               "CSAFPID-816350",
               "CSAFPID-1261",
               "CSAFPID-342803",
               "CSAFPID-816354",
               "CSAFPID-204563",
               "CSAFPID-764738",
               "CSAFPID-816355",
               "CSAFPID-1503601",
               "CSAFPID-1503602",
               "CSAFPID-240600",
               "CSAFPID-204510",
               "CSAFPID-204569",
               "CSAFPID-1727475",
               "CSAFPID-1751233",
               "CSAFPID-1751218",
               "CSAFPID-1751234",
               "CSAFPID-1751377",
               "CSAFPID-1751378",
               "CSAFPID-1751379",
               "CSAFPID-1751380",
               "CSAFPID-1751381",
               "CSAFPID-1751382",
               "CSAFPID-1751383",
               "CSAFPID-1674619",
               "CSAFPID-1674622",
               "CSAFPID-1674623",
               "CSAFPID-1751384",
               "CSAFPID-1751385",
               "CSAFPID-1751386",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-29025",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-29025.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.3,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1635305",
                  "CSAFPID-1635306",
                  "CSAFPID-1635307",
                  "CSAFPID-1635308",
                  "CSAFPID-1635309",
                  "CSAFPID-1635310",
                  "CSAFPID-1635311",
                  "CSAFPID-1635312",
                  "CSAFPID-1635313",
                  "CSAFPID-1635314",
                  "CSAFPID-1635315",
                  "CSAFPID-1635316",
                  "CSAFPID-1635317",
                  "CSAFPID-1635318",
                  "CSAFPID-1635319",
                  "CSAFPID-1635320",
                  "CSAFPID-1635321",
                  "CSAFPID-1635322",
                  "CSAFPID-1635323",
                  "CSAFPID-1635324",
                  "CSAFPID-1635325",
                  "CSAFPID-1635326",
                  "CSAFPID-1635327",
                  "CSAFPID-1635328",
                  "CSAFPID-1635329",
                  "CSAFPID-1650752",
                  "CSAFPID-1650751",
                  "CSAFPID-1673494",
                  "CSAFPID-1673420",
                  "CSAFPID-1673421",
                  "CSAFPID-1670434",
                  "CSAFPID-1674629",
                  "CSAFPID-1674630",
                  "CSAFPID-1674631",
                  "CSAFPID-1674632",
                  "CSAFPID-1674633",
                  "CSAFPID-1674634",
                  "CSAFPID-1674635",
                  "CSAFPID-1674636",
                  "CSAFPID-1674637",
                  "CSAFPID-1674638",
                  "CSAFPID-1674639",
                  "CSAFPID-1674640",
                  "CSAFPID-1674641",
                  "CSAFPID-1674642",
                  "CSAFPID-1674643",
                  "CSAFPID-1674644",
                  "CSAFPID-1674645",
                  "CSAFPID-1674646",
                  "CSAFPID-220055",
                  "CSAFPID-1503577",
                  "CSAFPID-764237",
                  "CSAFPID-912085",
                  "CSAFPID-1503578",
                  "CSAFPID-1503579",
                  "CSAFPID-1503580",
                  "CSAFPID-912101",
                  "CSAFPID-1503581",
                  "CSAFPID-1503322",
                  "CSAFPID-912069",
                  "CSAFPID-764240",
                  "CSAFPID-912547",
                  "CSAFPID-1503582",
                  "CSAFPID-912549",
                  "CSAFPID-1503583",
                  "CSAFPID-1503584",
                  "CSAFPID-1503585",
                  "CSAFPID-1503586",
                  "CSAFPID-1503587",
                  "CSAFPID-1503588",
                  "CSAFPID-1503316",
                  "CSAFPID-1503317",
                  "CSAFPID-764242",
                  "CSAFPID-1503589",
                  "CSAFPID-1503590",
                  "CSAFPID-220132",
                  "CSAFPID-912079",
                  "CSAFPID-1503591",
                  "CSAFPID-816789",
                  "CSAFPID-816790",
                  "CSAFPID-1503592",
                  "CSAFPID-1503593",
                  "CSAFPID-1503594",
                  "CSAFPID-1503595",
                  "CSAFPID-342804",
                  "CSAFPID-1503596",
                  "CSAFPID-1503597",
                  "CSAFPID-1503598",
                  "CSAFPID-816792",
                  "CSAFPID-764247",
                  "CSAFPID-912556",
                  "CSAFPID-764735",
                  "CSAFPID-816793",
                  "CSAFPID-1503599",
                  "CSAFPID-1503600",
                  "CSAFPID-342793",
                  "CSAFPID-816350",
                  "CSAFPID-1261",
                  "CSAFPID-342803",
                  "CSAFPID-816354",
                  "CSAFPID-204563",
                  "CSAFPID-764738",
                  "CSAFPID-816355",
                  "CSAFPID-1503601",
                  "CSAFPID-1503602",
                  "CSAFPID-240600",
                  "CSAFPID-204510",
                  "CSAFPID-204569",
                  "CSAFPID-1727475",
                  "CSAFPID-1751233",
                  "CSAFPID-1751218",
                  "CSAFPID-1751234",
                  "CSAFPID-1751377",
                  "CSAFPID-1751378",
                  "CSAFPID-1751379",
                  "CSAFPID-1751380",
                  "CSAFPID-1751381",
                  "CSAFPID-1751382",
                  "CSAFPID-1751383",
                  "CSAFPID-1674619",
                  "CSAFPID-1674622",
                  "CSAFPID-1674623",
                  "CSAFPID-1751384",
                  "CSAFPID-1751385",
                  "CSAFPID-1751386",
               ],
            },
         ],
         title: "CVE-2024-29025",
      },
      {
         cve: "CVE-2024-29131",
         cwe: {
            id: "CWE-787",
            name: "Out-of-bounds Write",
         },
         notes: [
            {
               category: "other",
               text: "Out-of-bounds Write",
               title: "CWE-787",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1650820",
               "CSAFPID-224790",
               "CSAFPID-221118",
               "CSAFPID-1673496",
               "CSAFPID-220055",
               "CSAFPID-1503577",
               "CSAFPID-764237",
               "CSAFPID-912085",
               "CSAFPID-1503578",
               "CSAFPID-1503579",
               "CSAFPID-1503580",
               "CSAFPID-912101",
               "CSAFPID-1503581",
               "CSAFPID-1503322",
               "CSAFPID-912069",
               "CSAFPID-764240",
               "CSAFPID-912547",
               "CSAFPID-1503582",
               "CSAFPID-912549",
               "CSAFPID-1503583",
               "CSAFPID-1503584",
               "CSAFPID-1503585",
               "CSAFPID-1503586",
               "CSAFPID-1503587",
               "CSAFPID-1503588",
               "CSAFPID-1503316",
               "CSAFPID-1503317",
               "CSAFPID-764242",
               "CSAFPID-1503589",
               "CSAFPID-1503590",
               "CSAFPID-220132",
               "CSAFPID-912079",
               "CSAFPID-1503591",
               "CSAFPID-816789",
               "CSAFPID-816790",
               "CSAFPID-1503592",
               "CSAFPID-1503593",
               "CSAFPID-1503594",
               "CSAFPID-1503595",
               "CSAFPID-342804",
               "CSAFPID-1503596",
               "CSAFPID-1503597",
               "CSAFPID-1503598",
               "CSAFPID-816792",
               "CSAFPID-764247",
               "CSAFPID-912556",
               "CSAFPID-764735",
               "CSAFPID-816793",
               "CSAFPID-1503599",
               "CSAFPID-1503600",
               "CSAFPID-342793",
               "CSAFPID-816350",
               "CSAFPID-1261",
               "CSAFPID-342803",
               "CSAFPID-816354",
               "CSAFPID-204563",
               "CSAFPID-764738",
               "CSAFPID-816355",
               "CSAFPID-1503601",
               "CSAFPID-1503602",
               "CSAFPID-240600",
               "CSAFPID-204510",
               "CSAFPID-204569",
               "CSAFPID-1673530",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-29131",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-29131.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.1,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1650820",
                  "CSAFPID-224790",
                  "CSAFPID-221118",
                  "CSAFPID-1673496",
                  "CSAFPID-220055",
                  "CSAFPID-1503577",
                  "CSAFPID-764237",
                  "CSAFPID-912085",
                  "CSAFPID-1503578",
                  "CSAFPID-1503579",
                  "CSAFPID-1503580",
                  "CSAFPID-912101",
                  "CSAFPID-1503581",
                  "CSAFPID-1503322",
                  "CSAFPID-912069",
                  "CSAFPID-764240",
                  "CSAFPID-912547",
                  "CSAFPID-1503582",
                  "CSAFPID-912549",
                  "CSAFPID-1503583",
                  "CSAFPID-1503584",
                  "CSAFPID-1503585",
                  "CSAFPID-1503586",
                  "CSAFPID-1503587",
                  "CSAFPID-1503588",
                  "CSAFPID-1503316",
                  "CSAFPID-1503317",
                  "CSAFPID-764242",
                  "CSAFPID-1503589",
                  "CSAFPID-1503590",
                  "CSAFPID-220132",
                  "CSAFPID-912079",
                  "CSAFPID-1503591",
                  "CSAFPID-816789",
                  "CSAFPID-816790",
                  "CSAFPID-1503592",
                  "CSAFPID-1503593",
                  "CSAFPID-1503594",
                  "CSAFPID-1503595",
                  "CSAFPID-342804",
                  "CSAFPID-1503596",
                  "CSAFPID-1503597",
                  "CSAFPID-1503598",
                  "CSAFPID-816792",
                  "CSAFPID-764247",
                  "CSAFPID-912556",
                  "CSAFPID-764735",
                  "CSAFPID-816793",
                  "CSAFPID-1503599",
                  "CSAFPID-1503600",
                  "CSAFPID-342793",
                  "CSAFPID-816350",
                  "CSAFPID-1261",
                  "CSAFPID-342803",
                  "CSAFPID-816354",
                  "CSAFPID-204563",
                  "CSAFPID-764738",
                  "CSAFPID-816355",
                  "CSAFPID-1503601",
                  "CSAFPID-1503602",
                  "CSAFPID-240600",
                  "CSAFPID-204510",
                  "CSAFPID-204569",
                  "CSAFPID-1673530",
               ],
            },
         ],
         title: "CVE-2024-29131",
      },
      {
         cve: "CVE-2024-29133",
         cwe: {
            id: "CWE-787",
            name: "Out-of-bounds Write",
         },
         notes: [
            {
               category: "other",
               text: "Out-of-bounds Write",
               title: "CWE-787",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1650820",
               "CSAFPID-224790",
               "CSAFPID-221118",
               "CSAFPID-1673496",
               "CSAFPID-1674617",
               "CSAFPID-1674618",
               "CSAFPID-1674619",
               "CSAFPID-1674620",
               "CSAFPID-1674621",
               "CSAFPID-1674622",
               "CSAFPID-1674623",
               "CSAFPID-1674624",
               "CSAFPID-1674625",
               "CSAFPID-1674626",
               "CSAFPID-1674627",
               "CSAFPID-1674628",
               "CSAFPID-220055",
               "CSAFPID-1503577",
               "CSAFPID-764237",
               "CSAFPID-912085",
               "CSAFPID-1503578",
               "CSAFPID-1503579",
               "CSAFPID-1503580",
               "CSAFPID-912101",
               "CSAFPID-1503581",
               "CSAFPID-1503322",
               "CSAFPID-912069",
               "CSAFPID-764240",
               "CSAFPID-912547",
               "CSAFPID-1503582",
               "CSAFPID-912549",
               "CSAFPID-1503583",
               "CSAFPID-1503584",
               "CSAFPID-1503585",
               "CSAFPID-1503586",
               "CSAFPID-1503587",
               "CSAFPID-1503588",
               "CSAFPID-1503316",
               "CSAFPID-1503317",
               "CSAFPID-764242",
               "CSAFPID-1503589",
               "CSAFPID-1503590",
               "CSAFPID-220132",
               "CSAFPID-912079",
               "CSAFPID-1503591",
               "CSAFPID-816789",
               "CSAFPID-816790",
               "CSAFPID-1503592",
               "CSAFPID-1503593",
               "CSAFPID-1503594",
               "CSAFPID-1503595",
               "CSAFPID-342804",
               "CSAFPID-1503596",
               "CSAFPID-1503597",
               "CSAFPID-1503598",
               "CSAFPID-816792",
               "CSAFPID-764247",
               "CSAFPID-912556",
               "CSAFPID-764735",
               "CSAFPID-816793",
               "CSAFPID-1503599",
               "CSAFPID-1503600",
               "CSAFPID-342793",
               "CSAFPID-816350",
               "CSAFPID-1261",
               "CSAFPID-342803",
               "CSAFPID-816354",
               "CSAFPID-204563",
               "CSAFPID-764738",
               "CSAFPID-816355",
               "CSAFPID-1503601",
               "CSAFPID-1503602",
               "CSAFPID-240600",
               "CSAFPID-204510",
               "CSAFPID-204569",
               "CSAFPID-1673530",
               "CSAFPID-1751377",
               "CSAFPID-1751378",
               "CSAFPID-1751379",
               "CSAFPID-1751380",
               "CSAFPID-1751381",
               "CSAFPID-1751382",
               "CSAFPID-1751383",
               "CSAFPID-1751384",
               "CSAFPID-1751385",
               "CSAFPID-1751386",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-29133",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-29133.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.3,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1650820",
                  "CSAFPID-224790",
                  "CSAFPID-221118",
                  "CSAFPID-1673496",
                  "CSAFPID-1674617",
                  "CSAFPID-1674618",
                  "CSAFPID-1674619",
                  "CSAFPID-1674620",
                  "CSAFPID-1674621",
                  "CSAFPID-1674622",
                  "CSAFPID-1674623",
                  "CSAFPID-1674624",
                  "CSAFPID-1674625",
                  "CSAFPID-1674626",
                  "CSAFPID-1674627",
                  "CSAFPID-1674628",
                  "CSAFPID-220055",
                  "CSAFPID-1503577",
                  "CSAFPID-764237",
                  "CSAFPID-912085",
                  "CSAFPID-1503578",
                  "CSAFPID-1503579",
                  "CSAFPID-1503580",
                  "CSAFPID-912101",
                  "CSAFPID-1503581",
                  "CSAFPID-1503322",
                  "CSAFPID-912069",
                  "CSAFPID-764240",
                  "CSAFPID-912547",
                  "CSAFPID-1503582",
                  "CSAFPID-912549",
                  "CSAFPID-1503583",
                  "CSAFPID-1503584",
                  "CSAFPID-1503585",
                  "CSAFPID-1503586",
                  "CSAFPID-1503587",
                  "CSAFPID-1503588",
                  "CSAFPID-1503316",
                  "CSAFPID-1503317",
