Vulnerability-Lookup

WID-SEC-W-2022-0302

Vulnerability from csaf_certbund - Published: 2022-06-14 22:00 - Updated: 2023-04-03 22:00

Summary

Xerox FreeFlow Print Server: Mehrere Schwachstellen ermöglichen Ausführen von beliebigem Programmcode mit Administratorrechten

Severity

Hoch

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: FreeFlow-Druckserver ist eine Druckserveranwendung für Xerox-Produktionsdrucker, die Flexibilität, umfangreiche Workflow-Optionen und eine Farbverwaltung bietet.

Angriff: Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in Xerox FreeFlow Print Server ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.

Betroffene Betriebssysteme: - Sonstiges

CVE-2016-2124

In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2019-14822

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2019-19906

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2020-15250

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2020-17049

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2020-25717

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2020-25718

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2020-25719

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2020-25721

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2020-25722

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2020-9484

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-21707

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-22926

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-23192

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-27815

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-30846

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-30848

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-30849

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-30851

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-30858

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-33430

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-34141

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-35604

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-35624

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-3572

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-3711

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-3733

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-3737

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-3738

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-3770

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-3778

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-3796

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-38115

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-3872

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-3875

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-3903

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-39212

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-39272

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-3928

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-3968

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-3973

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-3974

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-3984

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-39920

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-39921

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-39922

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-39923

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-39924

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-39925

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-39926

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-39928

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-39929

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-4008

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-4009

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-4010

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-4011

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-40145

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-4019

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-4034

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-4069

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-40812

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-41133

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-4140

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-41495

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-41496

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-4160

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-4181

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-41817

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-41819

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-4182

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-4183

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-4184

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-4185

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-42717

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-42762

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-43331

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-43332

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-43395

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-43527

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-43528

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-43536

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-43537

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-43538

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-43539

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-43541

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-43542

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-43543

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-43545

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-43546

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-43566

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-43818

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-44142

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-44224

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-44227

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-44420

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-44531

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-44532

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-44533

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-44540

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-44541

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-44542

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-44543

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-44790

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-45078

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-45115

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-45116

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-45452

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-45960

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2021-46143

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-0336

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-0391

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-0566

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-0581

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-0582

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-0583

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-0585

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-0586

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-0778

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21248

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21263

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21271

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21282

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21291

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21293

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21294

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21296

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21298

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21299

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21305

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21340

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21341

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21349

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21360

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21365

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21375

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21384

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21416

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21446

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21461

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21463

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21493

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21494

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21712

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21716

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-21824

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22719

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22720

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22721

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22737

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22738

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22739

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22740

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22741

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22742

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22743

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22744

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22745

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22746

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22747

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22748

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22751

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22753

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22754

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22756

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22759

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22760

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22761

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22763

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22764

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22815

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22816

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22817

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22818

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22822

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22823

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22824

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22825

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22826

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-22827

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-23181

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-23833

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-23852

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-23943

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-23990

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-24407

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-25235

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-25236

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-25313

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-25314

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-25315

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-26381

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-26383

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-26384

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-26386

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-26387

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-26485

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

CVE-2022-26486

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	—
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	—

References

6 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://security.business.xerox.com/wp-content/up…	external
https://security.business.xerox.com/wp-content/up…	external
https://securitydocs.business.xerox.com/wp-conten…	external
https://securitydocs.business.xerox.com/wp-conten…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "FreeFlow-Druckserver ist eine Druckserveranwendung f\u00fcr Xerox-Produktionsdrucker, die Flexibilit\u00e4t, umfangreiche Workflow-Optionen und eine Farbverwaltung bietet.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in Xerox FreeFlow Print Server ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Sonstiges",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2022-0302 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-0302.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2022-0302 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0302"
      },
      {
        "category": "external",
        "summary": "XEROX Security Advisory XRX23-005 vom 2023-04-04",
        "url": "https://security.business.xerox.com/wp-content/uploads/2023/04/Xerox-Security-Bulletin-XRX23-005-Xerox%25C2%25AE-FreeFlow%25C2%25AE-Print-Server-v9.pdf"
      },
      {
        "category": "external",
        "summary": "Xerox Security Bulletin XRX22-015",
        "url": "https://security.business.xerox.com/wp-content/uploads/2022/06/Xerox-Security-Bulletin-XRX22-015-FreeFlow-Print-Server-v7.pdf"
      },
      {
        "category": "external",
        "summary": "Xerox Security Bulletin XRX22-013 vom 2022-06-14",
        "url": "https://securitydocs.business.xerox.com/wp-content/uploads/2022/06/Xerox-Security-Bulletin-XRX22-013-FreeFlow-Print-Server-v9.pdf"
      },
      {
        "category": "external",
        "summary": "Xerox Security Bulletin XRX22-012 vom 2022-06-14",
        "url": "https://securitydocs.business.xerox.com/wp-content/uploads/2022/06/Xerox-Security-Bulletin-XRX22-012-FreeFlow-Printer.pdf"
      }
    ],
    "source_lang": "en-US",
    "title": "Xerox FreeFlow Print Server: Mehrere Schwachstellen erm\u00f6glichen Ausf\u00fchren von beliebigem Programmcode mit Administratorrechten",
    "tracking": {
      "current_release_date": "2023-04-03T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T17:27:55.136+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2022-0302",
      "initial_release_date": "2022-06-14T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2022-06-14T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2022-06-21T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von XEROX aufgenommen"
        },
        {
          "date": "2023-04-03T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von XEROX aufgenommen"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Xerox FreeFlow Print Server 7",
                "product": {
                  "name": "Xerox FreeFlow Print Server 7",
                  "product_id": "T000872",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:xerox:freeflow_print_server:7"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Xerox FreeFlow Print Server 9",
                "product": {
                  "name": "Xerox FreeFlow Print Server 9",
                  "product_id": "T002977",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:xerox:freeflow_print_server:9"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "FreeFlow Print Server"
          }
        ],
        "category": "vendor",
        "name": "Xerox"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2016-2124",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2016-2124"
    },
    {
      "cve": "CVE-2019-14822",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2019-14822"
    },
    {
      "cve": "CVE-2019-19906",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2019-19906"
    },
    {
      "cve": "CVE-2020-15250",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2020-15250"
    },
    {
      "cve": "CVE-2020-17049",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2020-17049"
    },
    {
      "cve": "CVE-2020-25717",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2020-25717"
    },
    {
      "cve": "CVE-2020-25718",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2020-25718"
    },
    {
      "cve": "CVE-2020-25719",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2020-25719"
    },
    {
      "cve": "CVE-2020-25721",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2020-25721"
    },
    {
      "cve": "CVE-2020-25722",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2020-25722"
    },
    {
      "cve": "CVE-2020-9484",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2020-9484"
    },
    {
      "cve": "CVE-2021-21707",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-21707"
    },
    {
      "cve": "CVE-2021-22926",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-22926"
    },
    {
      "cve": "CVE-2021-23192",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-23192"
    },
    {
      "cve": "CVE-2021-27815",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-27815"
    },
    {
      "cve": "CVE-2021-30846",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-30846"
    },
    {
      "cve": "CVE-2021-30848",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-30848"
    },
    {
      "cve": "CVE-2021-30849",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-30849"
    },
    {
      "cve": "CVE-2021-30851",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-30851"
    },
    {
      "cve": "CVE-2021-30858",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-30858"
    },
    {
      "cve": "CVE-2021-33430",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-33430"
    },
    {
      "cve": "CVE-2021-34141",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-34141"
    },
    {
      "cve": "CVE-2021-35604",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-35604"
    },
    {
      "cve": "CVE-2021-35624",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-35624"
    },
    {
      "cve": "CVE-2021-3572",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-3572"
    },
    {
      "cve": "CVE-2021-3711",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-3711"
    },
    {
      "cve": "CVE-2021-3733",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-3733"
    },
    {
      "cve": "CVE-2021-3737",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-3737"
    },
    {
      "cve": "CVE-2021-3738",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-3738"
    },
    {
      "cve": "CVE-2021-3770",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-3770"
    },
    {
      "cve": "CVE-2021-3778",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-3778"
    },
    {
      "cve": "CVE-2021-3796",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-3796"
    },
    {
      "cve": "CVE-2021-38115",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-38115"
    },
    {
      "cve": "CVE-2021-3872",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-3872"
    },
    {
      "cve": "CVE-2021-3875",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-3875"
    },
    {
      "cve": "CVE-2021-3903",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-3903"
    },
    {
      "cve": "CVE-2021-39212",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-39212"
    },
    {
      "cve": "CVE-2021-39272",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-39272"
    },
    {
      "cve": "CVE-2021-3928",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-3928"
    },
    {
      "cve": "CVE-2021-3968",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-3968"
    },
    {
      "cve": "CVE-2021-3973",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-3973"
    },
    {
      "cve": "CVE-2021-3974",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-3974"
    },
    {
      "cve": "CVE-2021-3984",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-3984"
    },
    {
      "cve": "CVE-2021-39920",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-39920"
    },
    {
      "cve": "CVE-2021-39921",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-39921"
    },
    {
      "cve": "CVE-2021-39922",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-39922"
    },
    {
      "cve": "CVE-2021-39923",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-39923"
    },
    {
      "cve": "CVE-2021-39924",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-39924"
    },
    {
      "cve": "CVE-2021-39925",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-39925"
    },
    {
      "cve": "CVE-2021-39926",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-39926"
    },
    {
      "cve": "CVE-2021-39928",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-39928"
    },
    {
      "cve": "CVE-2021-39929",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-39929"
    },
    {
      "cve": "CVE-2021-4008",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-4008"
    },
    {
      "cve": "CVE-2021-4009",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-4009"
    },
    {
      "cve": "CVE-2021-4010",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-4010"
    },
    {
      "cve": "CVE-2021-4011",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-4011"
    },
    {
      "cve": "CVE-2021-40145",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-40145"
    },
    {
      "cve": "CVE-2021-4019",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-4019"
    },
    {
      "cve": "CVE-2021-4034",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-4034"
    },
    {
      "cve": "CVE-2021-4069",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-4069"
    },
    {
      "cve": "CVE-2021-40812",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-40812"
    },
    {
      "cve": "CVE-2021-41133",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-41133"
    },
    {
      "cve": "CVE-2021-4140",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-4140"
    },
    {
      "cve": "CVE-2021-41495",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-41495"
    },
    {
      "cve": "CVE-2021-41496",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-41496"
    },
    {
      "cve": "CVE-2021-4160",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-4160"
    },
    {
      "cve": "CVE-2021-4181",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-4181"
    },
    {
      "cve": "CVE-2021-41817",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-41817"
    },
    {
      "cve": "CVE-2021-41819",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-41819"
    },
    {
      "cve": "CVE-2021-4182",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-4182"
    },
    {
      "cve": "CVE-2021-4183",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-4183"
    },
    {
      "cve": "CVE-2021-4184",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-4184"
    },
    {
      "cve": "CVE-2021-4185",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-4185"
    },
    {
      "cve": "CVE-2021-42717",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-42717"
    },
    {
      "cve": "CVE-2021-42762",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-42762"
    },
    {
      "cve": "CVE-2021-43331",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-43331"
    },
    {
      "cve": "CVE-2021-43332",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-43332"
    },
    {
      "cve": "CVE-2021-43395",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-43395"
    },
    {
      "cve": "CVE-2021-43527",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-43527"
    },
    {
      "cve": "CVE-2021-43528",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-43528"
    },
    {
      "cve": "CVE-2021-43536",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-43536"
    },
    {
      "cve": "CVE-2021-43537",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-43537"
    },
    {
      "cve": "CVE-2021-43538",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-43538"
    },
    {
      "cve": "CVE-2021-43539",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-43539"
    },
    {
      "cve": "CVE-2021-43541",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-43541"
    },
    {
      "cve": "CVE-2021-43542",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-43542"
    },
    {
      "cve": "CVE-2021-43543",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-43543"
    },
    {
      "cve": "CVE-2021-43545",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-43545"
    },
    {
      "cve": "CVE-2021-43546",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-43546"
    },
    {
      "cve": "CVE-2021-43566",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-43566"
    },
    {
      "cve": "CVE-2021-43818",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-43818"
    },
    {
      "cve": "CVE-2021-44142",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-44142"
    },
    {
      "cve": "CVE-2021-44224",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-44224"
    },
    {
      "cve": "CVE-2021-44227",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-44227"
    },
    {
      "cve": "CVE-2021-44420",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-44420"
    },
    {
      "cve": "CVE-2021-44531",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-44531"
    },
    {
      "cve": "CVE-2021-44532",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-44532"
    },
    {
      "cve": "CVE-2021-44533",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-44533"
    },
    {
      "cve": "CVE-2021-44540",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-44540"
    },
    {
      "cve": "CVE-2021-44541",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-44541"
    },
    {
      "cve": "CVE-2021-44542",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-44542"
    },
    {
      "cve": "CVE-2021-44543",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-44543"
    },
    {
      "cve": "CVE-2021-44790",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-44790"
    },
    {
      "cve": "CVE-2021-45078",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-45078"
    },
    {
      "cve": "CVE-2021-45115",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-45115"
    },
    {
      "cve": "CVE-2021-45116",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-45116"
    },
    {
      "cve": "CVE-2021-45452",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-45452"
    },
    {
      "cve": "CVE-2021-45960",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-45960"
    },
    {
      "cve": "CVE-2021-46143",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2021-46143"
    },
    {
      "cve": "CVE-2022-0336",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-0336"
    },
    {
      "cve": "CVE-2022-0391",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-0391"
    },
    {
      "cve": "CVE-2022-0566",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-0566"
    },
    {
      "cve": "CVE-2022-0581",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-0581"
    },
    {
      "cve": "CVE-2022-0582",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-0582"
    },
    {
      "cve": "CVE-2022-0583",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-0583"
    },
    {
      "cve": "CVE-2022-0585",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-0585"
    },
    {
      "cve": "CVE-2022-0586",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-0586"
    },
    {
      "cve": "CVE-2022-0778",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-0778"
    },
    {
      "cve": "CVE-2022-21248",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-21248"
    },
    {
      "cve": "CVE-2022-21263",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-21263"
    },
    {
      "cve": "CVE-2022-21271",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-21271"
    },
    {
      "cve": "CVE-2022-21282",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-21282"
    },
    {
      "cve": "CVE-2022-21291",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-21291"
    },
    {
      "cve": "CVE-2022-21293",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-21293"
    },
    {
      "cve": "CVE-2022-21294",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-21294"
    },
    {
      "cve": "CVE-2022-21296",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-21296"
    },
    {
      "cve": "CVE-2022-21298",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-21298"
    },
    {
      "cve": "CVE-2022-21299",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-21299"
    },
    {
      "cve": "CVE-2022-21305",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-21305"
    },
    {
      "cve": "CVE-2022-21340",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-21340"
    },
    {
      "cve": "CVE-2022-21341",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-21341"
    },
    {
      "cve": "CVE-2022-21349",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-21349"
    },
    {
      "cve": "CVE-2022-21360",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-21360"
    },
    {
      "cve": "CVE-2022-21365",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-21365"
    },
    {
      "cve": "CVE-2022-21375",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-21375"
    },
    {
      "cve": "CVE-2022-21384",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-21384"
    },
    {
      "cve": "CVE-2022-21416",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-21416"
    },
    {
      "cve": "CVE-2022-21446",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-21446"
    },
    {
      "cve": "CVE-2022-21461",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-21461"
    },
    {
      "cve": "CVE-2022-21463",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-21463"
    },
    {
      "cve": "CVE-2022-21493",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-21493"
    },
    {
      "cve": "CVE-2022-21494",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-21494"
    },
    {
      "cve": "CVE-2022-21712",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-21712"
    },
    {
      "cve": "CVE-2022-21716",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-21716"
    },
    {
      "cve": "CVE-2022-21824",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-21824"
    },
    {
      "cve": "CVE-2022-22719",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22719"
    },
    {
      "cve": "CVE-2022-22720",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22720"
    },
    {
      "cve": "CVE-2022-22721",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22721"
    },
    {
      "cve": "CVE-2022-22737",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22737"
    },
    {
      "cve": "CVE-2022-22738",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22738"
    },
    {
      "cve": "CVE-2022-22739",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22739"
    },
    {
      "cve": "CVE-2022-22740",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22740"
    },
    {
      "cve": "CVE-2022-22741",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22741"
    },
    {
      "cve": "CVE-2022-22742",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22742"
    },
    {
      "cve": "CVE-2022-22743",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22743"
    },
    {
      "cve": "CVE-2022-22744",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22744"
    },
    {
      "cve": "CVE-2022-22745",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22745"
    },
    {
      "cve": "CVE-2022-22746",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22746"
    },
    {
      "cve": "CVE-2022-22747",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22747"
    },
    {
      "cve": "CVE-2022-22748",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22748"
    },
    {
      "cve": "CVE-2022-22751",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22751"
    },
    {
      "cve": "CVE-2022-22753",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22753"
    },
    {
      "cve": "CVE-2022-22754",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22754"
    },
    {
      "cve": "CVE-2022-22756",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22756"
    },
    {
      "cve": "CVE-2022-22759",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22759"
    },
    {
      "cve": "CVE-2022-22760",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22760"
    },
    {
      "cve": "CVE-2022-22761",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22761"
    },
    {
      "cve": "CVE-2022-22763",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22763"
    },
    {
      "cve": "CVE-2022-22764",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22764"
    },
    {
      "cve": "CVE-2022-22815",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22815"
    },
    {
      "cve": "CVE-2022-22816",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22816"
    },
    {
      "cve": "CVE-2022-22817",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22817"
    },
    {
      "cve": "CVE-2022-22818",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22818"
    },
    {
      "cve": "CVE-2022-22822",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22822"
    },
    {
      "cve": "CVE-2022-22823",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22823"
    },
    {
      "cve": "CVE-2022-22824",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22824"
    },
    {
      "cve": "CVE-2022-22825",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22825"
    },
    {
      "cve": "CVE-2022-22826",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22826"
    },
    {
      "cve": "CVE-2022-22827",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-22827"
    },
    {
      "cve": "CVE-2022-23181",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-23181"
    },
    {
      "cve": "CVE-2022-23833",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-23833"
    },
    {
      "cve": "CVE-2022-23852",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-23852"
    },
    {
      "cve": "CVE-2022-23943",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-23943"
    },
    {
      "cve": "CVE-2022-23990",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-23990"
    },
    {
      "cve": "CVE-2022-24407",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-24407"
    },
    {
      "cve": "CVE-2022-25235",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-25235"
    },
    {
      "cve": "CVE-2022-25236",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-25236"
    },
    {
      "cve": "CVE-2022-25313",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-25313"
    },
    {
      "cve": "CVE-2022-25314",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-25314"
    },
    {
      "cve": "CVE-2022-25315",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-25315"
    },
    {
      "cve": "CVE-2022-26381",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-26381"
    },
    {
      "cve": "CVE-2022-26383",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-26383"
    },
    {
      "cve": "CVE-2022-26384",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-26384"
    },
    {
      "cve": "CVE-2022-26386",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-26386"
    },
    {
      "cve": "CVE-2022-26387",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-26387"
    },
    {
      "cve": "CVE-2022-26485",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-26485"
    },
    {
      "cve": "CVE-2022-26486",
      "notes": [
        {
          "category": "description",
          "text": "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T000872",
          "T002977"
        ]
      },
      "release_date": "2022-06-14T22:00:00.000+00:00",
      "title": "CVE-2022-26486"
    }
  ]
}

