CVE Details for CVE: CVE-2021-45105
Summary
Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3 and 2.3.1) did not protect from uncontrolled recursion from self-referential lookups. This allows an attacker with control over Thread Context Map data to cause a denial of service when a crafted string is interpreted. This issue was fixed in Log4j 2.17.0, 2.12.3, and 2.3.1.
Timestamps
Last major update 20-04-2022 - 00:16
Published 18-12-2021 - 12:15
Last modified 20-04-2022 - 00:16
Vulnerable Configurations
  • cpe:2.3:a:apache:log4j:2.0:*:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.0:-:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.0:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.0:alpha1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.0:alpha1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.0:alpha2:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.0:alpha2:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.0:beta1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.0:beta1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.0:beta2:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.0:beta2:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.0:beta3:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.0:beta3:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.0:beta3-rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.0:beta3-rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.0:beta3-rc2:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.0:beta3-rc2:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.0:beta4:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.0:beta4:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.0:beta4-rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.0:beta4-rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.0:beta5:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.0:beta5:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.0:beta6:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.0:beta6:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.0:beta6-rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.0:beta6-rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.0:beta7:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.0:beta7:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.0:beta7-rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.0:beta7-rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.0:beta7-rc2:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.0:beta7-rc2:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.0:beta8:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.0:beta8:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.0:beta8-rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.0:beta8-rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.0:beta9:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.0:beta9:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.0:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.0:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.0:rc1-rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.0:rc1-rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.0:rc2:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.0:rc2:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.1:*:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.1:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.1:-:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.1:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.1:rc2:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.1:rc2:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.1:rc3:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.1:rc3:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.2:*:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.2:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.3:*:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.3:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.4:*:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.4:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.4.1:*:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.4.1:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.5:*:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.5:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.5:-:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.5:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.5:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.5:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.6:*:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.6:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.6:-:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.6:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.6:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.6:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.6.1:*:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.6.1:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.6.1:-:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.6.1:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.6.1:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.6.1:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.6.2:*:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.6.2:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.6.2:-:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.6.2:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.6.2:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.6.2:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.7:*:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.7:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.7:-:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.7:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.7:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.7:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.7:rc2:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.7:rc2:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.8:*:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.8:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.8:-:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.8:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.8:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.8:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.8.1:*:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.8.1:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.8.1:-:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.8.1:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.8.1:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.8.1:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.8.2:-:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.8.2:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.8.2:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.8.2:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.9.0:-:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.9.0:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.9.0:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.9.0:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.9.1:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.9.1:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.10.0:-:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.10.0:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.10.0:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.10.0:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.11.0:-:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.11.0:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.11.0:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.11.0:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.11.1:-:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.11.1:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.11.1:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.11.1:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.11.2:-:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.11.2:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.11.2:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.11.2:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.11.2:rc2:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.11.2:rc2:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.11.2:rc3:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.11.2:rc3:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.12.0:-:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.12.0:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.12.0:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.12.0:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.12.0:rc2:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.12.0:rc2:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.12.1:-:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.12.1:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