                  "CSAFPID-764242",
                  "CSAFPID-1503589",
                  "CSAFPID-1503590",
                  "CSAFPID-220132",
                  "CSAFPID-912079",
                  "CSAFPID-1503591",
                  "CSAFPID-816789",
                  "CSAFPID-816790",
                  "CSAFPID-1503592",
                  "CSAFPID-1503593",
                  "CSAFPID-1503594",
                  "CSAFPID-1503595",
                  "CSAFPID-342804",
                  "CSAFPID-1503596",
                  "CSAFPID-1503597",
                  "CSAFPID-1503598",
                  "CSAFPID-816792",
                  "CSAFPID-764247",
                  "CSAFPID-912556",
                  "CSAFPID-764735",
                  "CSAFPID-816793",
                  "CSAFPID-1503599",
                  "CSAFPID-1503600",
                  "CSAFPID-342793",
                  "CSAFPID-816350",
                  "CSAFPID-1261",
                  "CSAFPID-342803",
                  "CSAFPID-816354",
                  "CSAFPID-204563",
                  "CSAFPID-764738",
                  "CSAFPID-816355",
                  "CSAFPID-1503601",
                  "CSAFPID-1503602",
                  "CSAFPID-240600",
                  "CSAFPID-204510",
                  "CSAFPID-204569",
                  "CSAFPID-1673530",
                  "CSAFPID-1751377",
                  "CSAFPID-1751378",
                  "CSAFPID-1751379",
                  "CSAFPID-1751380",
                  "CSAFPID-1751381",
                  "CSAFPID-1751382",
                  "CSAFPID-1751383",
                  "CSAFPID-1751384",
                  "CSAFPID-1751385",
                  "CSAFPID-1751386",
               ],
            },
         ],
         title: "CVE-2024-29133",
      },
      {
         cve: "CVE-2024-33599",
         cwe: {
            id: "CWE-119",
            name: "Improper Restriction of Operations within the Bounds of a Memory Buffer",
         },
         notes: [
            {
               category: "other",
               text: "Improper Restriction of Operations within the Bounds of a Memory Buffer",
               title: "CWE-119",
            },
            {
               category: "other",
               text: "Stack-based Buffer Overflow",
               title: "CWE-121",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-912549",
               "CSAFPID-1673396",
               "CSAFPID-1503594",
               "CSAFPID-1503595",
               "CSAFPID-1672762",
               "CSAFPID-1673395",
               "CSAFPID-1672764",
               "CSAFPID-1672767",
               "CSAFPID-1503585",
               "CSAFPID-1673494",
               "CSAFPID-1751237",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-33599",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-33599.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.6,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-912549",
                  "CSAFPID-1673396",
                  "CSAFPID-1503594",
                  "CSAFPID-1503595",
                  "CSAFPID-1672762",
                  "CSAFPID-1673395",
                  "CSAFPID-1672764",
                  "CSAFPID-1672767",
                  "CSAFPID-1503585",
                  "CSAFPID-1673494",
                  "CSAFPID-1751237",
               ],
            },
         ],
         title: "CVE-2024-33599",
      },
      {
         cve: "CVE-2024-33600",
         cwe: {
            id: "CWE-476",
            name: "NULL Pointer Dereference",
         },
         notes: [
            {
               category: "other",
               text: "NULL Pointer Dereference",
               title: "CWE-476",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-912549",
               "CSAFPID-1673396",
               "CSAFPID-1503594",
               "CSAFPID-1503595",
               "CSAFPID-1672762",
               "CSAFPID-1673395",
               "CSAFPID-1672764",
               "CSAFPID-1672767",
               "CSAFPID-1503585",
               "CSAFPID-1673494",
               "CSAFPID-1751237",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-33600",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-33600.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.6,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-912549",
                  "CSAFPID-1673396",
                  "CSAFPID-1503594",
                  "CSAFPID-1503595",
                  "CSAFPID-1672762",
                  "CSAFPID-1673395",
                  "CSAFPID-1672764",
                  "CSAFPID-1672767",
                  "CSAFPID-1503585",
                  "CSAFPID-1673494",
                  "CSAFPID-1751237",
               ],
            },
         ],
         title: "CVE-2024-33600",
      },
      {
         cve: "CVE-2024-33601",
         cwe: {
            id: "CWE-703",
            name: "Improper Check or Handling of Exceptional Conditions",
         },
         notes: [
            {
               category: "other",
               text: "Improper Check or Handling of Exceptional Conditions",
               title: "CWE-703",
            },
            {
               category: "other",
               text: "Reachable Assertion",
               title: "CWE-617",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-912549",
               "CSAFPID-1673396",
               "CSAFPID-1503594",
               "CSAFPID-1503595",
               "CSAFPID-1672762",
               "CSAFPID-1673395",
               "CSAFPID-1672764",
               "CSAFPID-1672767",
               "CSAFPID-1503585",
               "CSAFPID-1673494",
               "CSAFPID-1751237",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-33601",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-33601.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.6,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-912549",
                  "CSAFPID-1673396",
                  "CSAFPID-1503594",
                  "CSAFPID-1503595",
                  "CSAFPID-1672762",
                  "CSAFPID-1673395",
                  "CSAFPID-1672764",
                  "CSAFPID-1672767",
                  "CSAFPID-1503585",
                  "CSAFPID-1673494",
                  "CSAFPID-1751237",
               ],
            },
         ],
         title: "CVE-2024-33601",
      },
      {
         cve: "CVE-2024-33602",
         cwe: {
            id: "CWE-466",
            name: "Return of Pointer Value Outside of Expected Range",
         },
         notes: [
            {
               category: "other",
               text: "Return of Pointer Value Outside of Expected Range",
               title: "CWE-466",
            },
            {
               category: "other",
               text: "Improper Check or Handling of Exceptional Conditions",
               title: "CWE-703",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-912549",
               "CSAFPID-1673396",
               "CSAFPID-1503594",
               "CSAFPID-1503595",
               "CSAFPID-1672762",
               "CSAFPID-1673395",
               "CSAFPID-1672764",
               "CSAFPID-1672767",
               "CSAFPID-1503585",
               "CSAFPID-1673494",
               "CSAFPID-1635305",
               "CSAFPID-1635306",
               "CSAFPID-1635307",
               "CSAFPID-1635308",
               "CSAFPID-1635309",
               "CSAFPID-1670434",
               "CSAFPID-1674629",
               "CSAFPID-1635315",
               "CSAFPID-1635316",
               "CSAFPID-1635318",
               "CSAFPID-1674630",
               "CSAFPID-1674631",
               "CSAFPID-1674632",
               "CSAFPID-1674633",
               "CSAFPID-1674634",
               "CSAFPID-1674635",
               "CSAFPID-1635323",
               "CSAFPID-1674636",
               "CSAFPID-1635324",
               "CSAFPID-1674637",
               "CSAFPID-1674638",
               "CSAFPID-1674639",
               "CSAFPID-1674640",
               "CSAFPID-1674641",
               "CSAFPID-1674642",
               "CSAFPID-1635320",
               "CSAFPID-1635321",
               "CSAFPID-1674643",
               "CSAFPID-1674644",
               "CSAFPID-1674645",
               "CSAFPID-1674646",
               "CSAFPID-1751237",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-33602",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-33602.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.6,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-912549",
                  "CSAFPID-1673396",
                  "CSAFPID-1503594",
                  "CSAFPID-1503595",
                  "CSAFPID-1672762",
                  "CSAFPID-1673395",
                  "CSAFPID-1672764",
                  "CSAFPID-1672767",
                  "CSAFPID-1503585",
                  "CSAFPID-1673494",
                  "CSAFPID-1635305",
                  "CSAFPID-1635306",
                  "CSAFPID-1635307",
                  "CSAFPID-1635308",
                  "CSAFPID-1635309",
                  "CSAFPID-1670434",
                  "CSAFPID-1674629",
                  "CSAFPID-1635315",
                  "CSAFPID-1635316",
                  "CSAFPID-1635318",
                  "CSAFPID-1674630",
                  "CSAFPID-1674631",
                  "CSAFPID-1674632",
                  "CSAFPID-1674633",
                  "CSAFPID-1674634",
                  "CSAFPID-1674635",
                  "CSAFPID-1635323",
                  "CSAFPID-1674636",
                  "CSAFPID-1635324",
                  "CSAFPID-1674637",
                  "CSAFPID-1674638",
                  "CSAFPID-1674639",
                  "CSAFPID-1674640",
                  "CSAFPID-1674641",
                  "CSAFPID-1674642",
                  "CSAFPID-1635320",
                  "CSAFPID-1635321",
                  "CSAFPID-1674643",
                  "CSAFPID-1674644",
                  "CSAFPID-1674645",
                  "CSAFPID-1674646",
                  "CSAFPID-1751237",
               ],
            },
         ],
         title: "CVE-2024-33602",
      },
      {
         cve: "CVE-2024-34064",
         cwe: {
            id: "CWE-79",
            name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
         },
         notes: [
            {
               category: "other",
               text: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
               title: "CWE-79",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1635305",
               "CSAFPID-1635306",
               "CSAFPID-1635307",
               "CSAFPID-1635308",
               "CSAFPID-1635309",
               "CSAFPID-1635310",
               "CSAFPID-1635311",
               "CSAFPID-1635312",
               "CSAFPID-1635313",
               "CSAFPID-1635314",
               "CSAFPID-1635315",
               "CSAFPID-1635316",
               "CSAFPID-1635317",
               "CSAFPID-1635318",
               "CSAFPID-1635319",
               "CSAFPID-1635320",
               "CSAFPID-1635321",
               "CSAFPID-1635322",
               "CSAFPID-1635323",
               "CSAFPID-1635324",
               "CSAFPID-1635325",
               "CSAFPID-1635326",
               "CSAFPID-1635327",
               "CSAFPID-1635328",
               "CSAFPID-1635329",
               "CSAFPID-220055",
               "CSAFPID-1503577",
               "CSAFPID-764237",
               "CSAFPID-912085",
               "CSAFPID-1503578",
               "CSAFPID-1503579",
               "CSAFPID-1503580",
               "CSAFPID-912101",
               "CSAFPID-1503581",
               "CSAFPID-1503322",
               "CSAFPID-912069",
               "CSAFPID-764240",
               "CSAFPID-912547",
               "CSAFPID-1503582",
               "CSAFPID-912549",
               "CSAFPID-1503583",
               "CSAFPID-1503584",
               "CSAFPID-1503585",
               "CSAFPID-1503586",
               "CSAFPID-1503587",
               "CSAFPID-1503588",
               "CSAFPID-1503316",
               "CSAFPID-1503317",
               "CSAFPID-764242",
               "CSAFPID-1503589",
               "CSAFPID-1503590",
               "CSAFPID-220132",
               "CSAFPID-912079",
               "CSAFPID-1503591",
               "CSAFPID-816789",
               "CSAFPID-816790",
               "CSAFPID-1503592",
               "CSAFPID-1503593",
               "CSAFPID-1503594",
               "CSAFPID-1503595",
               "CSAFPID-342804",
               "CSAFPID-1503596",
               "CSAFPID-1503597",
               "CSAFPID-1503598",
               "CSAFPID-816792",
               "CSAFPID-764247",
               "CSAFPID-912556",
               "CSAFPID-764735",
               "CSAFPID-816793",
               "CSAFPID-1503599",
               "CSAFPID-1503600",
               "CSAFPID-342793",
               "CSAFPID-816350",
               "CSAFPID-1261",
               "CSAFPID-342803",
               "CSAFPID-816354",
               "CSAFPID-204563",
               "CSAFPID-764738",
               "CSAFPID-816355",
               "CSAFPID-1503601",
               "CSAFPID-1503602",
               "CSAFPID-240600",
               "CSAFPID-204510",
               "CSAFPID-204569",
               "CSAFPID-1727475",
               "CSAFPID-1751238",
               "CSAFPID-1751225",
               "CSAFPID-1751079",
               "CSAFPID-1751081",
               "CSAFPID-1673393",
               "CSAFPID-1751239",
               "CSAFPID-1751082",
               "CSAFPID-1751240",
               "CSAFPID-1672767",
               "CSAFPID-1751241",
               "CSAFPID-1673481",
               "CSAFPID-1751085",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-34064",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-34064.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.4,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1635305",
                  "CSAFPID-1635306",
                  "CSAFPID-1635307",
                  "CSAFPID-1635308",
                  "CSAFPID-1635309",
                  "CSAFPID-1635310",
                  "CSAFPID-1635311",
                  "CSAFPID-1635312",
                  "CSAFPID-1635313",
                  "CSAFPID-1635314",
                  "CSAFPID-1635315",
                  "CSAFPID-1635316",
                  "CSAFPID-1635317",
                  "CSAFPID-1635318",
                  "CSAFPID-1635319",
                  "CSAFPID-1635320",
                  "CSAFPID-1635321",
                  "CSAFPID-1635322",
                  "CSAFPID-1635323",
                  "CSAFPID-1635324",
                  "CSAFPID-1635325",
                  "CSAFPID-1635326",
                  "CSAFPID-1635327",
                  "CSAFPID-1635328",
                  "CSAFPID-1635329",
                  "CSAFPID-220055",
                  "CSAFPID-1503577",
                  "CSAFPID-764237",
                  "CSAFPID-912085",
                  "CSAFPID-1503578",
                  "CSAFPID-1503579",
                  "CSAFPID-1503580",
                  "CSAFPID-912101",
                  "CSAFPID-1503581",
                  "CSAFPID-1503322",
                  "CSAFPID-912069",
                  "CSAFPID-764240",
                  "CSAFPID-912547",
                  "CSAFPID-1503582",
                  "CSAFPID-912549",
                  "CSAFPID-1503583",
                  "CSAFPID-1503584",
                  "CSAFPID-1503585",
                  "CSAFPID-1503586",
                  "CSAFPID-1503587",
                  "CSAFPID-1503588",
