CVE-2020-14796

Published Oct 21, 2020
Last updated 8 days ago
CVSS low 3.1
Overview

Description: Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N).
Source: secalert_us@oracle.com
NVD status: Analyzed
Risk scores

CVSS 3.1

Type: Secondary
Base score: 3.1
Impact score: 1.4
Exploitability score: 1.6
Vector string: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N
Severity: LOW
CVSS 2.0

Type: Primary
Base score: 2.6
Impact score: 2.9
Exploitability score: 4.9
Vector string: AV:N/AC:H/Au:N/C:P/I:N/A:N
Weaknesses

nvd@nist.gov: NVD-CWE-noinfo
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:7:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E78B7C5A-FA51-41E4-AAB0-C6DED2EFCF4C"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:7:update1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "02011EDC-20A7-4A16-A592-7C76E0037997"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:7:update10:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AC6D4652-1226-4C60-BEDF-01EBF8AC0849"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:7:update101:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3C1F9ED7-7D93-41F4-9130-15BA734420AC"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:7:update11:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1CF9CDF1-95D3-4125-A73F-396D2280FC4E"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:7:update111:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A13266DC-F8D9-4F30-987F-65BBEAF8D3A8"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:7:update121:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C28388AB-CFC9-4749-A90F-383F5B905EA9"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:7:update13:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DA1B00F9-A81C-48B7-8DAA-F394DDF323F3"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:7:update131:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CA7AD457-6CE6-4925-8D94-A907B40233D9"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:7:update141:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A6F3FDD1-7CAC-4B84-ABB7-64E9D3FBD708"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:7:update15:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5480E5AD-DB46-474A-9B57-84ED088A75FA"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:7:update151:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "881A4AE9-6012-4E91-98BE-0A352CC20703"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:7:update161:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7E1E1079-57D9-473B-A017-964F4745F329"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:7:update17:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B8D6446E-2915-4F12-87BE-E7420BC2626E"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:7:update171:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "564EDCE3-16E6-401D-8A43-032D1F8875E1"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:7:update181:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "08278802-D31B-488A-BA6A-EBC816DF883A"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:7:update191:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "72BDA05A-C8BD-472E-8465-EE1F3E5D8CF6"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:7:update2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7BBB0969-565E-43E2-B067-A10AAA5F1958"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:7:update201:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D78BE95D-6270-469A-8035-FCDDB398F952"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:7:update21:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "88C24F40-3150-4584-93D9-8307DE04EEE9"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:7:update211:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E0FC5A03-FF11-4787-BBF1-3ACF93A21F2D"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:7:update221:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "19626B36-62FC-4497-A2E1-7D6CD9839B19"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:7:update231:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5713AEBD-35F6-44E8-A0CC-A42830D7AE20"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:7:update241:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8BE0C04B-440E-4B35-ACC8-6264514F764C"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:7:update25:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "555EC2A6-0475-48ED-AE0C-B306714A9333"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:7:update251:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EC1CF2AD-3F7A-4EF3-BD41-117A21553A9F"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:7:update261:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "02C55E2E-AEDE-455C-B128-168C918B5D97"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:7:update271:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "81831D37-6597-441B-87DE-38F7191BEA42"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "70892D06-6E75-4425-BBF0-4B684EC62A1C"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:milestone1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7A165D71-71CC-4E6A-AA4F-FF8DB5B9A5AB"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:milestone2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7417B2BB-9AC2-4AF4-A828-C89A0735AD92"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:milestone3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6A0A57B5-6F88-4288-9CDE-F6613FE068D2"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:milestone4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "67ED8559-C348-4932-B7CE-CB96976A30EC"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:milestone5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "40AC3D91-263F-4345-9FAA-0E573EA64590"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:milestone6:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DD92AFA9-81F8