CVE-2016-2124 (GCVE-0-2016-2124)

Vulnerability from cvelistv5 – Published: 2022-02-18 00:00 – Updated: 2024-08-05 23:17

Summary

A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the wire even if Kerberos authentication was required.

Severity

No CVSS data available.

CWE

CWE-287

Assigner

redhat

References

4 references

URL	Tags
https://bugzilla.redhat.com/show_bug.cgi?id=2019660
https://www.samba.org/samba/security/CVE-2016-2124.html
https://lists.debian.org/debian-lts-announce/2023…	mailing-list
https://security.gentoo.org/glsa/202309-06	vendor-advisory

Impacted products

1 product

Vendor	Product	Version
n/a	samba	Affected: samba 4.15.2, samba 4.14.10, samba 4.13.14

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T23:17:50.581Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2019660"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.samba.org/samba/security/CVE-2016-2124.html"
          },
          {
            "name": "[debian-lts-announce] 20230914 [SECURITY] [DLA 3563-1] samba security update",
            "tags": [
              "mailing-list",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2023/09/msg00013.html"
          },
          {
            "name": "GLSA-202309-06",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202309-06"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "samba",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "samba 4.15.2, samba 4.14.10, samba 4.13.14"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the wire even if Kerberos authentication was required."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-287",
              "description": "CWE-287",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-09-17T08:06:48.847Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2019660"
        },
        {
          "url": "https://www.samba.org/samba/security/CVE-2016-2124.html"
        },
        {
          "name": "[debian-lts-announce] 20230914 [SECURITY] [DLA 3563-1] samba security update",
          "tags": [
            "mailing-list"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2023/09/msg00013.html"
        },
        {
          "name": "GLSA-202309-06",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://security.gentoo.org/glsa/202309-06"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2016-2124",
    "datePublished": "2022-02-18T00:00:00.000Z",
    "dateReserved": "2016-01-29T00:00:00.000Z",
    "dateUpdated": "2024-08-05T23:17:50.581Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2019-14822 (GCVE-0-2019-14822)

Vulnerability from cvelistv5 – Published: 2019-11-25 11:01 – Updated: 2024-08-05 00:26

Summary

A flaw was discovered in ibus in versions before 1.5.22 that allows any unprivileged user to monitor and send method calls to the ibus bus of another user due to a misconfiguration in the DBus server setup. A local attacker may use this flaw to intercept all keystrokes of a victim user who is using the graphical interface, change the input method engine, or modify other input related configurations of the victim user.

Severity

No CVSS data available.