                  "CSAFPID-1503316",
                  "CSAFPID-1503317",
                  "CSAFPID-764242",
                  "CSAFPID-1503589",
                  "CSAFPID-1503590",
                  "CSAFPID-220132",
                  "CSAFPID-912079",
                  "CSAFPID-1503591",
                  "CSAFPID-816789",
                  "CSAFPID-816790",
                  "CSAFPID-1503592",
                  "CSAFPID-1503593",
                  "CSAFPID-1503594",
                  "CSAFPID-1503595",
                  "CSAFPID-342804",
                  "CSAFPID-1503596",
                  "CSAFPID-1503597",
                  "CSAFPID-1503598",
                  "CSAFPID-816792",
                  "CSAFPID-764247",
                  "CSAFPID-912556",
                  "CSAFPID-764735",
                  "CSAFPID-816793",
                  "CSAFPID-1503599",
                  "CSAFPID-1503600",
                  "CSAFPID-342793",
                  "CSAFPID-816350",
                  "CSAFPID-1261",
                  "CSAFPID-342803",
                  "CSAFPID-816354",
                  "CSAFPID-204563",
                  "CSAFPID-764738",
                  "CSAFPID-816355",
                  "CSAFPID-1503601",
                  "CSAFPID-1503602",
                  "CSAFPID-240600",
                  "CSAFPID-204510",
                  "CSAFPID-204569",
                  "CSAFPID-1727475",
                  "CSAFPID-1751238",
                  "CSAFPID-1751225",
                  "CSAFPID-1751079",
                  "CSAFPID-1751081",
                  "CSAFPID-1673393",
                  "CSAFPID-1751239",
                  "CSAFPID-1751082",
                  "CSAFPID-1751240",
                  "CSAFPID-1672767",
                  "CSAFPID-1751241",
                  "CSAFPID-1673481",
                  "CSAFPID-1751085",
               ],
            },
         ],
         title: "CVE-2024-34064",
      },
      {
         cve: "CVE-2024-34750",
         cwe: {
            id: "CWE-755",
            name: "Improper Handling of Exceptional Conditions",
         },
         notes: [
            {
               category: "other",
               text: "Improper Handling of Exceptional Conditions",
               title: "CWE-755",
            },
            {
               category: "other",
               text: "Uncontrolled Resource Consumption",
               title: "CWE-400",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1673481",
               "CSAFPID-1503596",
               "CSAFPID-1673420",
               "CSAFPID-1673421",
               "CSAFPID-1635305",
               "CSAFPID-1635306",
               "CSAFPID-1635307",
               "CSAFPID-1635308",
               "CSAFPID-1635309",
               "CSAFPID-1670434",
               "CSAFPID-1674629",
               "CSAFPID-1635315",
               "CSAFPID-1635316",
               "CSAFPID-1635318",
               "CSAFPID-1674630",
               "CSAFPID-1674631",
               "CSAFPID-1674632",
               "CSAFPID-1674633",
               "CSAFPID-1674634",
               "CSAFPID-1674635",
               "CSAFPID-1635323",
               "CSAFPID-1674636",
               "CSAFPID-1635324",
               "CSAFPID-1674637",
               "CSAFPID-1674638",
               "CSAFPID-1674639",
               "CSAFPID-1674640",
               "CSAFPID-1674641",
               "CSAFPID-1674642",
               "CSAFPID-1635320",
               "CSAFPID-1635321",
               "CSAFPID-1674643",
               "CSAFPID-1674644",
               "CSAFPID-1674645",
               "CSAFPID-1674646",
               "CSAFPID-1751242",
               "CSAFPID-1751243",
               "CSAFPID-1751079",
               "CSAFPID-1751225",
               "CSAFPID-1751085",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-34750",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-34750.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1673481",
                  "CSAFPID-1503596",
                  "CSAFPID-1673420",
                  "CSAFPID-1673421",
                  "CSAFPID-1635305",
                  "CSAFPID-1635306",
                  "CSAFPID-1635307",
                  "CSAFPID-1635308",
                  "CSAFPID-1635309",
                  "CSAFPID-1670434",
                  "CSAFPID-1674629",
                  "CSAFPID-1635315",
                  "CSAFPID-1635316",
                  "CSAFPID-1635318",
                  "CSAFPID-1674630",
                  "CSAFPID-1674631",
                  "CSAFPID-1674632",
                  "CSAFPID-1674633",
                  "CSAFPID-1674634",
                  "CSAFPID-1674635",
                  "CSAFPID-1635323",
                  "CSAFPID-1674636",
                  "CSAFPID-1635324",
                  "CSAFPID-1674637",
                  "CSAFPID-1674638",
                  "CSAFPID-1674639",
                  "CSAFPID-1674640",
                  "CSAFPID-1674641",
                  "CSAFPID-1674642",
                  "CSAFPID-1635320",
                  "CSAFPID-1635321",
                  "CSAFPID-1674643",
                  "CSAFPID-1674644",
                  "CSAFPID-1674645",
                  "CSAFPID-1674646",
                  "CSAFPID-1751242",
                  "CSAFPID-1751243",
                  "CSAFPID-1751079",
                  "CSAFPID-1751225",
                  "CSAFPID-1751085",
               ],
            },
         ],
         title: "CVE-2024-34750",
      },
      {
         cve: "CVE-2024-35195",
         cwe: {
            id: "CWE-670",
            name: "Always-Incorrect Control Flow Implementation",
         },
         notes: [
            {
               category: "other",
               text: "Always-Incorrect Control Flow Implementation",
               title: "CWE-670",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751246",
               "CSAFPID-1751247",
               "CSAFPID-1751248",
               "CSAFPID-1673530",
               "CSAFPID-1673393",
               "CSAFPID-1751239",
               "CSAFPID-220132",
               "CSAFPID-1751082",
               "CSAFPID-1672767",
               "CSAFPID-1751241",
               "CSAFPID-912079",
               "CSAFPID-916906",
               "CSAFPID-1751377",
               "CSAFPID-1751378",
               "CSAFPID-1751379",
               "CSAFPID-1751380",
               "CSAFPID-1751381",
               "CSAFPID-1751382",
               "CSAFPID-1751383",
               "CSAFPID-1674619",
               "CSAFPID-1674622",
               "CSAFPID-1674623",
               "CSAFPID-1751384",
               "CSAFPID-1751385",
               "CSAFPID-1751386",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-35195",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-35195.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.7,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751246",
                  "CSAFPID-1751247",
                  "CSAFPID-1751248",
                  "CSAFPID-1673530",
                  "CSAFPID-1673393",
                  "CSAFPID-1751239",
                  "CSAFPID-220132",
                  "CSAFPID-1751082",
                  "CSAFPID-1672767",
                  "CSAFPID-1751241",
                  "CSAFPID-912079",
                  "CSAFPID-916906",
                  "CSAFPID-1751377",
                  "CSAFPID-1751378",
                  "CSAFPID-1751379",
                  "CSAFPID-1751380",
                  "CSAFPID-1751381",
                  "CSAFPID-1751382",
                  "CSAFPID-1751383",
                  "CSAFPID-1674619",
                  "CSAFPID-1674622",
                  "CSAFPID-1674623",
                  "CSAFPID-1751384",
                  "CSAFPID-1751385",
                  "CSAFPID-1751386",
               ],
            },
         ],
         title: "CVE-2024-35195",
      },
      {
         cve: "CVE-2024-37370",
         cwe: {
            id: "CWE-130",
            name: "Improper Handling of Length Parameter Inconsistency",
         },
         notes: [
            {
               category: "other",
               text: "Improper Handling of Length Parameter Inconsistency",
               title: "CWE-130",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-912549",
               "CSAFPID-1673413",
               "CSAFPID-1673414",
               "CSAFPID-1673396",
               "CSAFPID-1503590",
               "CSAFPID-1673393",
               "CSAFPID-1673395",
               "CSAFPID-1673399",
               "CSAFPID-1672767",
               "CSAFPID-1503585",
               "CSAFPID-1673392",
               "CSAFPID-1503589",
               "CSAFPID-1673415",
               "CSAFPID-1673389",
               "CSAFPID-1673390",
               "CSAFPID-1751237",
               "CSAFPID-1751254",
               "CSAFPID-1751217",
               "CSAFPID-1673481",
               "CSAFPID-1751255",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-37370",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-37370.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.1,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-912549",
                  "CSAFPID-1673413",
                  "CSAFPID-1673414",
                  "CSAFPID-1673396",
                  "CSAFPID-1503590",
                  "CSAFPID-1673393",
                  "CSAFPID-1673395",
                  "CSAFPID-1673399",
                  "CSAFPID-1672767",
                  "CSAFPID-1503585",
                  "CSAFPID-1673392",
                  "CSAFPID-1503589",
                  "CSAFPID-1673415",
                  "CSAFPID-1673389",
                  "CSAFPID-1673390",
                  "CSAFPID-1751237",
                  "CSAFPID-1751254",
                  "CSAFPID-1751217",
                  "CSAFPID-1673481",
                  "CSAFPID-1751255",
               ],
            },
         ],
         title: "CVE-2024-37370",
      },
      {
         cve: "CVE-2024-37371",
         cwe: {
            id: "CWE-130",
            name: "Improper Handling of Length Parameter Inconsistency",
         },
         notes: [
            {
               category: "other",
               text: "Improper Handling of Length Parameter Inconsistency",
               title: "CWE-130",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-912549",
               "CSAFPID-1673413",
               "CSAFPID-1673414",
               "CSAFPID-1673396",
               "CSAFPID-1503590",
               "CSAFPID-1673393",
               "CSAFPID-1673395",
               "CSAFPID-1673399",
               "CSAFPID-1672767",
               "CSAFPID-1503585",
               "CSAFPID-1673392",
               "CSAFPID-1503589",
               "CSAFPID-1673415",
               "CSAFPID-1673389",
               "CSAFPID-1673390",
               "CSAFPID-1635305",
               "CSAFPID-1635306",
               "CSAFPID-1635307",
               "CSAFPID-1635308",
               "CSAFPID-1635309",
               "CSAFPID-1670434",
               "CSAFPID-1674629",
               "CSAFPID-1635315",
               "CSAFPID-1635316",
               "CSAFPID-1635318",
               "CSAFPID-1674630",
               "CSAFPID-1674631",
               "CSAFPID-1674632",
               "CSAFPID-1674633",
               "CSAFPID-1674634",
               "CSAFPID-1674635",
               "CSAFPID-1635323",
               "CSAFPID-1674636",
               "CSAFPID-1635324",
               "CSAFPID-1674637",
               "CSAFPID-1674638",
               "CSAFPID-1674639",
               "CSAFPID-1674640",
               "CSAFPID-1674641",
               "CSAFPID-1674642",
               "CSAFPID-1635320",
               "CSAFPID-1635321",
               "CSAFPID-1674643",
               "CSAFPID-1674644",
               "CSAFPID-1674645",
               "CSAFPID-1674646",
               "CSAFPID-1751237",
               "CSAFPID-1751254",
               "CSAFPID-1751217",
               "CSAFPID-1673481",
               "CSAFPID-1751255",
               "CSAFPID-1751377",
               "CSAFPID-1751378",
               "CSAFPID-1751379",
               "CSAFPID-1751380",
               "CSAFPID-1751381",
               "CSAFPID-1751382",
               "CSAFPID-1751383",
               "CSAFPID-1674619",
               "CSAFPID-1674622",
               "CSAFPID-1674623",
               "CSAFPID-1751384",
               "CSAFPID-1751385",
               "CSAFPID-1751386",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-37371",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-37371.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.1,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-912549",
                  "CSAFPID-1673413",
                  "CSAFPID-1673414",
                  "CSAFPID-1673396",
                  "CSAFPID-1503590",
                  "CSAFPID-1673393",
                  "CSAFPID-1673395",
                  "CSAFPID-1673399",
                  "CSAFPID-1672767",
                  "CSAFPID-1503585",
                  "CSAFPID-1673392",
                  "CSAFPID-1503589",
                  "CSAFPID-1673415",
                  "CSAFPID-1673389",
                  "CSAFPID-1673390",
                  "CSAFPID-1635305",
                  "CSAFPID-1635306",
                  "CSAFPID-1635307",
                  "CSAFPID-1635308",
                  "CSAFPID-1635309",
                  "CSAFPID-1670434",
                  "CSAFPID-1674629",
                  "CSAFPID-1635315",
                  "CSAFPID-1635316",
                  "CSAFPID-1635318",
                  "CSAFPID-1674630",
                  "CSAFPID-1674631",
                  "CSAFPID-1674632",
                  "CSAFPID-1674633",
                  "CSAFPID-1674634",
                  "CSAFPID-1674635",
                  "CSAFPID-1635323",
                  "CSAFPID-1674636",
                  "CSAFPID-1635324",
                  "CSAFPID-1674637",
                  "CSAFPID-1674638",
                  "CSAFPID-1674639",
                  "CSAFPID-1674640",
                  "CSAFPID-1674641",
                  "CSAFPID-1674642",
                  "CSAFPID-1635320",
                  "CSAFPID-1635321",
                  "CSAFPID-1674643",
                  "CSAFPID-1674644",
                  "CSAFPID-1674645",
                  "CSAFPID-1674646",
                  "CSAFPID-1751237",
                  "CSAFPID-1751254",
                  "CSAFPID-1751217",
                  "CSAFPID-1673481",
                  "CSAFPID-1751255",
                  "CSAFPID-1751377",
                  "CSAFPID-1751378",
                  "CSAFPID-1751379",
                  "CSAFPID-1751380",
                  "CSAFPID-1751381",
                  "CSAFPID-1751382",
                  "CSAFPID-1751383",
                  "CSAFPID-1674619",
                  "CSAFPID-1674622",
                  "CSAFPID-1674623",
                  "CSAFPID-1751384",
                  "CSAFPID-1751385",
                  "CSAFPID-1751386",
               ],
            },
         ],
         title: "CVE-2024-37371",
      },
      {
         cve: "CVE-2024-37891",
         cwe: {
            id: "CWE-669",
            name: "Incorrect Resource Transfer Between Spheres",
         },
         notes: [
            {
               category: "other",
               text: "Incorrect Resource Transfer Between Spheres",
               title: "CWE-669",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1673395",
               "CSAFPID-1673396",
               "CSAFPID-1635305",
               "CSAFPID-1635306",
               "CSAFPID-1635307",