.12.1:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.12.1:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.12.2:-:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.12.2:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.12.2:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.12.2:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.13.0:-:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.13.0:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.13.0:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.13.0:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.13.0:rc2:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.13.0:rc2:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.13.1:-:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.13.1:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.13.1:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.13.1:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.13.1:rc2:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.13.1:rc2:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.13.2:-:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.13.2:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.13.2:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.13.2:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.13.3:-:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.13.3:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.13.3:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.13.3:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.14.0:-:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.14.0:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.14.0:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.14.0:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.14.1:-:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.14.1:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.14.1:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.14.1:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.15.0:-:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.15.0:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.15.0:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.15.0:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.15.0:rc2:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.15.0:rc2:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.15.1:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.15.1:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.16.0:-:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.16.0:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:log4j:2.16.0:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:log4j:2.16.0:rc1:*:*:*:*:*:*
  • cpe:2.3:a:netapp:cloud_manager:-:*:*:*:*:*:*:*
    cpe:2.3:a:netapp:cloud_manager:-:*:*:*:*:*:*:*
  • cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
    cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
  • cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*
    cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*
  • cpe:2.3:a:sonicwall:email_security:-:*:*:*:*:*:*:*
    cpe:2.3:a:sonicwall:email_security:-:*:*:*:*:*:*:*
  • cpe:2.3:a:sonicwall:email_security:10.0.9:*:*:*:*:*:*:*
    cpe:2.3:a:sonicwall:email_security:10.0.9:*:*:*:*:*:*:*
  • cpe:2.3:a:sonicwall:network_security_manager:2.2.0:-:*:*:on-premises:*:*:*
    cpe:2.3:a:sonicwall:network_security_manager:2.2.0:-:*:*:on-premises:*:*:*
  • cpe:2.3:a:sonicwall:network_security_manager:2.2.0:r10:*:*:on-premises:*:*:*
    cpe:2.3:a:sonicwall:network_security_manager:2.2.0:r10:*:*:on-premises:*:*:*
  • cpe:2.3:a:sonicwall:network_security_manager:*:*:*:*:saas:*:*:*
    cpe:2.3:a:sonicwall:network_security_manager:*:*:*:*:saas:*:*:*
  • cpe:2.3:a:sonicwall:web_application_firewall:*:*:*:*:*:*:*:*
    cpe:2.3:a:sonicwall:web_application_firewall:*:*:*:*:*:*:*:*
  • cpe:2.3:o:sonicwall:6bk1602-0aa12-0tp0_firmware:*:*:*:*:*:*:*:*
    cpe:2.3:o:sonicwall:6bk1602-0aa12-0tp0_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:h:sonicwall:6bk1602-0aa12-0tp0:-:*:*:*:*:*:*:*
    cpe:2.3:h:sonicwall:6bk1602-0aa12-0tp0:-:*:*:*:*:*:*:*
  • cpe:2.3:o:sonicwall:6bk1602-0aa22-0tp0_firmware:*:*:*:*:*:*:*:*
    cpe:2.3:o:sonicwall:6bk1602-0aa22-0tp0_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:h:sonicwall:6bk1602-0aa22-0tp0:-:*:*:*:*:*:*:*
    cpe:2.3:h:sonicwall:6bk1602-0aa22-0tp0:-:*:*:*:*:*:*:*
  • cpe:2.3:o:sonicwall:6bk1602-0aa32-0tp0_firmware:*:*:*:*:*:*:*:*
    cpe:2.3:o:sonicwall:6bk1602-0aa32-0tp0_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:h:sonicwall:6bk1602-0aa32-0tp0:-:*:*:*:*:*:*:*
    cpe:2.3:h:sonicwall:6bk1602-0aa32-0tp0:-:*:*:*:*:*:*:*
  • cpe:2.3:o:sonicwall:6bk1602-0aa42-0tp0_firmware:*:*:*:*:*:*:*:*
    cpe:2.3:o:sonicwall:6bk1602-0aa42-0tp0_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:h:sonicwall:6bk1602-0aa42-0tp0:-:*:*:*:*:*:*:*
    cpe:2.3:h:sonicwall:6bk1602-0aa42-0tp0:-:*:*:*:*:*:*:*
  • cpe:2.3:o:sonicwall:6bk1602-0aa52-0tp0_firmware:*:*:*:*:*:*:*:*
    cpe:2.3:o:sonicwall:6bk1602-0aa52-0tp0_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:h:sonicwall:6bk1602-0aa52-0tp0:-:*:*:*:*:*:*:*
    cpe:2.3:h:sonicwall:6bk1602-0aa52-0tp0:-:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:business_intelligence:5.5.0.0.0:*:*:*:enterprise:*:*:*
    cpe:2.3:a:oracle:business_intelligence:5.5.0.0.0:*:*:*:enterprise:*:*:*
  • cpe:2.3:a:oracle:communications_diameter_signaling_router:8.3.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:communications_diameter_signaling_router:8.3.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:communications_diameter_signaling_router:8.4:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:communications_diameter_signaling_router:8.4:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:communications_diameter_signaling_router:8.4.0.5:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:communications_diameter_signaling_router:8.4.0.5:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:communications_diameter_signaling_router:8.5.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:communications_diameter_signaling_router:8.5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:communications_diameter_signaling_router:8.5.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:communications_diameter_signaling_router:8.5.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:communications_diameter_signaling_router:8.5.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:communications_diameter_signaling_router:8.5.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:communications_interactive_session_recorder:6.3:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:communications_interactive_session_recorder:6.3:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:communications_interactive_session_recorder:6.4:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:communications_interactive_session_recorder:6.4:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:communications_service_broker:6.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:communications_service_broker:6.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:communications_services_gatekeeper:7.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:communications_services_gatekeeper:7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.7:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.7:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.7.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.7.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.7.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.7.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.7.2.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.7.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.8:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.8:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.8.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.8.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.9:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.9:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.9.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.9.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.1.0.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.1.0.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.1.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:financial_services_model_management_and_governance:8.0.8.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:financial_services_model_management_and_governance:8.0.8.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:financial_services_model_management_and_governance:8.1.0.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:financial_services_model_management_and_governance:8.1.0.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:financial_services_model_management_and_governance:8.1.1.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:financial_services_model_management_and_governance:8.1.1.