CVE-2022-22965

KEV
Published: Apr 01, 2022 Last Modified: Ott 30, 2025
ExploitDB:
Other exploit source:
Google Dorks:
CRITICAL 9,8
Source: [email protected]
Attack Vector: network
Attack Complexity: low
Privileges Required: none
User Interaction: none
Scope: unchanged
Confidentiality: high
Integrity: high
Availability: high
HIGH 7,5
Source: [email protected]
Access Vector: network
Access Complexity: low
Authentication: none
Confidentiality: partial
Integrity: partial
Availability: partial

Description

AI Translation Available

A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data binding. The specific exploit requires the application to run on Tomcat as a WAR deployment. If the application is deployed as a Spring Boot executable jar, i.e. the default, it is not vulnerable to the exploit. However, the nature of the vulnerability is more general, and there may be other ways to exploit it.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score
0,9444
Percentile
1,0th
Updated

EPSS Score Trend (Last 90 Days)

94

Improper Control of Generation of Code ('Code Injection')

Draft
Abstraction: Base Structure: Simple
Common Consequences
Security Scopes Affected:
Access Control Integrity Confidentiality Availability Non-Repudiation
Potential Impacts:
Bypass Protection Mechanism Gain Privileges Or Assume Identity Execute Unauthorized Code Or Commands Hide Activities
Applicable Platforms
Languages: Interpreted
Technologies: AI/ML
Likelihood of Exploit: Medium
View CWE Details
Application

Communications Policy Management by Oracle

Product Information
Vendor Oracle
Product Communications Policy Management
Version 12.6.0.0.0
cpe:2.3:a:oracle:communications_policy_management:12.6.0.0.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Sipass Integrated by Siemens

Product Information
Vendor Siemens
Product Sipass Integrated
Version 2.85
cpe:2.3:a:siemens:sipass_integrated:2.85:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Flex Appliance by Veritas

Product Information
Vendor Veritas
Product Flex Appliance
Version 2.0.2
cpe:2.3:a:veritas:flex_appliance:2.0.2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Communications Cloud Native Core Policy by Oracle

Product Information
Vendor Oracle
Product Communications Cloud Native Core Policy
Version 22.1.0
cpe:2.3:a:oracle:communications_cloud_native_core_policy:22.1.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Weblogic Server by Oracle

Product Information
Vendor Oracle
Product Weblogic Server
Version 14.1.1.0.0
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Communications Cloud Native Core Network Function Cloud Native Environment by Oracle

Product Information
Vendor Oracle
Product Communications Cloud Native Core Network Function Cloud Native Environment
Version 22.1.0
cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:22.1.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Financial Services Behavior Detection Platform by Oracle

Product Information
Vendor Oracle
Product Financial Services Behavior Detection Platform
Version 8.1.1.1
cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.1.1.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Sd-Wan Edge by Oracle

Product Information
Vendor Oracle
Product Sd-Wan Edge
Version 9.1
cpe:2.3:a:oracle:sd-wan_edge:9.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Financial Services Enterprise Case Management by Oracle

Product Information
Vendor Oracle
Product Financial Services Enterprise Case Management
Version 8.1.2.0
cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.1.2.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Sinec Network Management System by Siemens

Product Information
Vendor Siemens
Product Sinec Network Management System
Version Range Affected
To 1.0.3 (exclusive)
cpe:2.3:a:siemens:sinec_network_management_system:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Cx Cloud Agent by Cisco

Product Information
Vendor Cisco
Product Cx Cloud Agent
Version Range Affected
To 2.1.0 (exclusive)
cpe:2.3:a:cisco:cx_cloud_agent:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Communications Unified Inventory Management by Oracle

Product Information
Vendor Oracle
Product Communications Unified Inventory Management
Version 7.5.0
cpe:2.3:a:oracle:communications_unified_inventory_management:7.5.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Financial Services Analytical Applications Infrastructure by Oracle

Product Information
Vendor Oracle
Product Financial Services Analytical Applications Infrastructure
Version 8.1.2.0
cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.1.2.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Access Appliance by Veritas

Product Information
Vendor Veritas
Product Access Appliance
Version 7.4.3.200
cpe:2.3:a:veritas:access_appliance:7.4.3.200:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Access Appliance by Veritas

Product Information
Vendor Veritas
Product Access Appliance
Version 7.4.3
cpe:2.3:a:veritas:access_appliance:7.4.3:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Communications Cloud Native Core Automated Test Suite by Oracle

Product Information
Vendor Oracle
Product Communications Cloud Native Core Automated Test Suite
Version 22.1.0
cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:22.1.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Retail Bulk Data Integration by Oracle

Product Information
Vendor Oracle
Product Retail Bulk Data Integration
Version 16.0.3
cpe:2.3:a:oracle:retail_bulk_data_integration:16.0.3:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Retail Customer Management And Segmentation Foundation by Oracle