               "CSAFPID-1635308",
               "CSAFPID-1635309",
               "CSAFPID-1670434",
               "CSAFPID-1674629",
               "CSAFPID-1635315",
               "CSAFPID-1635316",
               "CSAFPID-1635318",
               "CSAFPID-1674630",
               "CSAFPID-1674631",
               "CSAFPID-1674632",
               "CSAFPID-1674633",
               "CSAFPID-1674634",
               "CSAFPID-1674635",
               "CSAFPID-1635323",
               "CSAFPID-1674636",
               "CSAFPID-1635324",
               "CSAFPID-1674637",
               "CSAFPID-1674638",
               "CSAFPID-1674639",
               "CSAFPID-1674640",
               "CSAFPID-1674641",
               "CSAFPID-1674642",
               "CSAFPID-1635320",
               "CSAFPID-1635321",
               "CSAFPID-1674643",
               "CSAFPID-1674644",
               "CSAFPID-1674645",
               "CSAFPID-1674646",
               "CSAFPID-1751225",
               "CSAFPID-1751254",
               "CSAFPID-1673530",
               "CSAFPID-1751217",
               "CSAFPID-1751255",
               "CSAFPID-816790",
               "CSAFPID-1751258",
               "CSAFPID-1673481",
               "CSAFPID-1751377",
               "CSAFPID-1751378",
               "CSAFPID-1751379",
               "CSAFPID-1751380",
               "CSAFPID-1751381",
               "CSAFPID-1751382",
               "CSAFPID-1751383",
               "CSAFPID-1674619",
               "CSAFPID-1674622",
               "CSAFPID-1674623",
               "CSAFPID-1751384",
               "CSAFPID-1751385",
               "CSAFPID-1751386",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-37891",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-37891.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 4.4,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1673395",
                  "CSAFPID-1673396",
                  "CSAFPID-1635305",
                  "CSAFPID-1635306",
                  "CSAFPID-1635307",
                  "CSAFPID-1635308",
                  "CSAFPID-1635309",
                  "CSAFPID-1670434",
                  "CSAFPID-1674629",
                  "CSAFPID-1635315",
                  "CSAFPID-1635316",
                  "CSAFPID-1635318",
                  "CSAFPID-1674630",
                  "CSAFPID-1674631",
                  "CSAFPID-1674632",
                  "CSAFPID-1674633",
                  "CSAFPID-1674634",
                  "CSAFPID-1674635",
                  "CSAFPID-1635323",
                  "CSAFPID-1674636",
                  "CSAFPID-1635324",
                  "CSAFPID-1674637",
                  "CSAFPID-1674638",
                  "CSAFPID-1674639",
                  "CSAFPID-1674640",
                  "CSAFPID-1674641",
                  "CSAFPID-1674642",
                  "CSAFPID-1635320",
                  "CSAFPID-1635321",
                  "CSAFPID-1674643",
                  "CSAFPID-1674644",
                  "CSAFPID-1674645",
                  "CSAFPID-1674646",
                  "CSAFPID-1751225",
                  "CSAFPID-1751254",
                  "CSAFPID-1673530",
                  "CSAFPID-1751217",
                  "CSAFPID-1751255",
                  "CSAFPID-816790",
                  "CSAFPID-1751258",
                  "CSAFPID-1673481",
                  "CSAFPID-1751377",
                  "CSAFPID-1751378",
                  "CSAFPID-1751379",
                  "CSAFPID-1751380",
                  "CSAFPID-1751381",
                  "CSAFPID-1751382",
                  "CSAFPID-1751383",
                  "CSAFPID-1674619",
                  "CSAFPID-1674622",
                  "CSAFPID-1674623",
                  "CSAFPID-1751384",
                  "CSAFPID-1751385",
                  "CSAFPID-1751386",
               ],
            },
         ],
         title: "CVE-2024-37891",
      },
      {
         cve: "CVE-2024-38475",
         cwe: {
            id: "CWE-284",
            name: "Improper Access Control",
         },
         notes: [
            {
               category: "other",
               text: "Improper Access Control",
               title: "CWE-284",
            },
            {
               category: "other",
               text: "Improper Encoding or Escaping of Output",
               title: "CWE-116",
            },
            {
               category: "other",
               text: "Path Traversal: '.../...//'",
               title: "CWE-35",
            },
            {
               category: "other",
               text: "Stack-based Buffer Overflow",
               title: "CWE-121",
            },
            {
               category: "other",
               text: "Heap-based Buffer Overflow",
               title: "CWE-122",
            },
            {
               category: "other",
               text: "Use of Hard-coded Credentials",
               title: "CWE-798",
            },
            {
               category: "other",
               text: "Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)",
               title: "CWE-338",
            },
         ],
         references: [
            {
               category: "self",
               summary: "CVE-2024-38475",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38475.json",
            },
         ],
         title: "CVE-2024-38475",
      },
      {
         cve: "CVE-2024-38807",
         cwe: {
            id: "CWE-347",
            name: "Improper Verification of Cryptographic Signature",
         },
         notes: [
            {
               category: "other",
               text: "Improper Verification of Cryptographic Signature",
               title: "CWE-347",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751090",
               "CSAFPID-1751233",
               "CSAFPID-1751234",
               "CSAFPID-1751377",
               "CSAFPID-1751378",
               "CSAFPID-1751379",
               "CSAFPID-1751380",
               "CSAFPID-1751381",
               "CSAFPID-1751382",
               "CSAFPID-1751383",
               "CSAFPID-1674619",
               "CSAFPID-1674622",
               "CSAFPID-1674623",
               "CSAFPID-1751384",
               "CSAFPID-1751385",
               "CSAFPID-1751386",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38807",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38807.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751090",
                  "CSAFPID-1751233",
                  "CSAFPID-1751234",
                  "CSAFPID-1751377",
                  "CSAFPID-1751378",
                  "CSAFPID-1751379",
                  "CSAFPID-1751380",
                  "CSAFPID-1751381",
                  "CSAFPID-1751382",
                  "CSAFPID-1751383",
                  "CSAFPID-1674619",
                  "CSAFPID-1674622",
                  "CSAFPID-1674623",
                  "CSAFPID-1751384",
                  "CSAFPID-1751385",
                  "CSAFPID-1751386",
               ],
            },
         ],
         title: "CVE-2024-38807",
      },
      {
         cve: "CVE-2024-38809",
         cwe: {
            id: "CWE-1333",
            name: "Inefficient Regular Expression Complexity",
         },
         notes: [
            {
               category: "other",
               text: "Inefficient Regular Expression Complexity",
               title: "CWE-1333",
            },
            {
               category: "other",
               text: "Improper Resource Shutdown or Release",
               title: "CWE-404",
            },
            {
               category: "other",
               text: "Uncontrolled Resource Consumption",
               title: "CWE-400",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1673393",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38809",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38809.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
                  version: "3.0",
               },
               products: [
                  "CSAFPID-1673393",
               ],
            },
         ],
         title: "CVE-2024-38809",
      },
      {
         cve: "CVE-2024-38816",
         cwe: {
            id: "CWE-22",
            name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
         },
         notes: [
            {
               category: "other",
               text: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
               title: "CWE-22",
            },
            {
               category: "other",
               text: "Relative Path Traversal",
               title: "CWE-23",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1673420",
               "CSAFPID-1673421",
               "CSAFPID-1635305",
               "CSAFPID-1635306",
               "CSAFPID-1635307",
               "CSAFPID-1635308",
               "CSAFPID-1635309",
               "CSAFPID-1670434",
               "CSAFPID-1674629",
               "CSAFPID-1635315",
               "CSAFPID-1635316",
               "CSAFPID-1635318",
               "CSAFPID-1674630",
               "CSAFPID-1674631",
               "CSAFPID-1674632",
               "CSAFPID-1674633",
               "CSAFPID-1674634",
               "CSAFPID-1674635",
               "CSAFPID-1635323",
               "CSAFPID-1674636",
               "CSAFPID-1635324",
               "CSAFPID-1674637",
               "CSAFPID-1674638",
               "CSAFPID-1674639",
               "CSAFPID-1674640",
               "CSAFPID-1674641",
               "CSAFPID-1674642",
               "CSAFPID-1635320",
               "CSAFPID-1635321",
               "CSAFPID-1674643",
               "CSAFPID-1674644",
               "CSAFPID-1674645",
               "CSAFPID-1674646",
               "CSAFPID-1751081",
               "CSAFPID-1673393",
               "CSAFPID-1751079",
               "CSAFPID-1751080",
               "CSAFPID-1751084",
               "CSAFPID-1751085",
               "CSAFPID-1751082",
               "CSAFPID-1751225",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38816",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38816.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.1,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1673420",
                  "CSAFPID-1673421",
                  "CSAFPID-1635305",
                  "CSAFPID-1635306",
                  "CSAFPID-1635307",
                  "CSAFPID-1635308",
                  "CSAFPID-1635309",
                  "CSAFPID-1670434",
                  "CSAFPID-1674629",
                  "CSAFPID-1635315",
                  "CSAFPID-1635316",
                  "CSAFPID-1635318",
                  "CSAFPID-1674630",
                  "CSAFPID-1674631",
                  "CSAFPID-1674632",
                  "CSAFPID-1674633",
                  "CSAFPID-1674634",
                  "CSAFPID-1674635",
                  "CSAFPID-1635323",
                  "CSAFPID-1674636",
                  "CSAFPID-1635324",
                  "CSAFPID-1674637",
                  "CSAFPID-1674638",
                  "CSAFPID-1674639",
                  "CSAFPID-1674640",
                  "CSAFPID-1674641",
                  "CSAFPID-1674642",
                  "CSAFPID-1635320",
                  "CSAFPID-1635321",
                  "CSAFPID-1674643",
                  "CSAFPID-1674644",
                  "CSAFPID-1674645",
                  "CSAFPID-1674646",
                  "CSAFPID-1751081",
                  "CSAFPID-1673393",
                  "CSAFPID-1751079",
                  "CSAFPID-1751080",
                  "CSAFPID-1751084",
                  "CSAFPID-1751085",
                  "CSAFPID-1751082",
                  "CSAFPID-1751225",
               ],
            },
         ],
         title: "CVE-2024-38816",
      },
      {
         cve: "CVE-2024-38819",
         cwe: {
            id: "CWE-22",
            name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
         },
         notes: [
            {
               category: "other",
               text: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
               title: "CWE-22",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1673393",
               "CSAFPID-1751079",
               "CSAFPID-1751080",
               "CSAFPID-1751081",
               "CSAFPID-1751082",
               "CSAFPID-1751084",
               "CSAFPID-1751085",
               "CSAFPID-1751225",
               "CSAFPID-1672767",
               "CSAFPID-1751241",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38819",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38819.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1673393",
                  "CSAFPID-1751079",
                  "CSAFPID-1751080",
                  "CSAFPID-1751081",
                  "CSAFPID-1751082",
                  "CSAFPID-1751084",
                  "CSAFPID-1751085",
                  "CSAFPID-1751225",
                  "CSAFPID-1672767",
                  "CSAFPID-1751241",
               ],
            },
         ],
         title: "CVE-2024-38819",
      },
      {
         cve: "CVE-2024-38820",
         cwe: {
            id: "CWE-284",
            name: "Improper Access Control",
         },
         notes: [
            {
               category: "other",
               text: "Improper Access Control",
               title: "CWE-284",
            },
            {
               category: "other",
               text: "Improper Handling of Case Sensitivity",
               title: "CWE-178",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751079",
               "CSAFPID-1751225",
               "CSAFPID-1751081",
               "CSAFPID-1751084",
               "CSAFPID-1673393",
               "CSAFPID-1751080",
               "CSAFPID-1751082",
               "CSAFPID-1751085",
               "CSAFPID-1672767",
               "CSAFPID-1751241",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38820",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38820.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751079",
                  "CSAFPID-1751225",
                  "CSAFPID-1751081",
                  "CSAFPID-1751084",
                  "CSAFPID-1673393",
                  "CSAFPID-1751080",
                  "CSAFPID-1751082",
                  "CSAFPID-1751085",
                  "CSAFPID-1672767",
                  "CSAFPID-1751241",
               ],
            },
         ],
         title: "CVE-2024-38820",
      },
      {
         cve: "CVE-2024-38827",
         cwe: {
            id: "CWE-639",
            name: "Authorization Bypass Through User-Controlled Key",
         },
         notes: [
            {
               category: "other",
               text: "Authorization Bypass Through User-Controlled Key",
               title: "CWE-639",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751225",
               "CSAFPID-1751079",
               "CSAFPID-204510",
               "CSAFPID-204569",
               "CSAFPID-1673393",
               "CSAFPID-1751085",
               "CSAFPID-1751377",
               "CSAFPID-1751378",
               "CSAFPID-1751379",
               "CSAFPID-1751380",
               "CSAFPID-1751381",
               "CSAFPID-1751382",
               "CSAFPID-1751383",
               "CSAFPID-1674619",
               "CSAFPID-1674622",
               "CSAFPID-1674623",
               "CSAFPID-1751384",
               "CSAFPID-1751385",