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:instantis_enterprisetrack:17.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:instantis_enterprisetrack:17.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:instantis_enterprisetrack:17.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:instantis_enterprisetrack:17.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:instantis_enterprisetrack:17.3:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:instantis_enterprisetrack:17.3:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:managed_file_transfer:12.2.1.3.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:managed_file_transfer:12.2.1.3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_gateway:17.12.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_gateway:17.12.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_gateway:17.12.6:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_gateway:17.12.6:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_gateway:17.12.7:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_gateway:17.12.7:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_gateway:17.12.8:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_gateway:17.12.8:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_gateway:17.12.9:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_gateway:17.12.9:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_gateway:17.12.10:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_gateway:17.12.10:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_gateway:17.12.11:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_gateway:17.12.11:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_gateway:18.8.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_gateway:18.8.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_gateway:18.8.8:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_gateway:18.8.8:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_gateway:18.8.8.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_gateway:18.8.8.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_gateway:18.8.9:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_gateway:18.8.9:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_gateway:18.8.11:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_gateway:18.8.11:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_gateway:18.8.12:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_gateway:18.8.12:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_gateway:18.8.13:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_gateway:18.8.13:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_gateway:19.12.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_gateway:19.12.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_gateway:19.12.4:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_gateway:19.12.4:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_gateway:19.12.10:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_gateway:19.12.10:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_gateway:19.12.11:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_gateway:19.12.11:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_gateway:19.12.12:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_gateway:19.12.12:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_gateway:20.12.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_gateway:20.12.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_gateway:20.12.7:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_gateway:20.12.7:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_gateway:21.12.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_gateway:21.12.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:19.12.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:19.12.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:19.12.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:19.12.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:19.12.2.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:19.12.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:19.12.3.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:19.12.3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:19.12.4.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:19.12.4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:19.12.5.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:19.12.5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:19.12.6.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:19.12.6.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:19.12.10:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:19.12.10:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:19.12.14:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:19.12.14:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:19.12.18.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:19.12.18.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:20.12.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:20.12.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:20.12.3:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:20.12.3:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:20.12.12.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:20.12.12.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:21.12.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:21.12.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_unifier:18.8:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_unifier:18.8:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_unifier:19.12:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_unifier:19.12:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_unifier:20.12:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_unifier:20.12:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:primavera_unifier:21.12:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:primavera_unifier:21.12:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_back_office:14.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_back_office:14.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_central_office:14.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_central_office:14.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_eftlink:16.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_eftlink:16.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_eftlink:17.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_eftlink:17.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_eftlink:18.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_eftlink:18.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_eftlink:19.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_eftlink:19.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_eftlink:20.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_eftlink:20.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_integration_bus:14.1.3:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_integration_bus:14.1.3:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_integration_bus:14.1.3.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_integration_bus:14.1.3.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_integration_bus:15.0.3.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_integration_bus:15.0.3.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_integration_bus:16.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_integration_bus:16.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_integration_bus:16.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_integration_bus:16.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_integration_bus:16.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_integration_bus:16.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_integration_bus:19.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_integration_bus:19.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_integration_bus:19.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_integration_bus:19.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_integration_bus:19.0.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_integration_bus:19.0.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_invoice_matching:15.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_invoice_matching:15.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_invoice_matching:16.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_invoice_matching:16.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_order_broker:16.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_order_broker:16.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_order_broker:18.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_order_broker:18.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_order_broker:19.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_order_broker:19.