-48D4-B79A-E7F066F69A99"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:milestone7:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2C4B2F24-A730-4818-90C8-A2D90C081F03"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:milestone8:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "464087F2-C285-4574-957E-CE0663F07DE0"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:milestone9:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3E9BB880-A4F6-4887-8BB9-47AA298753D5"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update101:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "18DCFF53-B298-4534-AB5C-8A5EF59C616F"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update102:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "083419F8-FDDF-4E36-88F8-857DB317C1D1"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update11:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D7A74F65-57E8-4C9A-BA96-5EF401504F13"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update111:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0D0B90FC-57B6-4315-9B29-3C36E58B2CF5"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update112:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "07812576-3C35-404C-A7D7-9BE9E3D76E00"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update121:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "00C52B1C-5447-4282-9667-9EBE0720B423"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update131:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "92BB9EB0-0C12-4E77-89EE-FB77097841B8"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update141:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FF9D5DCE-2E8F-42B9-9038-AEA7E8C8CFFD"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update151:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ABC0E7BB-F8B7-4369-9910-71240E4073A3"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update152:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "551B2640-8CEC-4C24-AF8B-7A7CEF864D9D"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update161:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0AE30779-48FB-451E-8CE1-F469F93B8772"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update162:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "60590FDE-7156-4314-A012-AA38BD2ADDC9"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update171:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BE51AD3A-8331-4E8F-9DB1-7A0051731DFB"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update172:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F24F6122-2256-41B6-9033-794C6424ED99"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update181:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0EAFA79E-8C7A-48CF-8868-11378FE4B26F"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update191:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D1D6F19F-59B5-4BB6-AD35-013384025970"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update192:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E7BA97BC-3ADA-465A-835B-6C3C5F416B56"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update20:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B71F77A4-B7EB-47A1-AAFD-431A7D040B86"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update201:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "91D6BEA9-5943-44A4-946D-CEAA9BA99376"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update202:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C079A3E0-44EB-4B9C-B4FC-B7621D165C3B"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update211:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2CB74086-14B8-4237-8357-E0C6B5BB8313"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update212:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3ABED20A-7C34-4E86-9AFB-F4DC9ECBB3A9"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update221:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "00C2B9C9-1177-4DA6-96CE-55F37F383F99"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update222:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "435CF189-0BD8-40DF-A0DC-99862CDEAF8A"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update231:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "12A3F367-33AD-47C3-BFDC-871A17E72C94"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update232:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A18F994F-72CA-4AF5-A7D1-9F5AEA286D85"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update241:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "78261932-7373-4F16-91E0-1A72ADBEBC3E"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update242:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9BD90D3D-9B3A-4101-9A8A-5090F0A9719F"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update25:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B38C0276-0EBD-4E0B-BFCF-4DDECACE04E2"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update252:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F5A40B8A-D428-4008-9F21-AF21394C51D1"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:8:update262:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FEC5B777-01E1-45EE-AF95-C3BD1F098B2F"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "465CFA59-8E94-415A-ACF0-E678826813BE"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:11.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "85BDC28A-484B-4D14-8D68-890450DCE3F6"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:11.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "635DEFDD-4840-48C6-AB1C-ADAFF4A1E50C"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:11.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "40A221DB-1684-4C87-B576-0969FE13E1AA"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:11.