               "CSAFPID-1751386",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38827",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38827.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 4.8,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751225",
                  "CSAFPID-1751079",
                  "CSAFPID-204510",
                  "CSAFPID-204569",
                  "CSAFPID-1673393",
                  "CSAFPID-1751085",
                  "CSAFPID-1751377",
                  "CSAFPID-1751378",
                  "CSAFPID-1751379",
                  "CSAFPID-1751380",
                  "CSAFPID-1751381",
                  "CSAFPID-1751382",
                  "CSAFPID-1751383",
                  "CSAFPID-1674619",
                  "CSAFPID-1674622",
                  "CSAFPID-1674623",
                  "CSAFPID-1751384",
                  "CSAFPID-1751385",
                  "CSAFPID-1751386",
               ],
            },
         ],
         title: "CVE-2024-38827",
      },
      {
         cve: "CVE-2024-38998",
         cwe: {
            id: "CWE-1321",
            name: "Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')",
         },
         notes: [
            {
               category: "other",
               text: "Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')",
               title: "CWE-1321",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751225",
               "CSAFPID-224790",
               "CSAFPID-221118",
               "CSAFPID-912073",
               "CSAFPID-1751254",
               "CSAFPID-1751079",
               "CSAFPID-1751242",
               "CSAFPID-1751234",
               "CSAFPID-1673496",
               "CSAFPID-1751233",
               "CSAFPID-1751255",
               "CSAFPID-1673481",
               "CSAFPID-1751085",
               "CSAFPID-220132",
               "CSAFPID-912079",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38998",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38998.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751225",
                  "CSAFPID-224790",
                  "CSAFPID-221118",
                  "CSAFPID-912073",
                  "CSAFPID-1751254",
                  "CSAFPID-1751079",
                  "CSAFPID-1751242",
                  "CSAFPID-1751234",
                  "CSAFPID-1673496",
                  "CSAFPID-1751233",
                  "CSAFPID-1751255",
                  "CSAFPID-1673481",
                  "CSAFPID-1751085",
                  "CSAFPID-220132",
                  "CSAFPID-912079",
               ],
            },
         ],
         title: "CVE-2024-38998",
      },
      {
         cve: "CVE-2024-38999",
         cwe: {
            id: "CWE-1321",
            name: "Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')",
         },
         notes: [
            {
               category: "other",
               text: "Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')",
               title: "CWE-1321",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751225",
               "CSAFPID-224790",
               "CSAFPID-221118",
               "CSAFPID-912073",
               "CSAFPID-1751254",
               "CSAFPID-1751079",
               "CSAFPID-1751242",
               "CSAFPID-1751234",
               "CSAFPID-1673496",
               "CSAFPID-1751233",
               "CSAFPID-1751255",
               "CSAFPID-1673481",
               "CSAFPID-1751085",
               "CSAFPID-220132",
               "CSAFPID-912079",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38999",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38999.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 10,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751225",
                  "CSAFPID-224790",
                  "CSAFPID-221118",
                  "CSAFPID-912073",
                  "CSAFPID-1751254",
                  "CSAFPID-1751079",
                  "CSAFPID-1751242",
                  "CSAFPID-1751234",
                  "CSAFPID-1673496",
                  "CSAFPID-1751233",
                  "CSAFPID-1751255",
                  "CSAFPID-1673481",
                  "CSAFPID-1751085",
                  "CSAFPID-220132",
                  "CSAFPID-912079",
               ],
            },
         ],
         title: "CVE-2024-38999",
      },
      {
         cve: "CVE-2024-41817",
         cwe: {
            id: "CWE-427",
            name: "Uncontrolled Search Path Element",
         },
         notes: [
            {
               category: "other",
               text: "Uncontrolled Search Path Element",
               title: "CWE-427",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1673382",
               "CSAFPID-1650731",
               "CSAFPID-1674617",
               "CSAFPID-1674618",
               "CSAFPID-1674619",
               "CSAFPID-1674620",
               "CSAFPID-1674621",
               "CSAFPID-1674622",
               "CSAFPID-1674623",
               "CSAFPID-1674624",
               "CSAFPID-1674625",
               "CSAFPID-1674626",
               "CSAFPID-1674627",
               "CSAFPID-1674628",
               "CSAFPID-220132",
               "CSAFPID-912079",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-41817",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-41817.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.8,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1673382",
                  "CSAFPID-1650731",
                  "CSAFPID-1674617",
                  "CSAFPID-1674618",
                  "CSAFPID-1674619",
                  "CSAFPID-1674620",
                  "CSAFPID-1674621",
                  "CSAFPID-1674622",
                  "CSAFPID-1674623",
                  "CSAFPID-1674624",
                  "CSAFPID-1674625",
                  "CSAFPID-1674626",
                  "CSAFPID-1674627",
                  "CSAFPID-1674628",
                  "CSAFPID-220132",
                  "CSAFPID-912079",
               ],
            },
         ],
         title: "CVE-2024-41817",
      },
      {
         cve: "CVE-2024-45490",
         cwe: {
            id: "CWE-190",
            name: "Integer Overflow or Wraparound",
         },
         notes: [
            {
               category: "other",
               text: "Integer Overflow or Wraparound",
               title: "CWE-190",
            },
            {
               category: "other",
               text: "Incorrect Calculation of Buffer Size",
               title: "CWE-131",
            },
            {
               category: "other",
               text: "Improper Restriction of XML External Entity Reference",
               title: "CWE-611",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1673382",
               "CSAFPID-1673399",
               "CSAFPID-1650731",
               "CSAFPID-1673517",
               "CSAFPID-1673396",
               "CSAFPID-1673414",
               "CSAFPID-1503590",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-45490",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-45490.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1673382",
                  "CSAFPID-1673399",
                  "CSAFPID-1650731",
                  "CSAFPID-1673517",
                  "CSAFPID-1673396",
                  "CSAFPID-1673414",
                  "CSAFPID-1503590",
               ],
            },
         ],
         title: "CVE-2024-45490",
      },
      {
         cve: "CVE-2024-45491",
         cwe: {
            id: "CWE-190",
            name: "Integer Overflow or Wraparound",
         },
         notes: [
            {
               category: "other",
               text: "Integer Overflow or Wraparound",
               title: "CWE-190",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1673382",
               "CSAFPID-1673399",
               "CSAFPID-1650731",
               "CSAFPID-1673517",
               "CSAFPID-1673396",
               "CSAFPID-1673414",
               "CSAFPID-1503590",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-45491",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-45491.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1673382",
                  "CSAFPID-1673399",
                  "CSAFPID-1650731",
                  "CSAFPID-1673517",
                  "CSAFPID-1673396",
                  "CSAFPID-1673414",
                  "CSAFPID-1503590",
               ],
            },
         ],
         title: "CVE-2024-45491",
      },
      {
         cve: "CVE-2024-45492",
         cwe: {
            id: "CWE-190",
            name: "Integer Overflow or Wraparound",
         },
         notes: [
            {
               category: "other",
               text: "Integer Overflow or Wraparound",
               title: "CWE-190",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1673382",
               "CSAFPID-1673399",
               "CSAFPID-1650731",
               "CSAFPID-1673517",
               "CSAFPID-1673396",
               "CSAFPID-1674617",
               "CSAFPID-1674618",
               "CSAFPID-1674619",
               "CSAFPID-1674620",
               "CSAFPID-1674621",
               "CSAFPID-1674622",
               "CSAFPID-1674623",
               "CSAFPID-1674624",
               "CSAFPID-1674625",
               "CSAFPID-1674626",
               "CSAFPID-1674627",
               "CSAFPID-1674628",
               "CSAFPID-1635305",
               "CSAFPID-1635306",
               "CSAFPID-1635307",
               "CSAFPID-1635308",
               "CSAFPID-1635309",
               "CSAFPID-1670434",
               "CSAFPID-1674629",
               "CSAFPID-1635315",
               "CSAFPID-1635316",
               "CSAFPID-1635318",
               "CSAFPID-1674630",
               "CSAFPID-1674631",
               "CSAFPID-1674632",
               "CSAFPID-1674633",
               "CSAFPID-1674634",
               "CSAFPID-1674635",
               "CSAFPID-1635323",
               "CSAFPID-1674636",
               "CSAFPID-1635324",
               "CSAFPID-1674637",
               "CSAFPID-1674638",
               "CSAFPID-1674639",
               "CSAFPID-1674640",
               "CSAFPID-1674641",
               "CSAFPID-1674642",
               "CSAFPID-1635320",
               "CSAFPID-1635321",
               "CSAFPID-1674643",
               "CSAFPID-1674644",
               "CSAFPID-1674645",
               "CSAFPID-1674646",
               "CSAFPID-1673414",
               "CSAFPID-1503590",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-45492",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-45492.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1673382",
                  "CSAFPID-1673399",
                  "CSAFPID-1650731",
                  "CSAFPID-1673517",
                  "CSAFPID-1673396",
                  "CSAFPID-1674617",
                  "CSAFPID-1674618",
                  "CSAFPID-1674619",
                  "CSAFPID-1674620",
                  "CSAFPID-1674621",
                  "CSAFPID-1674622",
                  "CSAFPID-1674623",
                  "CSAFPID-1674624",
                  "CSAFPID-1674625",
                  "CSAFPID-1674626",
                  "CSAFPID-1674627",
                  "CSAFPID-1674628",
                  "CSAFPID-1635305",
                  "CSAFPID-1635306",
                  "CSAFPID-1635307",
                  "CSAFPID-1635308",
                  "CSAFPID-1635309",
                  "CSAFPID-1670434",
                  "CSAFPID-1674629",
                  "CSAFPID-1635315",
                  "CSAFPID-1635316",
                  "CSAFPID-1635318",
                  "CSAFPID-1674630",
                  "CSAFPID-1674631",
                  "CSAFPID-1674632",
                  "CSAFPID-1674633",
                  "CSAFPID-1674634",
                  "CSAFPID-1674635",
                  "CSAFPID-1635323",
                  "CSAFPID-1674636",
                  "CSAFPID-1635324",
                  "CSAFPID-1674637",
                  "CSAFPID-1674638",
                  "CSAFPID-1674639",
                  "CSAFPID-1674640",
                  "CSAFPID-1674641",
                  "CSAFPID-1674642",
                  "CSAFPID-1635320",
                  "CSAFPID-1635321",
                  "CSAFPID-1674643",
                  "CSAFPID-1674644",
                  "CSAFPID-1674645",
                  "CSAFPID-1674646",
                  "CSAFPID-1673414",
                  "CSAFPID-1503590",
               ],
            },
         ],
         title: "CVE-2024-45492",
      },
      {
         cve: "CVE-2024-47535",
         cwe: {
            id: "CWE-400",
            name: "Uncontrolled Resource Consumption",
         },
         notes: [
            {
               category: "other",
               text: "Uncontrolled Resource Consumption",
               title: "CWE-400",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751233",
               "CSAFPID-1751234",
               "CSAFPID-1751377",
               "CSAFPID-1751378",
               "CSAFPID-1751379",
               "CSAFPID-1751380",
               "CSAFPID-1751381",
               "CSAFPID-1751382",
               "CSAFPID-1751383",
               "CSAFPID-1674619",
               "CSAFPID-1674622",
               "CSAFPID-1674623",
               "CSAFPID-1751384",
               "CSAFPID-1751385",
               "CSAFPID-1751386",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-47535",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-47535.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.5,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751233",
                  "CSAFPID-1751234",
                  "CSAFPID-1751377",
                  "CSAFPID-1751378",
                  "CSAFPID-1751379",
                  "CSAFPID-1751380",
                  "CSAFPID-1751381",
                  "CSAFPID-1751382",
                  "CSAFPID-1751383",
                  "CSAFPID-1674619",
                  "CSAFPID-1674622",
                  "CSAFPID-1674623",
                  "CSAFPID-1751384",
                  "CSAFPID-1751385",
                  "CSAFPID-1751386",
               ],
            },
         ],
         title: "CVE-2024-47535",
      },
      {
         cve: "CVE-2024-47554",
         cwe: {
            id: "CWE-400",
            name: "Uncontrolled Resource Consumption",
         },
         notes: [
            {
               category: "other",
               text: "Uncontrolled Resource Consumption",
               title: "CWE-400",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751292",
               "CSAFPID-1751234",
               "CSAFPID-1751294",
               "CSAFPID-1751233",
               "CSAFPID-1751295",
               "CSAFPID-1751296",
               "CSAFPID-1751377",
               "CSAFPID-1751378",
               "CSAFPID-1751379",
               "CSAFPID-1751380",
               "CSAFPID-1751381",
               "CSAFPID-1751382",
               "CSAFPID-1751383",
               "CSAFPID-1674619",
               "CSAFPID-1674622",
               "CSAFPID-1674623",
               "CSAFPID-1751384",
               "CSAFPID-1751385",
               "CSAFPID-1751386",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-47554",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-47554.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751292",
                  "CSAFPID-1751234",
                  "CSAFPID-1751294",
                  "CSAFPID-1751233",
                  "CSAFPID-1751295",
                  "CSAFPID-1751296",
                  "CSAFPID-1751377",
                  "CSAFPID-1751378",
                  "CSAFPID-1751379",