CWE

CWE-862

Assigner

redhat

References

4 references

URL	Tags
https://bugzilla.redhat.com/show_bug.cgi?id=1717958	x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2…	x_refsource_MISC
https://usn.ubuntu.com/4134-3/	x_refsource_MISC
https://www.oracle.com/security-alerts/cpuapr2022.html	x_refsource_MISC

Impacted products

1 product

Vendor	Product	Version
n/a	ibus	Affected: ibus versions before 1.5.22

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T00:26:39.079Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1717958"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14822"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/4134-3/"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "ibus",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "ibus versions before 1.5.22"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A flaw was discovered in ibus in versions before 1.5.22 that allows any unprivileged user to monitor and send method calls to the ibus bus of another user due to a misconfiguration in the DBus server setup. A local attacker may use this flaw to intercept all keystrokes of a victim user who is using the graphical interface, change the input method engine, or modify other input related configurations of the victim user."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-862",
              "description": "CWE-862",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-04-19T23:20:12.000Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1717958"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14822"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://usn.ubuntu.com/4134-3/"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2019-14822",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "ibus",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "ibus versions before 1.5.22"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A flaw was discovered in ibus in versions before 1.5.22 that allows any unprivileged user to monitor and send method calls to the ibus bus of another user due to a misconfiguration in the DBus server setup. A local attacker may use this flaw to intercept all keystrokes of a victim user who is using the graphical interface, change the input method engine, or modify other input related configurations of the victim user."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-862"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1717958",
              "refsource": "MISC",
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1717958"
            },
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14822",
              "refsource": "MISC",
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14822"
            },
            {
              "name": "https://usn.ubuntu.com/4134-3/",
              "refsource": "MISC",
              "url": "https://usn.ubuntu.com/4134-3/"
            },
            {
              "name": "https://www.oracle.com/security-alerts/cpuapr2022.html",
              "refsource": "MISC",
              "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2019-14822",
    "datePublished": "2019-11-25T11:01:18.000Z",
    "dateReserved": "2019-08-10T00:00:00.000Z",
    "dateUpdated": "2024-08-05T00:26:39.079Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2019-19906 (GCVE-0-2019-19906)

Vulnerability from cvelistv5 – Published: 2019-12-19 17:39 – Updated: 2024-08-05 02:32

Summary

cyrus-sasl (aka Cyrus SASL) 2.1.27 has an out-of-bounds write leading to unauthenticated remote denial-of-service in OpenLDAP via a malformed LDAP packet. The OpenLDAP crash is ultimately caused by an off-by-one error in _sasl_add_string in common.c in cyrus-sasl.

Severity

No CVSS data available.

CWE

Assigner

mitre

References

15 references

URL	Tags
https://github.com/cyrusimap/cyrus-sasl/issues/587	x_refsource_MISC
https://www.openldap.org/its/index.cgi/Incoming?id=9123	x_refsource_MISC
https://lists.debian.org/debian-lts-announce/2019…	mailing-listx_refsource_MLIST
https://www.debian.org/security/2019/dsa-4591	vendor-advisoryx_refsource_DEBIAN
https://seclists.org/bugtraq/2019/Dec/42	mailing-listx_refsource_BUGTRAQ
https://usn.ubuntu.com/4256-1/	vendor-advisoryx_refsource_UBUNTU
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisoryx_refsource_FEDORA
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisoryx_refsource_FEDORA
https://support.apple.com/kb/HT211288	x_refsource_CONFIRM
https://support.apple.com/kb/HT211289	x_refsource_CONFIRM
http://seclists.org/fulldisclosure/2020/Jul/24	mailing-listx_refsource_FULLDISC
http://seclists.org/fulldisclosure/2020/Jul/23	mailing-listx_refsource_FULLDISC
https://lists.apache.org/thread.html/rf4c02775860…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r58af02e294b…	mailing-listx_refsource_MLIST
http://www.openwall.com/lists/oss-security/2022/02/23/4	mailing-listx_refsource_MLIST

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T02:32:09.289Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/cyrusimap/cyrus-sasl/issues/587"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.openldap.org/its/index.cgi/Incoming?id=9123"
          },
          {
            "name": "[debian-lts-announce] 20191220 [SECURITY] [DLA 2044-1] cyrus-sasl2 security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2019/12/msg00027.html"
          },
          {
            "name": "DSA-4591",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2019/dsa-4591"
          },
          {
            "name": "20191225 [SECURITY] [DSA 4591-1] cyrus-sasl2 security update",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "https://seclists.org/bugtraq/2019/Dec/42"
          },
          {
            "name": "USN-4256-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/4256-1/"
          },
          {
            "name": "FEDORA-2020-51d591d035",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MW6GZCLECGL2PBNHVNPJIX4RPVRVFR7R/"
          },
          {
            "name": "FEDORA-2020-bf829f9a84",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OB4GSVOJ6ESHQNT5GSV63OX5D4KPSTGT/"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT211288"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT211289"
          },
          {
            "name": "20200717 APPLE-SA-2020-07-15-2 macOS Catalina 10.15.6, Security Update 2020-004 Mojave, Security Update 2020-004 High Sierra",
            "tags": [
              "mailing-list",
              "x_refsource_FULLDISC",
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2020/Jul/24"
          },
          {
            "name": "20200717 APPLE-SA-2020-07-15-1 iOS 13.6 and iPadOS 13.6",
            "tags": [
              "mailing-list",
              "x_refsource_FULLDISC",
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2020/Jul/23"
          },
          {
            "name": "[bookkeeper-issues] 20210628 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E"
          },
          {
            "name": "[bookkeeper-issues] 20210629 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E"
          },
          {
            "name": "[oss-security] 20220223 Fwd: Cyrus-SASL 2.1.28 released [fixes CVE-2022-24407 \u0026 CVE-2019-19906]",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2022/02/23/4"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "cyrus-sasl (aka Cyrus SASL) 2.1.27 has an out-of-bounds write leading to unauthenticated remote denial-of-service in OpenLDAP via a malformed LDAP packet. The OpenLDAP crash is ultimately caused by an off-by-one error in _sasl_add_string in common.c in cyrus-sasl."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-02-23T21:06:17.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/cyrusimap/cyrus-sasl/issues/587"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.openldap.org/its/index.cgi/Incoming?id=9123"
        },
        {
          "name": "[debian-lts-announce] 20191220 [SECURITY] [DLA 2044-1] cyrus-sasl2 security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2019/12/msg00027.html"
        },
        {
          "name": "DSA-4591",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "https://www.debian.org/security/2019/dsa-4591"
        },
        {
          "name": "20191225 [SECURITY] [DSA 4591-1] cyrus-sasl2 security update",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "https://seclists.org/bugtraq/2019/Dec/42"
        },
        {
          "name": "USN-4256-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/4256-1/"
        },
        {
          "name": "FEDORA-2020-51d591d035",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MW6GZCLECGL2PBNHVNPJIX4RPVRVFR7R/"
        },
        {
          "name": "FEDORA-2020-bf829f9a84",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OB4GSVOJ6ESHQNT5GSV63OX5D4KPSTGT/"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.apple.com/kb/HT211288"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.apple.com/kb/HT211289"
        },
        {
          "name": "20200717 APPLE-SA-2020-07-15-2 macOS Catalina 10.15.6, Security Update 2020-004 Mojave, Security Update 2020-004 High Sierra",
          "tags": [
            "mailing-list",
            "x_refsource_FULLDISC"
          ],
          "url": "http://seclists.org/fulldisclosure/2020/Jul/24"
        },
        {
          "name": "20200717 APPLE-SA-2020-07-15-1 iOS 13.6 and iPadOS 13.6",
          "tags": [
            "mailing-list",
            "x_refsource_FULLDISC"
          ],
          "url": "http://seclists.org/fulldisclosure/2020/Jul/23"
        },
        {
          "name": "[bookkeeper-issues] 20210628 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E"
        },
        {
          "name": "[bookkeeper-issues] 20210629 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E"
        },
        {
          "name": "[oss-security] 20220223 Fwd: Cyrus-SASL 2.1.28 released [fixes CVE-2022-24407 \u0026 CVE-2019-19906]",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2022/02/23/4"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2019-19906",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "cyrus-sasl (aka Cyrus SASL) 2.1.27 has an out-of-bounds write leading to unauthenticated remote denial-of-service in OpenLDAP via a malformed LDAP packet. The OpenLDAP crash is ultimately caused by an off-by-one error in _sasl_add_string in common.c in cyrus-sasl."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://github.com/cyrusimap/cyrus-sasl/issues/587",
              "refsource": "MISC",
              "url": "https://github.com/cyrusimap/cyrus-sasl/issues/587"
            },
            {
              "name": "https://www.openldap.org/its/index.cgi/Incoming?id=9123",
              "refsource": "MISC",
              "url": "https://www.openldap.org/its/index.cgi/Incoming?id=9123"
            },
            {
              "name": "[debian-lts-announce] 20191220 [SECURITY] [DLA 2044-1] cyrus-sasl2 security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2019/12/msg00027.html"
            },
            {
              "name": "DSA-4591",
              "refsource": "DEBIAN",
              "url": "https://www.debian.org/security/2019/dsa-4591"
            },
            {
              "name": "20191225 [SECURITY] [DSA 4591-1] cyrus-sasl2 security update",
              "refsource": "BUGTRAQ",
              "url": "https://seclists.org/bugtraq/2019/Dec/42"
            },
            {
              "name": "USN-4256-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/4256-1/"
            },
            {
              "name": "FEDORA-2020-51d591d035",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MW6GZCLECGL2PBNHVNPJIX4RPVRVFR7R/"
            },
            {
              "name": "FEDORA-2020-bf829f9a84",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OB4GSVOJ6ESHQNT5GSV63OX5D4KPSTGT/"
            },
            {
              "name": "https://support.apple.com/kb/HT211288",
              "refsource": "CONFIRM",
              "url": "https://support.apple.com/kb/HT211288"
            },
            {
              "name": "https://support.apple.com/kb/HT211289",
              "refsource": "CONFIRM",
              "url": "https://support.apple.com/kb/HT211289"
            },
            {
              "name": "20200717 APPLE-SA-2020-07-15-2 macOS Catalina 10.15.6, Security Update 2020-004 Mojave, Security Update 2020-004 High Sierra",
              "refsource": "FULLDISC",
              "url": "http://seclists.org/fulldisclosure/2020/Jul/24"
            },
            {
              "name": "20200717 APPLE-SA-2020-07-15-1 iOS 13.6 and iPadOS 13.6",
              "refsource": "FULLDISC",
              "url": "http://seclists.org/fulldisclosure/2020/Jul/23"
            },
            {
              "name": "[bookkeeper-issues] 20210628 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4@%3Cissues.bookkeeper.apache.org%3E"
            },
            {
              "name": "[bookkeeper-issues] 20210629 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b@%3Cissues.bookkeeper.apache.org%3E"
            },
            {
              "name": "[oss-security] 20220223 Fwd: Cyrus-SASL 2.1.28 released [fixes CVE-2022-24407 \u0026 CVE-2019-19906]",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2022/02/23/4"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2019-19906",
    "datePublished": "2019-12-19T17:39:13.000Z",
    "dateReserved": "2019-12-19T00:00:00.000Z",
    "dateUpdated": "2024-08-05T02:32:09.289Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2020-15250 (GCVE-0-2020-15250)

Vulnerability from cvelistv5 – Published: 2020-10-12 17:55 – Updated: 2024-08-04 13:08

Title

Information disclosure in JUnit4

Summary

In JUnit4 from version 4.7 and before 4.13.1, the test rule TemporaryFolder contains a local information disclosure vulnerability. On Unix like systems, the system's temporary directory is shared between all users on that system. Because of this, when files and directories are written into this directory they are, by default, readable by other users on that same system. This vulnerability does not allow other users to overwrite the contents of these directories or files. This is purely an information disclosure vulnerability. This vulnerability impacts you if the JUnit tests write sensitive information, like API keys or passwords, into the temporary folder, and the JUnit tests execute in an environment where the OS has other untrusted users. Because certain JDK file system APIs were only added in JDK 1.7, this this fix is dependent upon the version of the JDK you are using. For Java 1.7 and higher users: this vulnerability is fixed in 4.13.1. For Java 1.6 and lower users: no patch is available, you must use the workaround below. If you are unable to patch, or are stuck running on Java 1.6, specifying the `java.io.tmpdir` system environment variable to a directory that is exclusively owned by the executing user will fix this vulnerability. For more information, including an example of vulnerable code, see the referenced GitHub Security Advisory.