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DE6A1B86-3688-4A13-AB37-DBD0DA323202"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:11.0.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "17E0085B-4748-4F79-BEF6-CD9C3D2E6FE1"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:11.0.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3C4DAA76-EAA9-4C85-A92A-181EA49F3270"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:11.0.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "19FC2907-1712-4E81-AC35-E3A15BF27606"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:11.0.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "140F8ECC-F5DB-474E-ADA4-99EC9FBA45EE"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FD3A4AFB-8D76-4B16-A306-2A10F23E51EA"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:13.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1704C904-6E0A-4972-BC94-326D8BC6315A"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:13.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "35FA24D1-8BDA-4DD4-A74C-C041C44A1455"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:13.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "790FD30A-CE27-4A1E-A753-BE0A6B17B262"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:13.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "254B5086-305E-4A19-8845-02BF7B8AA3F7"
          },
          {
            "criteria": "cpe:2.3:a:oracle:openjdk:15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "65118341-0005-405D-B688-A3D98FD97A76"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update271:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3D07DCC8-4D24-4B8F-B72E-83DC311BD683"
          },
          {
            "criteria": "cpe:2.3:a:oracle:jdk:1.8.0:update261:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AAC508A2-CF8A-4037-87C8-B87E19ABC644"
          },
          {
            "criteria": "cpe:2.3:a:oracle:jdk:11.0.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "41F90A96-7F92-4DB8-9B76-BA558FDF9BBF"
          },
          {
            "criteria": "cpe:2.3:a:oracle:jdk:15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F3917541-7ACF-4033-86EC-DB54938DBF41"
          },
          {
            "criteria": "cpe:2.3:a:oracle:jre:1.7.0:update271:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CD023425-3457-4ABC-B1CF-9BA2F68924F8"
          },
          {
            "criteria": "cpe:2.3:a:oracle:jre:1.8.0:update261:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "240E3859-040C-4E94-806C-E40E9E2C5EA2"
          },
          {
            "criteria": "cpe:2.3:a:oracle:jre:11.0.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EB90BAC0-EC64-48BF-9B22-41F5B540AB04"
          },
          {
            "criteria": "cpe:2.3:a:oracle:jre:15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4806C163-0E76-49C3-BE42-F90E4B451051"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7EF6650C-558D-45C8-AE7D-136EE70CB6D7"
          },
          {
            "criteria": "cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BD075607-09B7-493E-8611-66D041FFDA62",
            "versionStartIncluding": "7.3"
          },
          {
            "criteria": "cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:vmware_vsphere:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0CB28AF5-5AF0-4475-A7B6-12E1795FFDCB",
            "versionStartIncluding": "9.5"
          },
          {
            "criteria": "cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AFA6AD29-34C2-4FEC-9585-C42C6615C6CC",
            "versionEndIncluding": "11.60.1",
            "versionStartIncluding": "11.0.0"
          },
          {
            "criteria": "cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0D9CC59D-6182-4B5E-96B5-226FCD343916"
          },
          {
            "criteria": "cpe:2.3:a:netapp:e-series_santricity_web_services_proxy:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "23F148EC-6D6D-4C4F-B57C-CFBCD3D32B41"
          },
          {
            "criteria": "cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A3C19813-E823-456A-B1CE-EC0684CE1953"
          },
          {
            "criteria": "cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F1BE6C1F-2565-4E97-92AA-16563E5660A5"
          },
          {
            "criteria": "cpe:2.3:a:netapp:oncommand_unified_manager:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C18CA4B5-28FD-4199-B1F0-B1E59E920370"
          },
          {
            "criteria": "cpe:2.3:a:netapp:santricity_cloud_connector:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AB15BCF1-1B1D-49D8-9B76-46DCB10044DB"
          },
          {
            "criteria": "cpe:2.3:a:netapp:santricity_unified_manager:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A372B177-F740-4655-865C-31777A6E140B"
          },
          {
            "criteria": "cpe:2.3:a:netapp:snapmanager:-:-:*:*:*:oracle:*:*",
            "vulnerable": true,
            "matchCriteriaId": "25BBBC1A-228F-45A6-AE95-DB915EDF84BD"
          },
          {
            "criteria": "cpe:2.3:a:netapp:snapmanager:-:-:*:*:*:sap:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C57D2B31-9696-4451-BA04-D093FFCF7E39"
          },
          {
            "criteria": "cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A6E9EF0C-AFA8-4F7B-9FDC-1E0F7C26E737"
          },
          {
            "criteria": "cpe:2.3:h:netapp:hci_storage_node:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "02DEB4FB-A21D-4CB1-B522-EEE5093E8521"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:opensuse:leap:15.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B009C22E-30A4-4288-BCF6-C3E81DEAF45A"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252"
          },
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
References

Sources include official advisories and independent security research.
Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References