                  "CSAFPID-1751380",
                  "CSAFPID-1751381",
                  "CSAFPID-1751382",
                  "CSAFPID-1751383",
                  "CSAFPID-1674619",
                  "CSAFPID-1674622",
                  "CSAFPID-1674623",
                  "CSAFPID-1751384",
                  "CSAFPID-1751385",
                  "CSAFPID-1751386",
               ],
            },
         ],
         title: "CVE-2024-47554",
      },
      {
         cve: "CVE-2024-47561",
         cwe: {
            id: "CWE-502",
            name: "Deserialization of Untrusted Data",
         },
         notes: [
            {
               category: "other",
               text: "Deserialization of Untrusted Data",
               title: "CWE-502",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751296",
               "CSAFPID-1751377",
               "CSAFPID-1751378",
               "CSAFPID-1751379",
               "CSAFPID-1751380",
               "CSAFPID-1751381",
               "CSAFPID-1751382",
               "CSAFPID-1751383",
               "CSAFPID-1674619",
               "CSAFPID-1674622",
               "CSAFPID-1674623",
               "CSAFPID-1751384",
               "CSAFPID-1751385",
               "CSAFPID-1751386",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-47561",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-47561.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751296",
                  "CSAFPID-1751377",
                  "CSAFPID-1751378",
                  "CSAFPID-1751379",
                  "CSAFPID-1751380",
                  "CSAFPID-1751381",
                  "CSAFPID-1751382",
                  "CSAFPID-1751383",
                  "CSAFPID-1674619",
                  "CSAFPID-1674622",
                  "CSAFPID-1674623",
                  "CSAFPID-1751384",
                  "CSAFPID-1751385",
                  "CSAFPID-1751386",
               ],
            },
         ],
         title: "CVE-2024-47561",
      },
      {
         cve: "CVE-2024-47803",
         cwe: {
            id: "CWE-209",
            name: "Generation of Error Message Containing Sensitive Information",
         },
         notes: [
            {
               category: "other",
               text: "Generation of Error Message Containing Sensitive Information",
               title: "CWE-209",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751079",
               "CSAFPID-1751225",
               "CSAFPID-1672767",
               "CSAFPID-1751300",
               "CSAFPID-1751241",
               "CSAFPID-1751081",
               "CSAFPID-1751084",
               "CSAFPID-1673393",
               "CSAFPID-1751085",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-47803",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-47803.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751079",
                  "CSAFPID-1751225",
                  "CSAFPID-1672767",
                  "CSAFPID-1751300",
                  "CSAFPID-1751241",
                  "CSAFPID-1751081",
                  "CSAFPID-1751084",
                  "CSAFPID-1673393",
                  "CSAFPID-1751085",
               ],
            },
         ],
         title: "CVE-2024-47803",
      },
      {
         cve: "CVE-2024-47804",
         cwe: {
            id: "CWE-863",
            name: "Incorrect Authorization",
         },
         notes: [
            {
               category: "other",
               text: "Incorrect Authorization",
               title: "CWE-863",
            },
            {
               category: "other",
               text: "Insufficient Granularity of Access Control",
               title: "CWE-1220",
            },
            {
               category: "other",
               text: "Access of Resource Using Incompatible Type ('Type Confusion')",
               title: "CWE-843",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751225",
               "CSAFPID-1751079",
               "CSAFPID-1672767",
               "CSAFPID-1751300",
               "CSAFPID-1751241",
               "CSAFPID-1751081",
               "CSAFPID-1751084",
               "CSAFPID-1673393",
               "CSAFPID-1751085",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-47804",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-47804.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751225",
                  "CSAFPID-1751079",
                  "CSAFPID-1672767",
                  "CSAFPID-1751300",
                  "CSAFPID-1751241",
                  "CSAFPID-1751081",
                  "CSAFPID-1751084",
                  "CSAFPID-1673393",
                  "CSAFPID-1751085",
               ],
            },
         ],
         title: "CVE-2024-47804",
      },
      {
         cve: "CVE-2024-49766",
         cwe: {
            id: "CWE-22",
            name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
         },
         notes: [
            {
               category: "other",
               text: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
               title: "CWE-22",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751208",
               "CSAFPID-1751246",
               "CSAFPID-1751209",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-49766",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-49766.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6.5,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751208",
                  "CSAFPID-1751246",
                  "CSAFPID-1751209",
               ],
            },
         ],
         title: "CVE-2024-49766",
      },
      {
         cve: "CVE-2024-49767",
         cwe: {
            id: "CWE-400",
            name: "Uncontrolled Resource Consumption",
         },
         notes: [
            {
               category: "other",
               text: "Uncontrolled Resource Consumption",
               title: "CWE-400",
            },
            {
               category: "other",
               text: "Allocation of Resources Without Limits or Throttling",
               title: "CWE-770",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751208",
               "CSAFPID-1751080",
               "CSAFPID-1751079",
               "CSAFPID-1751225",
               "CSAFPID-1751082",
               "CSAFPID-1751300",
               "CSAFPID-1751246",
               "CSAFPID-1751209",
               "CSAFPID-1673393",
               "CSAFPID-1751085",
               "CSAFPID-1751231",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-49767",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-49767.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751208",
                  "CSAFPID-1751080",
                  "CSAFPID-1751079",
                  "CSAFPID-1751225",
                  "CSAFPID-1751082",
                  "CSAFPID-1751300",
                  "CSAFPID-1751246",
                  "CSAFPID-1751209",
                  "CSAFPID-1673393",
                  "CSAFPID-1751085",
                  "CSAFPID-1751231",
               ],
            },
         ],
         title: "CVE-2024-49767",
      },
      {
         cve: "CVE-2024-50379",
         cwe: {
            id: "CWE-367",
            name: "Time-of-check Time-of-use (TOCTOU) Race Condition",
         },
         notes: [
            {
               category: "other",
               text: "Time-of-check Time-of-use (TOCTOU) Race Condition",
               title: "CWE-367",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-816790",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-50379",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-50379.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-816790",
               ],
            },
         ],
         title: "CVE-2024-50379",
      },
      {
         cve: "CVE-2024-50602",
         cwe: {
            id: "CWE-404",
            name: "Improper Resource Shutdown or Release",
         },
         notes: [
            {
               category: "other",
               text: "Improper Resource Shutdown or Release",
               title: "CWE-404",
            },
            {
               category: "other",
               text: "Improper Check for Unusual or Exceptional Conditions",
               title: "CWE-754",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751225",
               "CSAFPID-1751079",
               "CSAFPID-1751082",
               "CSAFPID-1751085",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-50602",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-50602.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.9,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751225",
                  "CSAFPID-1751079",
                  "CSAFPID-1751082",
                  "CSAFPID-1751085",
               ],
            },
         ],
         title: "CVE-2024-50602",
      },
      {
         cve: "CVE-2024-53677",
         cwe: {
            id: "CWE-22",
            name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
         },
         notes: [
            {
               category: "other",
               text: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
               title: "CWE-22",
            },
            {
               category: "other",
               text: "Unrestricted Upload of File with Dangerous Type",
               title: "CWE-434",
            },
            {
               category: "other",
               text: "Files or Directories Accessible to External Parties",
               title: "CWE-552",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-816790",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-53677",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-53677.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-816790",
               ],
            },
         ],
         title: "CVE-2024-53677",
      },
      {
         cve: "CVE-2024-54677",
         cwe: {
            id: "CWE-400",
            name: "Uncontrolled Resource Consumption",
         },
         notes: [
            {
               category: "other",
               text: "Uncontrolled Resource Consumption",
               title: "CWE-400",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-816790",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-54677",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-54677.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-816790",
               ],
            },
         ],
         title: "CVE-2024-54677",
      },
      {
         cve: "CVE-2024-56337",
         cwe: {
            id: "CWE-367",
            name: "Time-of-check Time-of-use (TOCTOU) Race Condition",
         },
         notes: [
            {
               category: "other",
               text: "Time-of-check Time-of-use (TOCTOU) Race Condition",
               title: "CWE-367",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-816790",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-56337",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-56337.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-816790",
               ],
            },
         ],
         title: "CVE-2024-56337",
      },
      {
         cve: "CVE-2025-21542",
         product_status: {
            known_affected: [
               "CSAFPID-224790",
               "CSAFPID-221118",
               "CSAFPID-1673496",
               "CSAFPID-1751377",
               "CSAFPID-1751378",
               "CSAFPID-1751379",
               "CSAFPID-1751380",
               "CSAFPID-1751381",
               "CSAFPID-1751382",
               "CSAFPID-1751383",
               "CSAFPID-1674619",
               "CSAFPID-1674622",
               "CSAFPID-1674623",
               "CSAFPID-1751384",
               "CSAFPID-1751385",
               "CSAFPID-1751386",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2025-21542",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-21542.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-224790",
                  "CSAFPID-221118",
                  "CSAFPID-1673496",
                  "CSAFPID-1751377",
                  "CSAFPID-1751378",
                  "CSAFPID-1751379",
                  "CSAFPID-1751380",
                  "CSAFPID-1751381",
                  "CSAFPID-1751382",
                  "CSAFPID-1751383",
                  "CSAFPID-1674619",
                  "CSAFPID-1674622",
                  "CSAFPID-1674623",
                  "CSAFPID-1751384",
                  "CSAFPID-1751385",
                  "CSAFPID-1751386",
               ],
            },
         ],
         title: "CVE-2025-21542",
      },
      {
         cve: "CVE-2025-21544",
         product_status: {
            known_affected: [
               "CSAFPID-224790",
               "CSAFPID-221118",
               "CSAFPID-1673496",
               "CSAFPID-1751377",
               "CSAFPID-1751378",
               "CSAFPID-1751379",
               "CSAFPID-1751380",
               "CSAFPID-1751381",
               "CSAFPID-1751382",
               "CSAFPID-1751383",
               "CSAFPID-1674619",
               "CSAFPID-1674622",
               "CSAFPID-1674623",
               "CSAFPID-1751384",
               "CSAFPID-1751385",
               "CSAFPID-1751386",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2025-21544",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-21544.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.4,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-224790",
                  "CSAFPID-221118",
                  "CSAFPID-1673496",
                  "CSAFPID-1751377",
                  "CSAFPID-1751378",
                  "CSAFPID-1751379",
                  "CSAFPID-1751380",
                  "CSAFPID-1751381",
                  "CSAFPID-1751382",
                  "CSAFPID-1751383",
                  "CSAFPID-1674619",
                  "CSAFPID-1674622",
                  "CSAFPID-1674623",
                  "CSAFPID-1751384",
                  "CSAFPID-1751385",
                  "CSAFPID-1751386",
               ],
            },
         ],
         title: "CVE-2025-21544",
      },
      {
         cve: "CVE-2025-21554",
         product_status: {
            known_affected: [
               "CSAFPID-224790",
               "CSAFPID-221118",
               "CSAFPID-1673496",
               "CSAFPID-1751377",
               "CSAFPID-1751378",
               "CSAFPID-1751379",
               "CSAFPID-1751380",
               "CSAFPID-1751381",
               "CSAFPID-1751382",
               "CSAFPID-1751383",
               "CSAFPID-1674619",
               "CSAFPID-1674622",
               "CSAFPID-1674623",
               "CSAFPID-1751384",
               "CSAFPID-1751385",
               "CSAFPID-1751386",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2025-21554",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-21554.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-224790",
                  "CSAFPID-221118",
                  "CSAFPID-1673496",
                  "CSAFPID-1751377",
                  "CSAFPID-1751378",
                  "CSAFPID-1751379",
                  "CSAFPID-1751380",
                  "CSAFPID-1751381",
                  "CSAFPID-1751382",
                  "CSAFPID-1751383",
                  "CSAFPID-1674619",
                  "CSAFPID-1674622",
                  "CSAFPID-1674623",
                  "CSAFPID-1751384",
                  "CSAFPID-1751385",
                  "CSAFPID-1751386",
               ],
            },
         ],
         title: "CVE-2025-21554",
      },
   ],
}