Severity

4.4 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N

CWE

CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

Assigner

GitHub_M

References

39 references

URL	Tags
https://github.com/junit-team/junit4/security/adv…	x_refsource_CONFIRM
https://github.com/junit-team/junit4/commit/61015…	x_refsource_MISC
https://github.com/junit-team/junit4/blob/7852b90…	x_refsource_MISC
https://junit.org/junit4/javadoc/4.13/org/junit/r…	x_refsource_MISC
https://lists.apache.org/thread.html/r5f884150757…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/rbaec90e699b…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r71787702848…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/rb2771949c67…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/rde385b8b53e…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/rc49cf1547ef…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r500517c2320…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r95f8ef60c4b…	mailing-listx_refsource_MLIST
https://github.com/junit-team/junit4/issues/1676	x_refsource_MISC
https://lists.debian.org/debian-lts-announce/2020…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/ra1bdb9efae8…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/rb33212dab7b…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/raebf13f53cd…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r01110833b63…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/rde8e70b95c9…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/rdef7d1380c8…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/rdbdd30510a7…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/rea812d8612f…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/rf797d119cc3…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/reb700e60b96…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/rf2ec93f4ca9…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r30f502d2f79…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r925eaae7dd8…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r29d703d1986…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r09cfbb5aedd…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r2b78f23bc27…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/rf6e5d894d4b…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r687f489b10b…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r934208a520b…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r8b02dc6f18d…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r9710067c709…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r1209986f793…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/r742b44fd752…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/rb2ffe2993f4…	mailing-listx_refsource_MLIST
https://www.oracle.com/security-alerts/cpuapr2022.html	x_refsource_MISC