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_order_management_system:19.5:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_order_management_system:19.5:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_point-of-service:14.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_point-of-service:14.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_predictive_application_server:14.1.3.46:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_predictive_application_server:14.1.3.46:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_predictive_application_server:15.0.3.115:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_predictive_application_server:15.0.3.115:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_predictive_application_server:16.0.3.240:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_predictive_application_server:16.0.3.240:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_price_management:13.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_price_management:13.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_price_management:14.0.4:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_price_management:14.0.4:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_price_management:14.1.3.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_price_management:14.1.3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_price_management:15.0.3.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_price_management:15.0.3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_price_management:16.0.3.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_price_management:16.0.3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_returns_management:14.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_returns_management:14.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_service_backbone:14.1.3:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_service_backbone:14.1.3:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_service_backbone:14.1.3.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_service_backbone:14.1.3.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_service_backbone:15.0.3.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_service_backbone:15.0.3.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_service_backbone:16.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_service_backbone:16.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_service_backbone:16.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_service_backbone:16.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_service_backbone:19.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_service_backbone:19.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_service_backbone:19.0.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_service_backbone:19.0.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:-:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:-:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:8.1.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:8.1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:8.2.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:8.2.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:16.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:16.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:16.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:16.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:17.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:17.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:18.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:18.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:18.7:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:18.7:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:18.8:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:18.8:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:18.9:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:18.9:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:18.10:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:18.10:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:18.11:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:18.11:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:19.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:19.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:19.7:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:19.7:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:19.8:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:19.8:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:19.10:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:19.10:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:20.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:20.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:20.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:20.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:20.5:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:20.5:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:20.6:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:20.6:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:20.8:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:20.8:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:20.12:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:20.12:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:21.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:21.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:21.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:21.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:21.9:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:21.9:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:siebel_ui_framework:21.12:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:siebel_ui_framework:21.12:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
CAPEC
Click the CAPEC title to display a description
  • Applications often need to transform data in and out of the XML format by using an XML parser. It may be possible for an adversary to inject data that may have an adverse effect on the XML parser when it is being processed. By nesting XML data and causing this data to be continuously self-referential, an adversary can cause the XML parser to consume more resources while processing, causing excessive memory consumption and CPU utilization. An adversary's goal is to leverage parser failure to their advantage. In most cases this type of an attack will result in a XML Denial of Service (XDoS) due to an application becoming unstable, freezing, or crashing. However it may be possible to cause a crash resulting in arbitrary code execution, leading to a jump from the data plane to the control plane [REF-89]. XDoS is most closely associated with web services, SOAP, and Rest, because remote service requesters can post malicious XML payloads to the service provider designed to exhaust the service provider's memory, CPU, and/or disk space. The main weakness in XDoS is that the service provider generally must inspect, parse, and validate the XML messages to determine routing, workflow, security considerations, and so on. It is exactly these inspection, parsing, and validation routines that XDoS targets. This attack exploits the loosely coupled nature of web services, where the service provider has little to no control over the service requester and any messages the service requester sends.
  • Applications often need to transform data in and out of serialized data formats, such as XML and YAML, by using a data parser. It may be possible for an adversary to inject data that may have an adverse effect on the parser when it is being processed. By supplying oversized payloads in input vectors that will be processed by the parser, an adversary can cause the parser to consume more resources while processing, causing excessive memory consumption and CPU utilization, and potentially cause execution of arbitrary code. An adversary's goal is to leverage parser failure to their advantage. DoS is most closely associated with web services, SOAP, and Rest, because remote service requesters can post malicious data payloads to the service provider designed to exhaust the service provider's memory, CPU, and/or disk space. This attack exploits the loosely coupled nature of web services, where the service provider has little to no control over the service requester and any messages the service requester sends.
CWE
CVSS
Base
4.3
Impact
2.9
Exploitability
8.6
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
CVSS3
Base
5.9
Impact
3.6
Exploitability
2.2
Access
Attack ComplexityAttack vectorPrivileges RequiredScopeUser Interaction
HIGH NETWORK NONE UNCHANGED NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE HIGH
VIA4 references
cvss-vector via4
AV:N/AC:M/Au:N/C:N/I:N/A:P
cvss3-vector via4
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H