Product Information
Vendor Oracle
Product Retail Customer Management And Segmentation Foundation
Version 18.0
cpe:2.3:a:oracle:retail_customer_management_and_segmentation_foundation:18.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Communications Cloud Native Core Network Slice Selection Function by Oracle

Product Information
Vendor Oracle
Product Communications Cloud Native Core Network Slice Selection Function
Version 1.8.0
cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:1.8.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Communications Cloud Native Core Unified Data Repository by Oracle

Product Information
Vendor Oracle
Product Communications Cloud Native Core Unified Data Repository
Version 22.1.0
cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:22.1.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Financial Services Analytical Applications Infrastructure by Oracle

Product Information
Vendor Oracle
Product Financial Services Analytical Applications Infrastructure
Version 8.1.1
cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.1.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Hardware

Netbackup Appliance by Veritas

Product Information
Vendor Veritas
Product Netbackup Appliance
Version 4.0.0.1
cpe:2.3:h:veritas:netbackup_appliance:4.0.0.1:maintenance_release1:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Operation Scheduler by Siemens

Product Information
Vendor Siemens
Product Operation Scheduler
Version Range Affected
To 2.0.4 (exclusive)
cpe:2.3:a:siemens:operation_scheduler:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Financial Services Enterprise Case Management by Oracle

Product Information
Vendor Oracle
Product Financial Services Enterprise Case Management
Version 8.1.1.0
cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.1.1.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Netbackup Flex Scale Appliance by Veritas

Product Information
Vendor Veritas
Product Netbackup Flex Scale Appliance
Version 3.0
cpe:2.3:a:veritas:netbackup_flex_scale_appliance:3.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Weblogic Server by Oracle

Product Information
Vendor Oracle
Product Weblogic Server
Version 12.2.1.4.0
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Spring Framework by Vmware

Product Information
Vendor Vmware
Product Spring Framework
Version Range Affected
From 5.3.0 (inclusive)
To 5.3.18 (exclusive)
cpe:2.3:a:vmware:spring_framework:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Hardware

Netbackup Virtual Appliance by Veritas

Product Information
Vendor Veritas
Product Netbackup Virtual Appliance
Version 4.0.0.1
cpe:2.3:h:veritas:netbackup_virtual_appliance:4.0.0.1:maintenance_release2:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Hardware

Netbackup Appliance by Veritas

Product Information
Vendor Veritas
Product Netbackup Appliance
Version 4.1.0.1
cpe:2.3:h:veritas:netbackup_appliance:4.1.0.1:maintenance_release1:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Hardware

Netbackup Appliance by Veritas

Product Information
Vendor Veritas
Product Netbackup Appliance
Version 4.0
cpe:2.3:h:veritas:netbackup_appliance:4.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Hardware

Netbackup Virtual Appliance by Veritas

Product Information
Vendor Veritas
Product Netbackup Virtual Appliance
Version 4.1.0.1
cpe:2.3:h:veritas:netbackup_virtual_appliance:4.1.0.1:maintenance_release1:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Netbackup Flex Scale Appliance by Veritas

Product Information
Vendor Veritas
Product Netbackup Flex Scale Appliance
Version 2.1
cpe:2.3:a:veritas:netbackup_flex_scale_appliance:2.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Retail Financial Integration by Oracle

Product Information
Vendor Oracle
Product Retail Financial Integration
Version 16.0.3
cpe:2.3:a:oracle:retail_financial_integration:16.0.3:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Financial Services Behavior Detection Platform by Oracle

Product Information
Vendor Oracle
Product Financial Services Behavior Detection Platform
Version 8.1.2.0
cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.1.2.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Communications Cloud Native Core Binding Support Function by Oracle

Product Information
Vendor Oracle
Product Communications Cloud Native Core Binding Support Function
Version 22.1.3
cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.1.3:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Communications Cloud Native Core Network Repository Function by Oracle

Product Information
Vendor Oracle
Product Communications Cloud Native Core Network Repository Function
Version 1.15.0
cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:1.15.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Spring Framework by Vmware

Product Information
Vendor Vmware
Product Spring Framework
Version Range Affected
To 5.2.20 (exclusive)
cpe:2.3:a:vmware:spring_framework:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Retail Financial Integration by Oracle

Product Information
Vendor Oracle
Product Retail Financial Integration
Version 19.0.1
cpe:2.3:a:oracle:retail_financial_integration:19.0.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Sd-Wan Edge by Oracle

Product Information
Vendor Oracle
Product Sd-Wan Edge
Version 9.0
cpe:2.3:a:oracle:sd-wan_edge:9.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Retail Financial Integration by Oracle