Impacted products

1 product

Vendor	Product	Version
junit-team	junit4	Affected: < 4.13.1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T13:08:23.218Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://github.com/junit-team/junit4/security/advisories/GHSA-269g-pwp5-87pp"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/junit-team/junit4/commit/610155b8c22138329f0723eec22521627dbc52ae"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/junit-team/junit4/blob/7852b90cfe1cea1e0cdaa19d490c83f0d8684b50/doc/ReleaseNotes4.13.1.md"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://junit.org/junit4/javadoc/4.13/org/junit/rules/TemporaryFolder.html"
          },
          {
            "name": "[creadur-dev] 20201013 [jira] [Created] (RAT-277) Update junit in all Creadur projects in order to fix CVE-2020-15250 (Low severity)",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r5f8841507576f595bb783ccec6a7cb285ea90d4e6f5043eae0e61a41%40%3Cdev.creadur.apache.org%3E"
          },
          {
            "name": "[creadur-dev] 20201014 [jira] [Commented] (RAT-277) Update junit in all Creadur projects in order to fix CVE-2020-15250 (Low severity)",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/rbaec90e699bc7c7bd9a053f76707a36fda48b6d558f31dc79147dbf9%40%3Cdev.creadur.apache.org%3E"
          },
          {
            "name": "[creadur-commits] 20201014 [creadur-whisker] branch master updated: Update junit to fix CVE-2020-15250",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r717877028482c55acf604d7a0106af4ca05da4208c708fb157b53672%40%3Ccommits.creadur.apache.org%3E"
          },
          {
            "name": "[creadur-dev] 20201014 [jira] [Assigned] (RAT-277) Update junit in all Creadur projects in order to fix CVE-2020-15250 (Low severity)",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/rb2771949c676ca984e58a5cd5ca79c2634dee1945e0406e48e0f8457%40%3Cdev.creadur.apache.org%3E"
          },
          {
            "name": "[creadur-commits] 20201014 [creadur-tentacles] branch master updated: Update junit to fix CVE-2020-15250",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/rde385b8b53ed046600ef68dd6b4528dea7566aaddb02c3e702cc28bc%40%3Ccommits.creadur.apache.org%3E"
          },
          {
            "name": "[creadur-dev] 20201014 [jira] [Updated] (RAT-277) Update junit in all Creadur projects in order to fix CVE-2020-15250 (Low severity)",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/rc49cf1547ef6cac1be4b3c92339b2cae0acacf5acaba13cfa429a872%40%3Cdev.creadur.apache.org%3E"
          },
          {
            "name": "[creadur-dev] 20201014 [jira] [Closed] (RAT-277) Update junit in all Creadur projects in order to fix CVE-2020-15250 (Low severity)",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r500517c23200fb2fdb0b82770a62dd6c88b3521cfb01cfd0c76e3f8b%40%3Cdev.creadur.apache.org%3E"
          },
          {
            "name": "[creadur-commits] 20201014 [creadur-rat] 01/02: RAT-277: Update junit to fix CVE-2020-15250",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r95f8ef60c4b3a5284b647bb3132cda08e6fadad888a66b84f49da0b0%40%3Ccommits.creadur.apache.org%3E"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/junit-team/junit4/issues/1676"
          },
          {
            "name": "[debian-lts-announce] 20201101 [SECURITY] [DLA 2426-1] junit4 security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2020/11/msg00003.html"
          },
          {
            "name": "[pdfbox-dev] 20201115 ossindex-maven-plugin and build issue",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/ra1bdb9efae84794e8ffa2f8474be8290ba57830eefe9714b95da714b%40%3Cdev.pdfbox.apache.org%3E"
          },
          {
            "name": "[turbine-commits] 20210203 svn commit: r1886168 - in /turbine/core/trunk: ./ conf/ conf/test/ src/java/org/apache/turbine/services/urlmapper/ src/test/org/apache/turbine/services/urlmapper/ src/test/org/apache/turbine/services/urlmapper/model/ xdocs/howto/",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/rb33212dab7beccaf1ffef9b88610047c644f644c7a0ebdc44d77e381%40%3Ccommits.turbine.apache.org%3E"
          },
          {
            "name": "[pulsar-commits] 20210406 [GitHub] [pulsar] lhotari opened a new pull request #10147: [Security] Upgrade junit version to 4.13.1 to resolve CVE-2020-15250 and fix test dependency leak",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/raebf13f53cd5d23d990712e3d11c80da9a7bae94a6284050f148ed99%40%3Ccommits.pulsar.apache.org%3E"
          },
          {
            "name": "[pulsar-commits] 20210413 [GitHub] [pulsar] lhotari removed a comment on pull request #10147: [Security] Upgrade junit version to 4.13.1 to resolve CVE-2020-15250 and fix test dependency leak",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r01110833b63616ddbef59ae4e10c0fbd0060f0a51206defd4cb4d917%40%3Ccommits.pulsar.apache.org%3E"
          },
          {
            "name": "[pulsar-commits] 20210413 [GitHub] [pulsar] lhotari commented on pull request #10147: [Security] Upgrade junit version to 4.13.1 to resolve CVE-2020-15250 and fix test dependency leak",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/rde8e70b95c992378e8570e4df400c6008a9839eabdfb8f800a3e5af6%40%3Ccommits.pulsar.apache.org%3E"
          },
          {
            "name": "[pulsar-commits] 20210414 [GitHub] [pulsar] lhotari commented on pull request #10147: [Security] Upgrade junit version to 4.13.1 to resolve CVE-2020-15250 and fix test dependency leak",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/rdef7d1380c86e7c0edf8a0f89a2a8db86fce5e363457d56b722691b4%40%3Ccommits.pulsar.apache.org%3E"
          },
          {
            "name": "[pulsar-commits] 20210414 [GitHub] [pulsar] lhotari removed a comment on pull request #10147: [Security] Upgrade junit version to 4.13.1 to resolve CVE-2020-15250 and fix test dependency leak",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/rdbdd30510a7c4d0908fd22075c02b75bbc2e0d977ec22249ef3133cb%40%3Ccommits.pulsar.apache.org%3E"
          },
          {
            "name": "[pulsar-commits] 20210415 [GitHub] [pulsar] lhotari removed a comment on pull request #10147: [Security] Upgrade junit version to 4.13.1 to resolve CVE-2020-15250 and fix test dependency leak",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/rea812d8612fdc46842a2a57248cad4b01ddfdb1e9b037c49e68fdbfb%40%3Ccommits.pulsar.apache.org%3E"
          },
          {
            "name": "[pulsar-commits] 20210415 [GitHub] [pulsar] lhotari commented on pull request #10147: [Security] Upgrade junit version to 4.13.1 to resolve CVE-2020-15250 and fix test dependency leak",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/rf797d119cc3f51a8d7c3c5cbe50cb4524c8487282b986edde83a9467%40%3Ccommits.pulsar.apache.org%3E"
          },
          {
            "name": "[pulsar-commits] 20210415 [GitHub] [pulsar] eolivelli merged pull request #10147: [Security] Upgrade junit version to 4.13.1 to resolve CVE-2020-15250 and fix test dependency leak",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/reb700e60b9642eafa4b7922bfee80796394135aa09c7a239ef9f7486%40%3Ccommits.pulsar.apache.org%3E"
          },
          {
            "name": "[pulsar-commits] 20210415 [pulsar] branch master updated: [Security] Upgrade junit version to 4.13.1 to resolve CVE-2020-15250 and fix test dependency leak (#10147)",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/rf2ec93f4ca9a97d1958eb4a31b1830f723419ce9bf2018a6e5741d5b%40%3Ccommits.pulsar.apache.org%3E"
          },
          {
            "name": "[creadur-commits] 20210621 [creadur-rat] 02/13: RAT-277: Update junit to fix CVE-2020-15250",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r30f502d2f79e8d635361adb8108dcbb73095163fcbd776ee7984a094%40%3Ccommits.creadur.apache.org%3E"
          },
          {
            "name": "[portals-pluto-dev] 20210714 [jira] [Closed] (PLUTO-790) Upgrade to JUnit 4.13.1 due to CVE-2020-15250",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r925eaae7dd8f77dd61eefc49c1fcf54bd9ecfe605486870d7b1e9390%40%3Cpluto-dev.portals.apache.org%3E"
          },
          {
            "name": "[portals-pluto-scm] 20210714 [portals-pluto] branch master updated: PLUTO-790 Upgrade to JUnit 4.13.1 due to CVE-2020-15250",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r29d703d1986d9b871466ff24082a1828ac8ad27bb0965a93a383872e%40%3Cpluto-scm.portals.apache.org%3E"
          },
          {
            "name": "[portals-pluto-dev] 20210714 [jira] [Created] (PLUTO-790) Upgrade to JUnit 4.13.1 due to CVE-2020-15250",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r09cfbb5aedd76023691bbce9ca4ce2e16bb07dd37554a17efc19935d%40%3Cpluto-dev.portals.apache.org%3E"
          },
          {
            "name": "[knox-dev] 20211004 [jira] [Created] (KNOX-2674) Upgrade junit to 4.13.2 due to CVE-2020-15250",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r2b78f23bc2711a76a7fc73ad67b7fcd6817c5cfccefd6f30a4f54943%40%3Cdev.knox.apache.org%3E"
          },
          {
            "name": "[knox-dev] 20211004 [GitHub] [knox] zeroflag opened a new pull request #505: KNOX-2674 - Upgrade junit to 4.13.2 due to CVE-2020-15250",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/rf6e5d894d4b03bef537c9d6641272e0197c047c0d1982b4e176d0353%40%3Cdev.knox.apache.org%3E"
          },
          {
            "name": "[knox-dev] 20211004 [jira] [Work logged] (KNOX-2674) Upgrade junit to 4.13.2 due to CVE-2020-15250",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r687f489b10b0d14e46f626aa88476545e1a2600b24c4ebd3c0d2a10b%40%3Cdev.knox.apache.org%3E"
          },
          {
            "name": "[knox-dev] 20211004 [GitHub] [knox] zeroflag commented on pull request #505: KNOX-2674 - Upgrade junit to 4.13.2 due to CVE-2020-15250",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r934208a520b38f5cf0cae199b6b076bfe7d081809528b0eff2459e40%40%3Cdev.knox.apache.org%3E"
          },
          {
            "name": "[knox-dev] 20211008 [jira] [Commented] (KNOX-2674) Upgrade junit to 4.13.2 due to CVE-2020-15250",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r8b02dc6f18df11ff39eedb3038f1e31e6f90a779b1959bae65107279%40%3Cdev.knox.apache.org%3E"
          },
          {
            "name": "[knox-commits] 20211008 [knox] branch master updated: KNOX-2674 - Upgrade junit to 4.13.2 due to CVE-2020-15250 (#505)",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r9710067c7096b83cb6ae8f53a2f6f94e9c042d1bf1d6929f8f2a2b7a%40%3Ccommits.knox.apache.org%3E"
          },
          {
            "name": "[knox-dev] 20211008 [jira] [Resolved] (KNOX-2674) Upgrade junit to 4.13.2 due to CVE-2020-15250",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r1209986f79359b518d09513ff05a88e5b3c398540e775edea76a4774%40%3Cdev.knox.apache.org%3E"
          },
          {
            "name": "[knox-dev] 20211008 [jira] [Work logged] (KNOX-2674) Upgrade junit to 4.13.2 due to CVE-2020-15250",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r742b44fd75215fc75963b8ecc22b2e4372e68d67d3d859d2b5e8743f%40%3Cdev.knox.apache.org%3E"
          },
          {
            "name": "[knox-dev] 20211008 [GitHub] [knox] smolnar82 merged pull request #505: KNOX-2674 - Upgrade junit to 4.13.2 due to CVE-2020-15250",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/rb2ffe2993f4dccc48d832e1a0f1c419477781b6ea16e725ca2276dbb%40%3Cdev.knox.apache.org%3E"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "junit4",
          "vendor": "junit-team",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 4.13.1"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In JUnit4 from version 4.7 and before 4.13.1, the test rule TemporaryFolder contains a local information disclosure vulnerability. On Unix like systems, the system\u0027s temporary directory is shared between all users on that system. Because of this, when files and directories are written into this directory they are, by default, readable by other users on that same system. This vulnerability does not allow other users to overwrite the contents of these directories or files. This is purely an information disclosure vulnerability. This vulnerability impacts you if the JUnit tests write sensitive information, like API keys or passwords, into the temporary folder, and the JUnit tests execute in an environment where the OS has other untrusted users. Because certain JDK file system APIs were only added in JDK 1.7, this this fix is dependent upon the version of the JDK you are using. For Java 1.7 and higher users: this vulnerability is fixed in 4.13.1. For Java 1.6 and lower users: no patch is available, you must use the workaround below. If you are unable to patch, or are stuck running on Java 1.6, specifying the `java.io.tmpdir` system environment variable to a directory that is exclusively owned by the executing user will fix this vulnerability. For more information, including an example of vulnerable code, see the referenced GitHub Security Advisory."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-200",
              "description": "CWE-200: Exposure of Sensitive Information to an Unauthorized Actor",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-04-19T23:21:38.000Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/junit-team/junit4/security/advisories/GHSA-269g-pwp5-87pp"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/junit-team/junit4/commit/610155b8c22138329f0723eec22521627dbc52ae"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/junit-team/junit4/blob/7852b90cfe1cea1e0cdaa19d490c83f0d8684b50/doc/ReleaseNotes4.13.1.md"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://junit.org/junit4/javadoc/4.13/org/junit/rules/TemporaryFolder.html"
        },
        {
          "name": "[creadur-dev] 20201013 [jira] [Created] (RAT-277) Update junit in all Creadur projects in order to fix CVE-2020-15250 (Low severity)",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r5f8841507576f595bb783ccec6a7cb285ea90d4e6f5043eae0e61a41%40%3Cdev.creadur.apache.org%3E"
        },
        {
          "name": "[creadur-dev] 20201014 [jira] [Commented] (RAT-277) Update junit in all Creadur projects in order to fix CVE-2020-15250 (Low severity)",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/rbaec90e699bc7c7bd9a053f76707a36fda48b6d558f31dc79147dbf9%40%3Cdev.creadur.apache.org%3E"
        },
        {
          "name": "[creadur-commits] 20201014 [creadur-whisker] branch master updated: Update junit to fix CVE-2020-15250",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r717877028482c55acf604d7a0106af4ca05da4208c708fb157b53672%40%3Ccommits.creadur.apache.org%3E"
        },
        {
          "name": "[creadur-dev] 20201014 [jira] [Assigned] (RAT-277) Update junit in all Creadur projects in order to fix CVE-2020-15250 (Low severity)",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/rb2771949c676ca984e58a5cd5ca79c2634dee1945e0406e48e0f8457%40%3Cdev.creadur.apache.org%3E"
        },
        {
          "name": "[creadur-commits] 20201014 [creadur-tentacles] branch master updated: Update junit to fix CVE-2020-15250",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/rde385b8b53ed046600ef68dd6b4528dea7566aaddb02c3e702cc28bc%40%3Ccommits.creadur.apache.org%3E"
        },
        {
          "name": "[creadur-dev] 20201014 [jira] [Updated] (RAT-277) Update junit in all Creadur projects in order to fix CVE-2020-15250 (Low severity)",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/rc49cf1547ef6cac1be4b3c92339b2cae0acacf5acaba13cfa429a872%40%3Cdev.creadur.apache.org%3E"
        },
        {
          "name": "[creadur-dev] 20201014 [jira] [Closed] (RAT-277) Update junit in all Creadur projects in order to fix CVE-2020-15250 (Low severity)",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r500517c23200fb2fdb0b82770a62dd6c88b3521cfb01cfd0c76e3f8b%40%3Cdev.creadur.apache.org%3E"
        },
        {
          "name": "[creadur-commits] 20201014 [creadur-rat] 01/02: RAT-277: Update junit to fix CVE-2020-15250",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r95f8ef60c4b3a5284b647bb3132cda08e6fadad888a66b84f49da0b0%40%3Ccommits.creadur.apache.org%3E"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/junit-team/junit4/issues/1676"
        },
        {
          "name": "[debian-lts-announce] 20201101 [SECURITY] [DLA 2426-1] junit4 security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2020/11/msg00003.html"
        },
        {
          "name": "[pdfbox-dev] 20201115 ossindex-maven-plugin and build issue",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/ra1bdb9efae84794e8ffa2f8474be8290ba57830eefe9714b95da714b%40%3Cdev.pdfbox.apache.org%3E"
        },
        {
          "name": "[turbine-commits] 20210203 svn commit: r1886168 - in /turbine/core/trunk: ./ conf/ conf/test/ src/java/org/apache/turbine/services/urlmapper/ src/test/org/apache/turbine/services/urlmapper/ src/test/org/apache/turbine/services/urlmapper/model/ xdocs/howto/",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/rb33212dab7beccaf1ffef9b88610047c644f644c7a0ebdc44d77e381%40%3Ccommits.turbine.apache.org%3E"
        },
        {
          "name": "[pulsar-commits] 20210406 [GitHub] [pulsar] lhotari opened a new pull request #10147: [Security] Upgrade junit version to 4.13.1 to resolve CVE-2020-15250 and fix test dependency leak",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/raebf13f53cd5d23d990712e3d11c80da9a7bae94a6284050f148ed99%40%3Ccommits.pulsar.apache.org%3E"
        },
        {
          "name": "[pulsar-commits] 20210413 [GitHub] [pulsar] lhotari removed a comment on pull request #10147: [Security] Upgrade junit version to 4.13.1 to resolve CVE-2020-15250 and fix test dependency leak",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r01110833b63616ddbef59ae4e10c0fbd0060f0a51206defd4cb4d917%40%3Ccommits.pulsar.apache.org%3E"
        },
        {
          "name": "[pulsar-commits] 20210413 [GitHub] [pulsar] lhotari commented on pull request #10147: [Security] Upgrade junit version to 4.13.1 to resolve CVE-2020-15250 and fix test dependency leak",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/rde8e70b95c992378e8570e4df400c6008a9839eabdfb8f800a3e5af6%40%3Ccommits.pulsar.apache.org%3E"
        },
        {
          "name": "[pulsar-commits] 20210414 [GitHub] [pulsar] lhotari commented on pull request #10147: [Security] Upgrade junit version to 4.13.1 to resolve CVE-2020-15250 and fix test dependency leak",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/rdef7d1380c86e7c0edf8a0f89a2a8db86fce5e363457d56b722691b4%40%3Ccommits.pulsar.apache.org%3E"
        },
        {
          "name": "[pulsar-commits] 20210414 [GitHub] [pulsar] lhotari removed a comment on pull request #10147: [Security] Upgrade junit version to 4.13.1 to resolve CVE-2020-15250 and fix test dependency leak",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/rdbdd30510a7c4d0908fd22075c02b75bbc2e0d977ec22249ef3133cb%40%3Ccommits.pulsar.apache.org%3E"
        },
        {
          "name": "[pulsar-commits] 20210415 [GitHub] [pulsar] lhotari removed a comment on pull request #10147: [Security] Upgrade junit version to 4.13.1 to resolve CVE-2020-15250 and fix test dependency leak",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/rea812d8612fdc46842a2a57248cad4b01ddfdb1e9b037c49e68fdbfb%40%3Ccommits.pulsar.apache.org%3E"
        },
        {
          "name": "[pulsar-commits] 20210415 [GitHub] [pulsar] lhotari commented on pull request #10147: [Security] Upgrade junit version to 4.13.1 to resolve CVE-2020-15250 and fix test dependency leak",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/rf797d119cc3f51a8d7c3c5cbe50cb4524c8487282b986edde83a9467%40%3Ccommits.pulsar.apache.org%3E"