ncsc-2025-0022

Vulnerability from csaf_ncscnl

Published

2025-01-22 13:31

Modified

2025-01-22 13:31

Summary

Kwetsbaarheden verholpen in Oracle Enterprise Manager

Notes

Feiten

Oracle heeft kwetsbaarheden verholpen in Oracle Enterprise Manager

Interpretaties

Een kwaadwillende kan de kwetsbaarheden misbruiken om toegang te verkrijgen tot gevoelige data of een Denial-of-Service te veroorzaken.

Oplossingen

Oracle heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.

Kans

medium

Schade

high

CWE-125

Out-of-bounds Read

CWE-400

Uncontrolled Resource Consumption

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CWE-121

Stack-based Buffer Overflow

CWE-20

Improper Input Validation

CWE-178

Improper Handling of Case Sensitivity

CWE-284

Improper Access Control

CWE-1321

Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

JSON

To clipboard

{
   document: {
      category: "csaf_security_advisory",
      csaf_version: "2.0",
      distribution: {
         tlp: {
            label: "WHITE",
         },
      },
      lang: "nl",
      notes: [
         {
            category: "legal_disclaimer",
            text: "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n    NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n    NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n    This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.",
         },
         {
            category: "description",
            text: "Oracle heeft kwetsbaarheden verholpen in Oracle Enterprise Manager",
            title: "Feiten",
         },
         {
            category: "description",
            text: "Een kwaadwillende kan de kwetsbaarheden misbruiken om toegang te verkrijgen tot gevoelige data of een Denial-of-Service te veroorzaken.",
            title: "Interpretaties",
         },
         {
            category: "description",
            text: "Oracle heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
            title: "Oplossingen",
         },
         {
            category: "general",
            text: "medium",
            title: "Kans",
         },
         {
            category: "general",
            text: "high",
            title: "Schade",
         },
         {
            category: "general",
            text: "Out-of-bounds Read",
            title: "CWE-125",
         },
         {
            category: "general",
            text: "Uncontrolled Resource Consumption",
            title: "CWE-400",
         },
         {
            category: "general",
            text: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
            title: "CWE-22",
         },
         {
            category: "general",
            text: "Stack-based Buffer Overflow",
            title: "CWE-121",
         },
         {
            category: "general",
            text: "Improper Input Validation",
            title: "CWE-20",
         },
         {
            category: "general",
            text: "Improper Handling of Case Sensitivity",
            title: "CWE-178",
         },
         {
            category: "general",
            text: "Improper Access Control",
            title: "CWE-284",
         },
         {
            category: "general",
            text: "Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')",
            title: "CWE-1321",
         },
      ],
      publisher: {
         category: "coordinator",
         contact_details: "cert@ncsc.nl",
         name: "Nationaal Cyber Security Centrum",
         namespace: "https://www.ncsc.nl/",
      },
      references: [
         {
            category: "external",
            summary: "Reference - cveprojectv5; nvd; oracle",
            url: "https://www.oracle.com/security-alerts/cpujan2025.html",
         },
      ],
      title: "Kwetsbaarheden verholpen in Oracle Enterprise Manager",
      tracking: {
         current_release_date: "2025-01-22T13:31:16.019294Z",
         id: "NCSC-2025-0022",
         initial_release_date: "2025-01-22T13:31:16.019294Z",
         revision_history: [
            {
               date: "2025-01-22T13:31:16.019294Z",
               number: "0",
               summary: "Initiele versie",
            },
         ],
         status: "final",
         version: "1.0.0",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  category: "product_name",
                  name: "enterprise_manager_base_platform",
                  product: {
                     name: "enterprise_manager_base_platform",
                     product_id: "CSAFPID-179794",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:enterprise_manager_base_platform:13.5.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "enterprise_manager_for_mysql_database",
                  product: {
                     name: "enterprise_manager_for_mysql_database",
                     product_id: "CSAFPID-1751077",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:enterprise_manager_for_mysql_database:13.5.2.0.0:*:*:*:*:*:*:*",
                     },
                  },
               },
               {
                  category: "product_name",
                  name: "application_testing_suite",
                  product: {
                     name: "application_testing_suite",
                     product_id: "CSAFPID-5546",
                     product_identification_helper: {
                        cpe: "cpe:2.3:a:oracle:application_testing_suite:13.3.0.1:*:*:*:*:*:*:*",
                     },
                  },
               },
            ],
            category: "vendor",
            name: "oracle",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2023-51074",
         cwe: {
            id: "CWE-121",
            name: "Stack-based Buffer Overflow",
         },
         notes: [
            {
               category: "other",
               text: "Stack-based Buffer Overflow",
               title: "CWE-121",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-5546",
               "CSAFPID-179794",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2023-51074",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-51074.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-5546",
                  "CSAFPID-179794",
               ],
            },
         ],
         title: "CVE-2023-51074",
      },
      {
         cve: "CVE-2024-29857",
         cwe: {
            id: "CWE-400",
            name: "Uncontrolled Resource Consumption",
         },
         notes: [
            {
               category: "other",
               text: "Uncontrolled Resource Consumption",
               title: "CWE-400",
            },
            {
               category: "other",
               text: "Improper Input Validation",
               title: "CWE-20",
            },
            {
               category: "other",
               text: "Out-of-bounds Read",
               title: "CWE-125",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-5546",
               "CSAFPID-179794",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-29857",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-29857.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-5546",
                  "CSAFPID-179794",
               ],
            },
         ],
         title: "CVE-2024-29857",
      },
      {
         cve: "CVE-2024-38819",
         cwe: {
            id: "CWE-22",
            name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
         },
         notes: [
            {
               category: "other",
               text: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
               title: "CWE-22",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751077",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38819",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38819.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751077",
               ],
            },
         ],
         title: "CVE-2024-38819",
      },
      {
         cve: "CVE-2024-38820",
         cwe: {
            id: "CWE-284",
            name: "Improper Access Control",
         },
         notes: [
            {
               category: "other",
               text: "Improper Access Control",
               title: "CWE-284",
            },
            {
               category: "other",
               text: "Improper Handling of Case Sensitivity",
               title: "CWE-178",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-1751077",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38820",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38820.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-1751077",
               ],
            },
         ],
         title: "CVE-2024-38820",
      },
      {
         cve: "CVE-2024-38998",
         cwe: {
            id: "CWE-1321",
            name: "Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')",
         },
         notes: [
            {
               category: "other",
               text: "Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')",
               title: "CWE-1321",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-5546",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38998",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38998.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-5546",
               ],
            },
         ],
         title: "CVE-2024-38998",
      },
      {
         cve: "CVE-2024-38999",
         cwe: {
            id: "CWE-1321",
            name: "Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')",
         },
         notes: [
            {
               category: "other",
               text: "Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')",
               title: "CWE-1321",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-5546",
            ],
         },
         references: [
            {
               category: "self",
               summary: "CVE-2024-38999",
               url: "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38999.json",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 10,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-5546",
               ],
            },
         ],
         title: "CVE-2024-38999",
      },
   ],
}

fkie_cve-2024-38819

Vulnerability from fkie_nvd

Published

2024-12-19 18:15

Modified

2025-01-10 13:15

Severity ?

7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Summary

References

▼	URL	Tags
	security@vmware.com	https://spring.io/security/cve-2024-38819
	af854a3a-2127-422b-91ae-364da2661108	https://security.netapp.com/advisory/ntap-20250110-0010/

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Applications serving static resources through the functional web frameworks WebMvc.fn or WebFlux.fn are vulnerable to path traversal attacks. An attacker can craft malicious HTTP requests and obtain any file on the file system that is also accessible to the process in which the Spring application is running.",
      },
      {
         lang: "es",
         value: "Las aplicaciones que ofrecen recursos estáticos a través de los marcos web funcionales WebMvc.fn o WebFlux.fn son vulnerables a ataques de path traversal. Un atacante puede manipular solicitudes HTTP maliciosas y obtener cualquier archivo del sistema de archivos al que también pueda acceder el proceso en el que se ejecuta la aplicación Spring.",
      },
   ],
   id: "CVE-2024-38819",
   lastModified: "2025-01-10T13:15:09.287",
   metrics: {
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "NETWORK",
               availabilityImpact: "NONE",
               baseScore: 7.5,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "NONE",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
               version: "3.1",
            },
            exploitabilityScore: 3.9,
            impactScore: 3.6,
            source: "security@vmware.com",
            type: "Secondary",
         },
      ],
   },
   published: "2024-12-19T18:15:10.557",
   references: [
      {
         source: "security@vmware.com",
         url: "https://spring.io/security/cve-2024-38819",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "https://security.netapp.com/advisory/ntap-20250110-0010/",
      },
   ],
   sourceIdentifier: "security@vmware.com",
   vulnStatus: "Awaiting Analysis",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-22",
            },
         ],
         source: "security@vmware.com",
         type: "Secondary",
      },
   ],
}

ghsa-g5vr-rgqm-vf78

Vulnerability from github

Published

2024-12-19 18:31

Modified

2025-01-10 15:31

Severity ?