        },
        {
          "name": "[pulsar-commits] 20210415 [GitHub] [pulsar] eolivelli merged pull request #10147: [Security] Upgrade junit version to 4.13.1 to resolve CVE-2020-15250 and fix test dependency leak",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/reb700e60b9642eafa4b7922bfee80796394135aa09c7a239ef9f7486%40%3Ccommits.pulsar.apache.org%3E"
        },
        {
          "name": "[pulsar-commits] 20210415 [pulsar] branch master updated: [Security] Upgrade junit version to 4.13.1 to resolve CVE-2020-15250 and fix test dependency leak (#10147)",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/rf2ec93f4ca9a97d1958eb4a31b1830f723419ce9bf2018a6e5741d5b%40%3Ccommits.pulsar.apache.org%3E"
        },
        {
          "name": "[creadur-commits] 20210621 [creadur-rat] 02/13: RAT-277: Update junit to fix CVE-2020-15250",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r30f502d2f79e8d635361adb8108dcbb73095163fcbd776ee7984a094%40%3Ccommits.creadur.apache.org%3E"
        },
        {
          "name": "[portals-pluto-dev] 20210714 [jira] [Closed] (PLUTO-790) Upgrade to JUnit 4.13.1 due to CVE-2020-15250",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r925eaae7dd8f77dd61eefc49c1fcf54bd9ecfe605486870d7b1e9390%40%3Cpluto-dev.portals.apache.org%3E"
        },
        {
          "name": "[portals-pluto-scm] 20210714 [portals-pluto] branch master updated: PLUTO-790 Upgrade to JUnit 4.13.1 due to CVE-2020-15250",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r29d703d1986d9b871466ff24082a1828ac8ad27bb0965a93a383872e%40%3Cpluto-scm.portals.apache.org%3E"
        },
        {
          "name": "[portals-pluto-dev] 20210714 [jira] [Created] (PLUTO-790) Upgrade to JUnit 4.13.1 due to CVE-2020-15250",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r09cfbb5aedd76023691bbce9ca4ce2e16bb07dd37554a17efc19935d%40%3Cpluto-dev.portals.apache.org%3E"
        },
        {
          "name": "[knox-dev] 20211004 [jira] [Created] (KNOX-2674) Upgrade junit to 4.13.2 due to CVE-2020-15250",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r2b78f23bc2711a76a7fc73ad67b7fcd6817c5cfccefd6f30a4f54943%40%3Cdev.knox.apache.org%3E"
        },
        {
          "name": "[knox-dev] 20211004 [GitHub] [knox] zeroflag opened a new pull request #505: KNOX-2674 - Upgrade junit to 4.13.2 due to CVE-2020-15250",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/rf6e5d894d4b03bef537c9d6641272e0197c047c0d1982b4e176d0353%40%3Cdev.knox.apache.org%3E"
        },
        {
          "name": "[knox-dev] 20211004 [jira] [Work logged] (KNOX-2674) Upgrade junit to 4.13.2 due to CVE-2020-15250",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r687f489b10b0d14e46f626aa88476545e1a2600b24c4ebd3c0d2a10b%40%3Cdev.knox.apache.org%3E"
        },
        {
          "name": "[knox-dev] 20211004 [GitHub] [knox] zeroflag commented on pull request #505: KNOX-2674 - Upgrade junit to 4.13.2 due to CVE-2020-15250",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r934208a520b38f5cf0cae199b6b076bfe7d081809528b0eff2459e40%40%3Cdev.knox.apache.org%3E"
        },
        {
          "name": "[knox-dev] 20211008 [jira] [Commented] (KNOX-2674) Upgrade junit to 4.13.2 due to CVE-2020-15250",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r8b02dc6f18df11ff39eedb3038f1e31e6f90a779b1959bae65107279%40%3Cdev.knox.apache.org%3E"
        },
        {
          "name": "[knox-commits] 20211008 [knox] branch master updated: KNOX-2674 - Upgrade junit to 4.13.2 due to CVE-2020-15250 (#505)",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r9710067c7096b83cb6ae8f53a2f6f94e9c042d1bf1d6929f8f2a2b7a%40%3Ccommits.knox.apache.org%3E"
        },
        {
          "name": "[knox-dev] 20211008 [jira] [Resolved] (KNOX-2674) Upgrade junit to 4.13.2 due to CVE-2020-15250",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r1209986f79359b518d09513ff05a88e5b3c398540e775edea76a4774%40%3Cdev.knox.apache.org%3E"
        },
        {
          "name": "[knox-dev] 20211008 [jira] [Work logged] (KNOX-2674) Upgrade junit to 4.13.2 due to CVE-2020-15250",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r742b44fd75215fc75963b8ecc22b2e4372e68d67d3d859d2b5e8743f%40%3Cdev.knox.apache.org%3E"
        },
        {
          "name": "[knox-dev] 20211008 [GitHub] [knox] smolnar82 merged pull request #505: KNOX-2674 - Upgrade junit to 4.13.2 due to CVE-2020-15250",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/rb2ffe2993f4dccc48d832e1a0f1c419477781b6ea16e725ca2276dbb%40%3Cdev.knox.apache.org%3E"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
        }
      ],
      "source": {
        "advisory": "GHSA-269g-pwp5-87pp",
        "discovery": "UNKNOWN"
      },
      "title": "Information disclosure in JUnit4",
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security-advisories@github.com",
          "ID": "CVE-2020-15250",
          "STATE": "PUBLIC",
          "TITLE": "Information disclosure in JUnit4"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "junit4",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "\u003c 4.13.1"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "junit-team"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In JUnit4 from version 4.7 and before 4.13.1, the test rule TemporaryFolder contains a local information disclosure vulnerability. On Unix like systems, the system\u0027s temporary directory is shared between all users on that system. Because of this, when files and directories are written into this directory they are, by default, readable by other users on that same system. This vulnerability does not allow other users to overwrite the contents of these directories or files. This is purely an information disclosure vulnerability. This vulnerability impacts you if the JUnit tests write sensitive information, like API keys or passwords, into the temporary folder, and the JUnit tests execute in an environment where the OS has other untrusted users. Because certain JDK file system APIs were only added in JDK 1.7, this this fix is dependent upon the version of the JDK you are using. For Java 1.7 and higher users: this vulnerability is fixed in 4.13.1. For Java 1.6 and lower users: no patch is available, you must use the workaround below. If you are unable to patch, or are stuck running on Java 1.6, specifying the `java.io.tmpdir` system environment variable to a directory that is exclusively owned by the executing user will fix this vulnerability. For more information, including an example of vulnerable code, see the referenced GitHub Security Advisory."
            }
          ]
        },
        "impact": {
          "cvss": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.1"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-200: Exposure of Sensitive Information to an Unauthorized Actor"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://github.com/junit-team/junit4/security/advisories/GHSA-269g-pwp5-87pp",
              "refsource": "CONFIRM",
              "url": "https://github.com/junit-team/junit4/security/advisories/GHSA-269g-pwp5-87pp"
            },
            {
              "name": "https://github.com/junit-team/junit4/commit/610155b8c22138329f0723eec22521627dbc52ae",
              "refsource": "MISC",
              "url": "https://github.com/junit-team/junit4/commit/610155b8c22138329f0723eec22521627dbc52ae"
            },
            {
              "name": "https://github.com/junit-team/junit4/blob/7852b90cfe1cea1e0cdaa19d490c83f0d8684b50/doc/ReleaseNotes4.13.1.md",
              "refsource": "MISC",
              "url": "https://github.com/junit-team/junit4/blob/7852b90cfe1cea1e0cdaa19d490c83f0d8684b50/doc/ReleaseNotes4.13.1.md"
            },
            {
              "name": "https://junit.org/junit4/javadoc/4.13/org/junit/rules/TemporaryFolder.html",
              "refsource": "MISC",
              "url": "https://junit.org/junit4/javadoc/4.13/org/junit/rules/TemporaryFolder.html"
            },
            {
              "name": "[creadur-dev] 20201013 [jira] [Created] (RAT-277) Update junit in all Creadur projects in order to fix CVE-2020-15250 (Low severity)",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r5f8841507576f595bb783ccec6a7cb285ea90d4e6f5043eae0e61a41@%3Cdev.creadur.apache.org%3E"
            },
            {
              "name": "[creadur-dev] 20201014 [jira] [Commented] (RAT-277) Update junit in all Creadur projects in order to fix CVE-2020-15250 (Low severity)",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/rbaec90e699bc7c7bd9a053f76707a36fda48b6d558f31dc79147dbf9@%3Cdev.creadur.apache.org%3E"
            },
            {
              "name": "[creadur-commits] 20201014 [creadur-whisker] branch master updated: Update junit to fix CVE-2020-15250",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r717877028482c55acf604d7a0106af4ca05da4208c708fb157b53672@%3Ccommits.creadur.apache.org%3E"
            },
            {
              "name": "[creadur-dev] 20201014 [jira] [Assigned] (RAT-277) Update junit in all Creadur projects in order to fix CVE-2020-15250 (Low severity)",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/rb2771949c676ca984e58a5cd5ca79c2634dee1945e0406e48e0f8457@%3Cdev.creadur.apache.org%3E"
            },
            {
              "name": "[creadur-commits] 20201014 [creadur-tentacles] branch master updated: Update junit to fix CVE-2020-15250",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/rde385b8b53ed046600ef68dd6b4528dea7566aaddb02c3e702cc28bc@%3Ccommits.creadur.apache.org%3E"
            },
            {
              "name": "[creadur-dev] 20201014 [jira] [Updated] (RAT-277) Update junit in all Creadur projects in order to fix CVE-2020-15250 (Low severity)",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/rc49cf1547ef6cac1be4b3c92339b2cae0acacf5acaba13cfa429a872@%3Cdev.creadur.apache.org%3E"
            },
            {
              "name": "[creadur-dev] 20201014 [jira] [Closed] (RAT-277) Update junit in all Creadur projects in order to fix CVE-2020-15250 (Low severity)",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r500517c23200fb2fdb0b82770a62dd6c88b3521cfb01cfd0c76e3f8b@%3Cdev.creadur.apache.org%3E"
            },
            {
              "name": "[creadur-commits] 20201014 [creadur-rat] 01/02: RAT-277: Update junit to fix CVE-2020-15250",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r95f8ef60c4b3a5284b647bb3132cda08e6fadad888a66b84f49da0b0@%3Ccommits.creadur.apache.org%3E"
            },
            {
              "name": "https://github.com/junit-team/junit4/issues/1676",
              "refsource": "MISC",
              "url": "https://github.com/junit-team/junit4/issues/1676"
            },
            {
              "name": "[debian-lts-announce] 20201101 [SECURITY] [DLA 2426-1] junit4 security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2020/11/msg00003.html"
            },
            {
              "name": "[pdfbox-dev] 20201115 ossindex-maven-plugin and build issue",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/ra1bdb9efae84794e8ffa2f8474be8290ba57830eefe9714b95da714b@%3Cdev.pdfbox.apache.org%3E"
            },
            {
              "name": "[turbine-commits] 20210203 svn commit: r1886168 - in /turbine/core/trunk: ./ conf/ conf/test/ src/java/org/apache/turbine/services/urlmapper/ src/test/org/apache/turbine/services/urlmapper/ src/test/org/apache/turbine/services/urlmapper/model/ xdocs/howto/",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/rb33212dab7beccaf1ffef9b88610047c644f644c7a0ebdc44d77e381@%3Ccommits.turbine.apache.org%3E"
            },
            {
              "name": "[pulsar-commits] 20210406 [GitHub] [pulsar] lhotari opened a new pull request #10147: [Security] Upgrade junit version to 4.13.1 to resolve CVE-2020-15250 and fix test dependency leak",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/raebf13f53cd5d23d990712e3d11c80da9a7bae94a6284050f148ed99@%3Ccommits.pulsar.apache.org%3E"
            },
            {
              "name": "[pulsar-commits] 20210413 [GitHub] [pulsar] lhotari removed a comment on pull request #10147: [Security] Upgrade junit version to 4.13.1 to resolve CVE-2020-15250 and fix test dependency leak",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r01110833b63616ddbef59ae4e10c0fbd0060f0a51206defd4cb4d917@%3Ccommits.pulsar.apache.org%3E"
            },
            {
              "name": "[pulsar-commits] 20210413 [GitHub] [pulsar] lhotari commented on pull request #10147: [Security] Upgrade junit version to 4.13.1 to resolve CVE-2020-15250 and fix test dependency leak",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/rde8e70b95c992378e8570e4df400c6008a9839eabdfb8f800a3e5af6@%3Ccommits.pulsar.apache.org%3E"
            },
            {
              "name": "[pulsar-commits] 20210414 [GitHub] [pulsar] lhotari commented on pull request #10147: [Security] Upgrade junit version to 4.13.1 to resolve CVE-2020-15250 and fix test dependency leak",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/rdef7d1380c86e7c0edf8a0f89a2a8db86fce5e363457d56b722691b4@%3Ccommits.pulsar.apache.org%3E"
            },
            {
              "name": "[pulsar-commits] 20210414 [GitHub] [pulsar] lhotari removed a comment on pull request #10147: [Security] Upgrade junit version to 4.13.1 to resolve CVE-2020-15250 and fix test dependency leak",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/rdbdd30510a7c4d0908fd22075c02b75bbc2e0d977ec22249ef3133cb@%3Ccommits.pulsar.apache.org%3E"
            },
            {
              "name": "[pulsar-commits] 20210415 [GitHub] [pulsar] lhotari removed a comment on pull request #10147: [Security] Upgrade junit version to 4.13.1 to resolve CVE-2020-15250 and fix test dependency leak",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/rea812d8612fdc46842a2a57248cad4b01ddfdb1e9b037c49e68fdbfb@%3Ccommits.pulsar.apache.org%3E"
            },
            {
              "name": "[pulsar-commits] 20210415 [GitHub] [pulsar] lhotari commented on pull request #10147: [Security] Upgrade junit version to 4.13.1 to resolve CVE-2020-15250 and fix test dependency leak",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/rf797d119cc3f51a8d7c3c5cbe50cb4524c8487282b986edde83a9467@%3Ccommits.pulsar.apache.org%3E"
            },
            {
              "name": "[pulsar-commits] 20210415 [GitHub] [pulsar] eolivelli merged pull request #10147: [Security] Upgrade junit version to 4.13.1 to resolve CVE-2020-15250 and fix test dependency leak",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/reb700e60b9642eafa4b7922bfee80796394135aa09c7a239ef9f7486@%3Ccommits.pulsar.apache.org%3E"
            },
            {
              "name": "[pulsar-commits] 20210415 [pulsar] branch master updated: [Security] Upgrade junit version to 4.13.1 to resolve CVE-2020-15250 and fix test dependency leak (#10147)",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/rf2ec93f4ca9a97d1958eb4a31b1830f723419ce9bf2018a6e5741d5b@%3Ccommits.pulsar.apache.org%3E"
            },
            {
              "name": "[creadur-commits] 20210621 [creadur-rat] 02/13: RAT-277: Update junit to fix CVE-2020-15250",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r30f502d2f79e8d635361adb8108dcbb73095163fcbd776ee7984a094@%3Ccommits.creadur.apache.org%3E"
            },
            {
              "name": "[portals-pluto-dev] 20210714 [jira] [Closed] (PLUTO-790) Upgrade to JUnit 4.13.1 due to CVE-2020-15250",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r925eaae7dd8f77dd61eefc49c1fcf54bd9ecfe605486870d7b1e9390@%3Cpluto-dev.portals.apache.org%3E"
            },
            {
              "name": "[portals-pluto-scm] 20210714 [portals-pluto] branch master updated: PLUTO-790 Upgrade to JUnit 4.13.1 due to CVE-2020-15250",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r29d703d1986d9b871466ff24082a1828ac8ad27bb0965a93a383872e@%3Cpluto-scm.portals.apache.org%3E"
            },
            {
              "name": "[portals-pluto-dev] 20210714 [jira] [Created] (PLUTO-790) Upgrade to JUnit 4.13.1 due to CVE-2020-15250",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r09cfbb5aedd76023691bbce9ca4ce2e16bb07dd37554a17efc19935d@%3Cpluto-dev.portals.apache.org%3E"
            },
            {
              "name": "[knox-dev] 20211004 [jira] [Created] (KNOX-2674) Upgrade junit to 4.13.2 due to CVE-2020-15250",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r2b78f23bc2711a76a7fc73ad67b7fcd6817c5cfccefd6f30a4f54943@%3Cdev.knox.apache.org%3E"
            },
            {
              "name": "[knox-dev] 20211004 [GitHub] [knox] zeroflag opened a new pull request #505: KNOX-2674 - Upgrade junit to 4.13.2 due to CVE-2020-15250",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/rf6e5d894d4b03bef537c9d6641272e0197c047c0d1982b4e176d0353@%3Cdev.knox.apache.org%3E"
            },
            {
              "name": "[knox-dev] 20211004 [jira] [Work logged] (KNOX-2674) Upgrade junit to 4.13.2 due to CVE-2020-15250",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r687f489b10b0d14e46f626aa88476545e1a2600b24c4ebd3c0d2a10b@%3Cdev.knox.apache.org%3E"
            },
            {
              "name": "[knox-dev] 20211004 [GitHub] [knox] zeroflag commented on pull request #505: KNOX-2674 - Upgrade junit to 4.13.2 due to CVE-2020-15250",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r934208a520b38f5cf0cae199b6b076bfe7d081809528b0eff2459e40@%3Cdev.knox.apache.org%3E"
            },
            {
              "name": "[knox-dev] 20211008 [jira] [Commented] (KNOX-2674) Upgrade junit to 4.13.2 due to CVE-2020-15250",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r8b02dc6f18df11ff39eedb3038f1e31e6f90a779b1959bae65107279@%3Cdev.knox.apache.org%3E"
            },
            {
              "name": "[knox-commits] 20211008 [knox] branch master updated: KNOX-2674 - Upgrade junit to 4.13.2 due to CVE-2020-15250 (#505)",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r9710067c7096b83cb6ae8f53a2f6f94e9c042d1bf1d6929f8f2a2b7a@%3Ccommits.knox.apache.org%3E"
            },
            {
              "name": "[knox-dev] 20211008 [jira] [Resolved] (KNOX-2674) Upgrade junit to 4.13.2 due to CVE-2020-15250",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r1209986f79359b518d09513ff05a88e5b3c398540e775edea76a4774@%3Cdev.knox.apache.org%3E"
            },
            {
              "name": "[knox-dev] 20211008 [jira] [Work logged] (KNOX-2674) Upgrade junit to 4.13.2 due to CVE-2020-15250",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r742b44fd75215fc75963b8ecc22b2e4372e68d67d3d859d2b5e8743f@%3Cdev.knox.apache.org%3E"
            },
            {
              "name": "[knox-dev] 20211008 [GitHub] [knox] smolnar82 merged pull request #505: KNOX-2674 - Upgrade junit to 4.13.2 due to CVE-2020-15250",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/rb2ffe2993f4dccc48d832e1a0f1c419477781b6ea16e725ca2276dbb@%3Cdev.knox.apache.org%3E"
            },
            {
              "name": "https://www.oracle.com/security-alerts/cpuapr2022.html",
              "refsource": "MISC",
              "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
            }
          ]
        },
        "source": {
          "advisory": "GHSA-269g-pwp5-87pp",
          "discovery": "UNKNOWN"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2020-15250",
    "datePublished": "2020-10-12T17:55:13.000Z",
    "dateReserved": "2020-06-25T00:00:00.000Z",
    "dateUpdated": "2024-08-04T13:08:23.218Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2020-17049 (GCVE-0-2020-17049)

Vulnerability from cvelistv5 – Published: 2020-11-11 00:00 – Updated: 2024-11-15 16:12

Title

Kerberos KDC Security Feature Bypass Vulnerability

Summary

A security feature bypass vulnerability exists in the way Key Distribution Center (KDC) determines if a service ticket can be used for delegation via Kerberos Constrained Delegation (KCD). To exploit the vulnerability, a compromised service that is configured to use KCD could tamper with a service ticket that is not valid for delegation to force the KDC to accept it. The update addresses this vulnerability by changing how the KDC validates service tickets used with KCD.

Severity

6.6 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

CWE

Security Feature Bypass

Assigner

microsoft

References

3 references

URL	Tags
https://portal.msrc.microsoft.com/en-US/security-…
http://www.openwall.com/lists/oss-security/2021/11/10/3	mailing-list
https://security.gentoo.org/glsa/202309-06	vendor-advisory

Impacted products

17 products

Vendor	Product	Version
Microsoft	Windows Server 2019	Affected: 10.0.0 , < 10.0.17763.2061 (custom) cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.2061:::::::*
Microsoft	Windows Server 2019 (Server Core installation)	Affected: 10.0.0 , < 10.0.17763.2061 (custom) cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.2061:::::::*
Microsoft	Windows Server, version 1909 (Server Core installation)	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_1909::::::::
Microsoft	Windows Server, version 1903 (Server Core installation)	Affected: 10.0.0 , < publication (custom) cpe:2.3:o:microsoft:windows_server_1903::::::::
Microsoft	Windows Server version 2004	Affected: 10.0.0 , < 10.0.19041.1110 (custom) cpe:2.3:o:microsoft:windows_server_2004:10.0.19041.1110:::::::*
Microsoft	Windows Server 2016	Affected: 10.0.0 , < 10.0.14393.4530 (custom) cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.4530:::::::*
Microsoft	Windows Server 2016 (Server Core installation)	Affected: 10.0.0 , < 10.0.14393.4530 (custom) cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.4530:::::::*
Microsoft	Windows Server 2008 Service Pack 2	Affected: 6.0.0 , < 6.0.6003.21167 (custom) cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.21167::::::x64:
Microsoft	Windows Server 2008 Service Pack 2 (Server Core installation)	Affected: 6.0.0 , < 6.0.6003.21167 (custom) cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.21167::::::x64: cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.21167::::::x86:
Microsoft	Windows Server 2008 Service Pack 2	Affected: 6.0.0 , < 6.0.6003.21167 (custom) cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.21167::::::x86:
Microsoft	Windows Server 2008 R2 Service Pack 1	Affected: 6.1.0 , < 6.1.7601.25661 (custom) cpe:2.3:o:microsoft:windows_server_2008_R2:6.1.7601.25661::::::x64:
Microsoft	Windows Server 2008 R2 Service Pack 1 (Server Core installation)	Affected: 6.0.0 , < 6.1.7601.25661 (custom) cpe:2.3:o:microsoft:windows_server_2008_R2:6.1.7601.25661::::::x64:
Microsoft	Windows Server 2012	Affected: 6.2.0 , < 6.2.9200.23409 (custom) cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.23409::::::x64:
Microsoft	Windows Server 2012 (Server Core installation)	Affected: 6.2.0 , < 6.2.9200.23409 (custom) cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.23409::::::x64:
Microsoft	Windows Server 2012 R2	Affected: 6.3.0 , < 6.3.9600.20069 (custom) cpe:2.3:o:microsoft:windows_server_2012_R2:6.3.9600.20069::::::x64:
Microsoft	Windows Server 2012 R2 (Server Core installation)	Affected: 6.3.0 , < 6.3.9600.20069 (custom) cpe:2.3:o:microsoft:windows_server_2012_R2:6.3.9600.20069::::::x64:
Microsoft	Windows Server version 20H2	Affected: 10.0.0 , < 10.0.19041.1110 (custom) cpe:2.3:o:microsoft:windows_server_20H2:10.0.19041.1110:::::::*