7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Summary

Spring Framework Path Traversal vulnerability

Details

Show details on source website

JSON

To clipboard

{
   affected: [
      {
         package: {
            ecosystem: "Maven",
            name: "org.springframework:spring-webflux",
         },
         ranges: [
            {
               events: [
                  {
                     introduced: "0",
                  },
                  {
                     fixed: "6.1.14",
                  },
               ],
               type: "ECOSYSTEM",
            },
         ],
      },
      {
         package: {
            ecosystem: "Maven",
            name: "org.springframework:spring-webmvc",
         },
         ranges: [
            {
               events: [
                  {
                     introduced: "0",
                  },
                  {
                     fixed: "6.1.14",
                  },
               ],
               type: "ECOSYSTEM",
            },
         ],
      },
   ],
   aliases: [
      "CVE-2024-38819",
   ],
   database_specific: {
      cwe_ids: [
         "CWE-22",
      ],
      github_reviewed: true,
      github_reviewed_at: "2024-12-19T22:35:06Z",
      nvd_published_at: "2024-12-19T18:15:10Z",
      severity: "HIGH",
   },
   details: "Applications serving static resources through the functional web frameworks WebMvc.fn or WebFlux.fn are vulnerable to path traversal attacks. An attacker can craft malicious HTTP requests and obtain any file on the file system that is also accessible to the process in which the Spring application is running.",
   id: "GHSA-g5vr-rgqm-vf78",
   modified: "2025-01-10T15:31:33Z",
   published: "2024-12-19T18:31:38Z",
   references: [
      {
         type: "ADVISORY",
         url: "https://nvd.nist.gov/vuln/detail/CVE-2024-38819",
      },
      {
         type: "WEB",
         url: "https://github.com/spring-projects/spring-framework/issues/33689",
      },
      {
         type: "WEB",
         url: "https://github.com/spring-projects/spring-framework/commit/3bfbe30a7814c9ea1556d40df9bd87ddb3ba372d",
      },
      {
         type: "WEB",
         url: "https://github.com/spring-projects/spring-framework/commit/fb7890d73975a3d9e0763e0926df2bd0a608e87e",
      },
      {
         type: "PACKAGE",
         url: "https://github.com/spring-projects/spring-framework",
      },
      {
         type: "WEB",
         url: "https://security.netapp.com/advisory/ntap-20250110-0010",
      },
      {
         type: "WEB",
         url: "https://spring.io/security/cve-2024-38819",
      },
   ],
   schema_version: "1.4.0",
   severity: [
      {
         score: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
         type: "CVSS_V3",
      },
   ],
   summary: "Spring Framework Path Traversal vulnerability",
}

wid-sec-w-2024-3237

Vulnerability from csaf_certbund

Published

2024-10-17 22:00

Modified

2025-01-09 23:00

Summary

VMware Tanzu Spring Framework: Mehrere Schwachstellen

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Das Spring Framework bietet ein Entwicklungsmodell für Java mit Infrastrukturunterstützung auf Anwendungsebene.

Angriff

Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in VMware Tanzu Spring Framework ausnutzen, um Informationen offenzulegen oder Sicherheitsmaßnahmen zu umgehen.

Betroffene Betriebssysteme

- Linux - Sonstiges - UNIX - Windows

JSON

To clipboard

{
   document: {
      aggregate_severity: {
         text: "mittel",
      },
      category: "csaf_base",
      csaf_version: "2.0",
      distribution: {
         tlp: {
            label: "WHITE",
            url: "https://www.first.org/tlp/",
         },
      },
      lang: "de-DE",
      notes: [
         {
            category: "legal_disclaimer",
            text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.",
         },
         {
            category: "description",
            text: "Das Spring Framework bietet ein Entwicklungsmodell für Java mit Infrastrukturunterstützung auf Anwendungsebene.",
            title: "Produktbeschreibung",
         },
         {
            category: "summary",
            text: "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in VMware Tanzu Spring Framework ausnutzen, um Informationen offenzulegen oder Sicherheitsmaßnahmen zu umgehen.",
            title: "Angriff",
         },
         {
            category: "general",
            text: "- Linux\n- Sonstiges\n- UNIX\n- Windows",
            title: "Betroffene Betriebssysteme",
         },
      ],
      publisher: {
         category: "other",
         contact_details: "csaf-provider@cert-bund.de",
         name: "Bundesamt für Sicherheit in der Informationstechnik",
         namespace: "https://www.bsi.bund.de",
      },
      references: [
         {
            category: "self",
            summary: "WID-SEC-W-2024-3237 - CSAF Version",
            url: "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3237.json",
         },
         {
            category: "self",
            summary: "WID-SEC-2024-3237 - Portal Version",
            url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3237",
         },
         {
            category: "external",
            summary: "Spring blog vom 2024-10-17",
            url: "https://spring.io/blog/2024/10/17/spring-framework-cve-2024-38819-and-cve-2024-38820-published",
         },
         {
            category: "external",
            summary: "PDFreactor 12 Hotfix Release vom 2024-11-13",
            url: "https://www.pdfreactor.com/pdfreactor-12-hotfix-release-12-0-1-now-available/",
         },
         {
            category: "external",
            summary: "Red Hat Security Advisory RHSA-2024:10700 vom 2024-12-02",
            url: "https://access.redhat.com/errata/RHSA-2024:10700",
         },
         {
            category: "external",
            summary: "PoC auf GitHub vom 2024-12-17",
            url: "https://github.com/masa42/CVE-2024-38819-POC",
         },
         {
            category: "external",
            summary: "Atlassian Security Advisory CONFSERVER-98564 vom 2024-12-19",
            url: "https://jira.atlassian.com/browse/CONFSERVER-98564",
         },
         {
            category: "external",
            summary: "NetApp Security Advisory NTAP-20250110-0010 vom 2025-01-10",
            url: "https://security.netapp.com/advisory/ntap-20250110-0010/",
         },
      ],
      source_lang: "en-US",
      title: "VMware Tanzu Spring Framework: Mehrere Schwachstellen",
      tracking: {
         current_release_date: "2025-01-09T23:00:00.000+00:00",
         generator: {
            date: "2025-01-10T13:17:15.972+00:00",
            engine: {
               name: "BSI-WID",
               version: "1.3.10",
            },
         },
         id: "WID-SEC-W-2024-3237",
         initial_release_date: "2024-10-17T22:00:00.000+00:00",
         revision_history: [
            {
               date: "2024-10-17T22:00:00.000+00:00",
               number: "1",
               summary: "Initiale Fassung",
            },
            {
               date: "2024-11-13T23:00:00.000+00:00",
               number: "2",
               summary: "Neue Updates aufgenommen",
            },
            {
               date: "2024-12-02T23:00:00.000+00:00",
               number: "3",
               summary: "Neue Updates von Red Hat aufgenommen",
            },
            {
               date: "2024-12-17T23:00:00.000+00:00",
               number: "4",
               summary: "PoC aufgenommen",
            },
            {
               date: "2024-12-18T23:00:00.000+00:00",
               number: "5",
               summary: "Neue Updates von Atlassian aufgenommen",
            },
            {
               date: "2025-01-09T23:00:00.000+00:00",
               number: "6",
               summary: "Neue Updates von NetApp aufgenommen",
            },
         ],
         status: "final",
         version: "6",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_version_range",
                        name: "<8.5.18",
                        product: {
                           name: "Atlassian Confluence <8.5.18",
                           product_id: "T039943",
                        },
                     },
                     {
                        category: "product_version",
                        name: "8.5.18",
                        product: {
                           name: "Atlassian Confluence 8.5.18",
                           product_id: "T039943-fixed",
                           product_identification_helper: {
                              cpe: "cpe:/a:atlassian:confluence:8.5.18",
                           },
                        },
                     },
                     {
                        category: "product_version_range",
                        name: "<7.19.30",
                        product: {
                           name: "Atlassian Confluence <7.19.30",
                           product_id: "T039944",
                        },
                     },
                     {
                        category: "product_version",
                        name: "7.19.30",
                        product: {
                           name: "Atlassian Confluence 7.19.30",
                           product_id: "T039944-fixed",
                           product_identification_helper: {
                              cpe: "cpe:/a:atlassian:confluence:7.19.30",
                           },
                        },
                     },
                  ],
                  category: "product_name",
                  name: "Confluence",
               },
            ],
            category: "vendor",
            name: "Atlassian",
         },
         {
            branches: [
               {
                  category: "product_name",
                  name: "NetApp ActiveIQ Unified Manager",
                  product: {
                     name: "NetApp ActiveIQ Unified Manager",
                     product_id: "T016960",
                     product_identification_helper: {
                        cpe: "cpe:/a:netapp:active_iq_unified_manager:-",
                     },
                  },
               },
            ],
            category: "vendor",
            name: "NetApp",
         },
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_version_range",
                        name: "<12.0.1",
                        product: {
                           name: "RealObjects PDFreactor <12.0.1",
                           product_id: "T039150",
                        },
                     },
                     {
                        category: "product_version",
                        name: "12.0.1",
                        product: {
                           name: "RealObjects PDFreactor 12.0.1",
                           product_id: "T039150-fixed",
                           product_identification_helper: {
                              cpe: "cpe:/a:realobjects:pdfreactor:12.0.1",
                           },
                        },
                     },
                  ],
                  category: "product_name",
                  name: "PDFreactor",
               },
            ],
            category: "vendor",
            name: "RealObjects",
         },
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "Camel for Spring Boot 1",
                        product: {
                           name: "Red Hat Integration Camel for Spring Boot 1",
                           product_id: "T035240",
                           product_identification_helper: {
                              cpe: "cpe:/a:redhat:integration:camel_for_spring_boot_1",
                           },
                        },
                     },
                  ],
                  category: "product_name",
                  name: "Integration",
               },
            ],
            category: "vendor",
            name: "Red Hat",
         },
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_version_range",
                        name: "<5.3.41",
                        product: {
                           name: "VMware Tanzu Spring Framework <5.3.41",
                           product_id: "T038499",
                        },
                     },
                     {
                        category: "product_version",
                        name: "5.3.41",
                        product: {
                           name: "VMware Tanzu Spring Framework 5.3.41",
                           product_id: "T038499-fixed",
                           product_identification_helper: {
                              cpe: "cpe:/a:vmware_tanzu:spring_framework:5.3.41",
                           },
                        },
                     },
                     {
                        category: "product_version_range",
                        name: "<6.0.25",
                        product: {
                           name: "VMware Tanzu Spring Framework <6.0.25",
                           product_id: "T038500",
                        },
                     },
                     {
                        category: "product_version",
                        name: "6.0.25",
                        product: {
                           name: "VMware Tanzu Spring Framework 6.0.25",
                           product_id: "T038500-fixed",
                           product_identification_helper: {
                              cpe: "cpe:/a:vmware_tanzu:spring_framework:6.0.25",
                           },
                        },
                     },
                     {
                        category: "product_version_range",
                        name: "<6.1.14",
                        product: {
                           name: "VMware Tanzu Spring Framework <6.1.14",
                           product_id: "T038501",
                        },
                     },
                     {
                        category: "product_version",
                        name: "6.1.14",
                        product: {
                           name: "VMware Tanzu Spring Framework 6.1.14",
                           product_id: "T038501-fixed",
                           product_identification_helper: {
                              cpe: "cpe:/a:vmware_tanzu:spring_framework:6.1.14",
                           },
                        },
                     },
                  ],
                  category: "product_name",
                  name: "Spring Framework",
               },
            ],
            category: "vendor",
            name: "VMware Tanzu",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2024-38819",
         notes: [
            {
               category: "description",
               text: "Es existiert eine Schwachstelle in VMware Tanzu Spring Framework. Anwendungen, die statische Ressourcen über die funktionalen Web-Frameworks WebMvc.fn oder WebFlux.fn bereitstellen, sind anfällig für Path-Traversal-Angriffe.Durch die Erstellung einer bösartigen HTTP-Anfrage kann ein entfernter, anonymer Angreifer diese Schwachstelle ausnutzen, um vertrauliche Informationen preiszugeben.",
            },
         ],
         product_status: {
            known_affected: [
               "T039150",
               "T038500",
               "T038501",
               "T039944",
               "T035240",
               "T039943",
               "T016960",
               "T038499",
            ],
         },
         release_date: "2024-10-17T22:00:00.000+00:00",
         title: "CVE-2024-38819",
      },
      {
         cve: "CVE-2024-38820",
         notes: [
            {
               category: "description",
               text: "Es existiert eine Schwachstelle in VMware Tanzu Spring Framework. Ein unvollständiger Fix für die CVE-2022-22968 schützt bestimmte Felder nicht vor unautorisiertem Zugriff. Ein entfernter, authentisierter Angreifer kann diese Schwachstelle ausnutzen, um Sicherheitsvorkehrungen zu umgehen.",
            },
         ],
         product_status: {
            known_affected: [
               "T039150",
               "T038500",
               "T038501",
               "T039944",
               "T035240",
               "T039943",
               "T016960",
               "T038499",
            ],
         },
         release_date: "2024-10-17T22:00:00.000+00:00",
         title: "CVE-2024-38820",
      },
   ],
}

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

Vulnerability from cvelistv5

Vulnerability from csaf_redhat

Vulnerability from csaf_redhat

Vulnerability from csaf_redhat

Vulnerability from csaf_ncscnl

Vulnerability from csaf_ncscnl

Vulnerability from csaf_ncscnl

Vulnerability from csaf_ncscnl

Vulnerability from csaf_ncscnl

Vulnerability from csaf_ncscnl

Vulnerability from fkie_nvd

Vulnerability from github

Vulnerability from csaf_certbund

Tags

Sightings

Nomenclature