Date Public

2020-11-10 08:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T13:45:34.908Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17049"
          },
          {
            "name": "[oss-security] 20211110 Fwd: Samba 4.15.2, 4.14.10, 4.13.14 Security Releases are available for Download",
            "tags": [
              "mailing-list",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2021/11/10/3"
          },
          {
            "name": "GLSA-202309-06",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202309-06"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2020-17049",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-11-15T16:12:34.390288Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-15T16:12:52.309Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.2061:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2019",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.17763.2061",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.2061:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2019 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.17763.2061",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_1909:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server, version 1909 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_1903:*:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server, version 1903 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2004:10.0.19041.1110:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server version 2004",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.19041.1110",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.4530:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2016",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.14393.4530",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.4530:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2016 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.14393.4530",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.21167:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "32-bit Systems"
          ],
          "product": "Windows Server 2008 Service Pack 2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "6.0.6003.21167",
              "status": "affected",
              "version": "6.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.21167:*:*:*:*:*:x64:*",
            "cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.21167:*:*:*:*:*:x86:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems"
          ],
          "product": "Windows Server 2008 Service Pack 2 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "6.0.6003.21167",
              "status": "affected",
              "version": "6.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.21167:*:*:*:*:*:x86:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2008  Service Pack 2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "6.0.6003.21167",
              "status": "affected",
              "version": "6.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2008_R2:6.1.7601.25661:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2008 R2 Service Pack 1",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "6.1.7601.25661",
              "status": "affected",
              "version": "6.1.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2008_R2:6.1.7601.25661:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "6.1.7601.25661",
              "status": "affected",
              "version": "6.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.23409:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2012",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "6.2.9200.23409",
              "status": "affected",
              "version": "6.2.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.23409:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2012 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "6.2.9200.23409",
              "status": "affected",
              "version": "6.2.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2012_R2:6.3.9600.20069:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2012 R2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "6.3.9600.20069",
              "status": "affected",
              "version": "6.3.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2012_R2:6.3.9600.20069:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2012 R2 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "6.3.9600.20069",
              "status": "affected",
              "version": "6.3.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_20H2:10.0.19041.1110:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server version 20H2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.19041.1110",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "datePublic": "2020-11-10T08:00:00.000Z",
      "descriptions": [
        {
          "lang": "en-US",
          "value": "A security feature bypass vulnerability exists in the way Key Distribution Center (KDC) determines if a service ticket can be used for delegation via Kerberos Constrained Delegation (KCD).\nTo exploit the vulnerability, a compromised service that is configured to use KCD could tamper with a service ticket that is not valid for delegation to force the KDC to accept it.\nThe update addresses this vulnerability by changing how the KDC validates service tickets used with KCD."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 6.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en-US",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Security Feature Bypass",
              "lang": "en-US",
              "type": "Impact"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-09-10T15:51:56.659Z",
        "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "shortName": "microsoft"
      },
      "references": [
        {
          "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17049"
        },
        {
          "name": "[oss-security] 20211110 Fwd: Samba 4.15.2, 4.14.10, 4.13.14 Security Releases are available for Download",
          "tags": [
            "mailing-list"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2021/11/10/3"
        },
        {
          "name": "GLSA-202309-06",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://security.gentoo.org/glsa/202309-06"
        }
      ],
      "title": "Kerberos KDC Security Feature Bypass Vulnerability"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
    "assignerShortName": "microsoft",
    "cveId": "CVE-2020-17049",
    "datePublished": "2020-11-11T00:00:00.000Z",
    "dateReserved": "2020-08-04T00:00:00.000Z",
    "dateUpdated": "2024-11-15T16:12:52.309Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2020-25717 (GCVE-0-2020-25717)

Vulnerability from cvelistv5 – Published: 2022-02-18 00:00 – Updated: 2024-08-04 15:40

Summary

A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege escalation.

Severity

No CVSS data available.

CWE

CWE-20

Assigner

redhat

References

3 references

URL	Tags
https://bugzilla.redhat.com/show_bug.cgi?id=2019672
https://www.samba.org/samba/security/CVE-2020-257…
https://security.gentoo.org/glsa/202309-06	vendor-advisory

Impacted products

1 product

Vendor	Product	Version
n/a	samba	Affected: samba 4.15.2, samba 4.14.10, samba 4.13.14

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T15:40:36.637Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2019672"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.samba.org/samba/security/CVE-2020-25717.html"
          },
          {
            "name": "GLSA-202309-06",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202309-06"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "samba",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "samba 4.15.2, samba 4.14.10, samba 4.13.14"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege escalation."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-20",
              "description": "CWE-20",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-09-17T08:06:17.315Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2019672"
        },
        {
          "url": "https://www.samba.org/samba/security/CVE-2020-25717.html"
        },
        {
          "name": "GLSA-202309-06",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://security.gentoo.org/glsa/202309-06"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2020-25717",
    "datePublished": "2022-02-18T00:00:00.000Z",
    "dateReserved": "2020-09-16T00:00:00.000Z",
    "dateUpdated": "2024-08-04T15:40:36.637Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2020-25718 (GCVE-0-2020-25718)

Vulnerability from cvelistv5 – Published: 2022-02-18 00:00 – Updated: 2024-08-04 15:40

Summary

A flaw was found in the way samba, as an Active Directory Domain Controller, is able to support an RODC (read-only domain controller). This would allow an RODC to print administrator tickets.

Severity

No CVSS data available.

CWE

CWE-862

Assigner

redhat

References

3 references

URL	Tags
https://bugzilla.redhat.com/show_bug.cgi?id=2019726
https://www.samba.org/samba/security/CVE-2020-257…
https://security.gentoo.org/glsa/202309-06	vendor-advisory

Impacted products

1 product

Vendor	Product	Version
n/a	samba	Affected: samba 4.15.2, samba 4.14.10, samba 4.13.14

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T15:40:36.803Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2019726"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.samba.org/samba/security/CVE-2020-25718.html"
          },
          {
            "name": "GLSA-202309-06",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202309-06"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "samba",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "samba 4.15.2, samba 4.14.10, samba 4.13.14"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A flaw was found in the way samba, as an Active Directory Domain Controller, is able to support an RODC (read-only domain controller). This would allow an RODC to print administrator tickets."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-862",
              "description": "CWE-862",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-09-17T08:06:27.389Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2019726"
        },
        {
          "url": "https://www.samba.org/samba/security/CVE-2020-25718.html"
        },
        {
          "name": "GLSA-202309-06",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://security.gentoo.org/glsa/202309-06"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2020-25718",
    "datePublished": "2022-02-18T00:00:00.000Z",
    "dateReserved": "2020-09-16T00:00:00.000Z",
    "dateUpdated": "2024-08-04T15:40:36.803Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2020-25719 (GCVE-0-2020-25719)

Vulnerability from cvelistv5 – Published: 2022-02-18 00:00 – Updated: 2024-08-04 15:40

Summary

A flaw was found in the way Samba, as an Active Directory Domain Controller, implemented Kerberos name-based authentication. The Samba AD DC, could become confused about the user a ticket represents if it did not strictly require a Kerberos PAC and always use the SIDs found within. The result could include total domain compromise.

Severity

No CVSS data available.

CWE

CWE-287

Assigner

redhat

References

3 references

URL	Tags
https://bugzilla.redhat.com/show_bug.cgi?id=2019732
https://www.samba.org/samba/security/CVE-2020-257…
https://security.gentoo.org/glsa/202309-06	vendor-advisory

Impacted products

1 product

Vendor	Product	Version
n/a	samba	Affected: samba 4.15.2, samba 4.14.10, samba 4.13.14

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T15:40:36.654Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2019732"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.samba.org/samba/security/CVE-2020-25719.html"
          },
          {
            "name": "GLSA-202309-06",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202309-06"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "samba",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "samba 4.15.2, samba 4.14.10, samba 4.13.14"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A flaw was found in the way Samba, as an Active Directory Domain Controller, implemented Kerberos name-based authentication. The Samba AD DC, could become confused about the user a ticket represents if it did not strictly require a Kerberos PAC and always use the SIDs found within. The result could include total domain compromise."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-287",
              "description": "CWE-287",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-09-17T08:06:50.287Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2019732"
        },
        {
          "url": "https://www.samba.org/samba/security/CVE-2020-25719.html"
        },
        {
          "name": "GLSA-202309-06",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://security.gentoo.org/glsa/202309-06"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2020-25719",
    "datePublished": "2022-02-18T00:00:00.000Z",
    "dateReserved": "2020-09-16T00:00:00.000Z",
    "dateUpdated": "2024-08-04T15:40:36.654Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2020-25721 (GCVE-0-2020-25721)

Vulnerability from cvelistv5 – Published: 2022-03-16 00:00 – Updated: 2024-08-04 15:40

Summary

Kerberos acceptors need easy access to stable AD identifiers (eg objectSid). Samba as an AD DC now provides a way for Linux applications to obtain a reliable SID (and samAccountName) in issued tickets.

Severity

No CVSS data available.

CWE

CWE-20 - (Improper Input validation)

Assigner

redhat

References

4 references

URL	Tags
https://www.samba.org/samba/security/CVE-2020-257…
https://bugzilla.samba.org/show_bug.cgi?id=14725
https://bugzilla.redhat.com/show_bug.cgi?id=2021728
https://security.gentoo.org/glsa/202309-06	vendor-advisory

Impacted products

1 product

Vendor	Product	Version
n/a	samba	Affected: Affected - All versions since Samba 4.0.0, Fixed-In - v4.15.2, v4.14.10 and v4.13.14

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T15:40:36.797Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.samba.org/samba/security/CVE-2020-25721.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://bugzilla.samba.org/show_bug.cgi?id=14725"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2021728"
          },
          {
            "name": "GLSA-202309-06",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202309-06"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "samba",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Affected - All versions since Samba 4.0.0, Fixed-In - v4.15.2, v4.14.10 and v4.13.14"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Kerberos acceptors need easy access to stable AD identifiers (eg objectSid). Samba as an AD DC now provides a way for Linux applications to obtain a reliable SID (and samAccountName) in issued tickets."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-20",
              "description": "CWE-20 (Improper Input validation)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-09-17T08:06:24.438Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "url": "https://www.samba.org/samba/security/CVE-2020-25721.html"
        },
        {
          "url": "https://bugzilla.samba.org/show_bug.cgi?id=14725"
        },
        {
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2021728"
        },
        {
          "name": "GLSA-202309-06",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://security.gentoo.org/glsa/202309-06"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2020-25721",
    "datePublished": "2022-03-16T00:00:00.000Z",
    "dateReserved": "2020-09-16T00:00:00.000Z",
    "dateUpdated": "2024-08-04T15:40:36.797Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2020-25722 (GCVE-0-2020-25722)

Vulnerability from cvelistv5 – Published: 2022-02-18 00:00 – Updated: 2024-08-04 15:40

Summary

Multiple flaws were found in the way samba AD DC implemented access and conformance checking of stored data. An attacker could use this flaw to cause total domain compromise.

Severity

No CVSS data available.

CWE

CWE-863

Assigner

redhat

References

3 references

URL	Tags
https://bugzilla.redhat.com/show_bug.cgi?id=2019764
https://www.samba.org/samba/security/CVE-2020-257…
https://security.gentoo.org/glsa/202309-06	vendor-advisory

Impacted products

1 product

Vendor	Product	Version
n/a	samba	Affected: samba 4.15.2, samba 4.14.10, samba 4.13.14

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T15:40:36.640Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2019764"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.samba.org/samba/security/CVE-2020-25722.html"
          },
          {
            "name": "GLSA-202309-06",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202309-06"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "samba",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "samba 4.15.2, samba 4.14.10, samba 4.13.14"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple flaws were found in the way samba AD DC implemented access and conformance checking of stored data. An attacker could use this flaw to cause total domain compromise."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-863",
              "description": "CWE-863",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-09-17T08:06:41.461Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2019764"
        },
        {
          "url": "https://www.samba.org/samba/security/CVE-2020-25722.html"
        },
        {
          "name": "GLSA-202309-06",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://security.gentoo.org/glsa/202309-06"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2020-25722",
    "datePublished": "2022-02-18T00:00:00.000Z",
    "dateReserved": "2020-09-16T00:00:00.000Z",
    "dateUpdated": "2024-08-04T15:40:36.640Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

WID-SEC-W-2022-0302

CVE-2016-2124 (GCVE-0-2016-2124)

CVE-2019-14822 (GCVE-0-2019-14822)

CVE-2019-19906 (GCVE-0-2019-19906)

CVE-2020-15250 (GCVE-0-2020-15250)

CVE-2020-17049 (GCVE-0-2020-17049)

CVE-2020-25717 (GCVE-0-2020-25717)

CVE-2020-25718 (GCVE-0-2020-25718)

CVE-2020-25719 (GCVE-0-2020-25719)

CVE-2020-25721 (GCVE-0-2020-25721)

CVE-2020-25722 (GCVE-0-2020-25722)

Tags

Sightings

Nomenclature