Product Information
Vendor Oracle
Product Retail Financial Integration
Version 14.1.3.2
cpe:2.3:a:oracle:retail_financial_integration:14.1.3.2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Hardware

Netbackup Virtual Appliance by Veritas

Product Information
Vendor Veritas
Product Netbackup Virtual Appliance
Version 4.1.0.1
cpe:2.3:h:veritas:netbackup_virtual_appliance:4.1.0.1:maintenance_release2:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Mysql Enterprise Monitor by Oracle

Product Information
Vendor Oracle
Product Mysql Enterprise Monitor
Version Range Affected
To 8.0.29 (exclusive)
cpe:2.3:a:oracle:mysql_enterprise_monitor:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Product Lifecycle Analytics by Oracle

Product Information
Vendor Oracle
Product Product Lifecycle Analytics
Version 3.6.1
cpe:2.3:a:oracle:product_lifecycle_analytics:3.6.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Retail Integration Bus by Oracle

Product Information
Vendor Oracle
Product Retail Integration Bus
Version 16.0.3
cpe:2.3:a:oracle:retail_integration_bus:16.0.3:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Sipass Integrated by Siemens

Product Information
Vendor Siemens
Product Sipass Integrated
Version 2.80
cpe:2.3:a:siemens:sipass_integrated:2.80:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Retail Xstore Point Of Service by Oracle

Product Information
Vendor Oracle
Product Retail Xstore Point Of Service
Version 21.0.0
cpe:2.3:a:oracle:retail_xstore_point_of_service:21.0.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Commerce Platform by Oracle

Product Information
Vendor Oracle
Product Commerce Platform
Version 11.3.2
cpe:2.3:a:oracle:commerce_platform:11.3.2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Flex Appliance by Veritas

Product Information
Vendor Veritas
Product Flex Appliance
Version 2.0
cpe:2.3:a:veritas:flex_appliance:2.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Retail Integration Bus by Oracle

Product Information
Vendor Oracle
Product Retail Integration Bus
Version 14.1.3.2
cpe:2.3:a:oracle:retail_integration_bus:14.1.3.2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Hardware

Netbackup Virtual Appliance by Veritas

Product Information
Vendor Veritas
Product Netbackup Virtual Appliance
Version 4.1
cpe:2.3:h:veritas:netbackup_virtual_appliance:4.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Siveillance Identity by Siemens

Product Information
Vendor Siemens
Product Siveillance Identity
Version 1.5
cpe:2.3:a:siemens:siveillance_identity:1.5:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Flex Appliance by Veritas

Product Information
Vendor Veritas
Product Flex Appliance
Version 2.0.1
cpe:2.3:a:veritas:flex_appliance:2.0.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Retail Customer Management And Segmentation Foundation by Oracle

Product Information
Vendor Oracle
Product Retail Customer Management And Segmentation Foundation
Version 19.0
cpe:2.3:a:oracle:retail_customer_management_and_segmentation_foundation:19.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Retail Integration Bus by Oracle

Product Information
Vendor Oracle
Product Retail Integration Bus
Version 15.0.3.1
cpe:2.3:a:oracle:retail_integration_bus:15.0.3.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Financial Services Behavior Detection Platform by Oracle

Product Information
Vendor Oracle
Product Financial Services Behavior Detection Platform
Version 8.1.1.0
cpe:2.3:a:oracle:financial_services_behavior_detection_platform:8.1.1.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Communications Cloud Native Core Automated Test Suite by Oracle

Product Information
Vendor Oracle
Product Communications Cloud Native Core Automated Test Suite
Version 1.9.0
cpe:2.3:a:oracle:communications_cloud_native_core_automated_test_suite:1.9.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Hardware

Netbackup Virtual Appliance by Veritas

Product Information
Vendor Veritas
Product Netbackup Virtual Appliance
Version 4.0.0.1
cpe:2.3:h:veritas:netbackup_virtual_appliance:4.0.0.1:maintenance_release1:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Retail Xstore Point Of Service by Oracle

Product Information
Vendor Oracle
Product Retail Xstore Point Of Service
Version 20.0.1
cpe:2.3:a:oracle:retail_xstore_point_of_service:20.0.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Communications Unified Inventory Management by Oracle

Product Information
Vendor Oracle
Product Communications Unified Inventory Management
Version 7.4.1
cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Retail Customer Management And Segmentation Foundation by Oracle

Product Information
Vendor Oracle
Product Retail Customer Management And Segmentation Foundation
Version 17.0
cpe:2.3:a:oracle:retail_customer_management_and_segmentation_foundation:17.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Retail Merchandising System by Oracle

Product Information
Vendor Oracle
Product Retail Merchandising System
Version 19.0.1
cpe:2.3:a:oracle:retail_merchandising_system:19.0.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Communications Cloud Native Core Policy by Oracle

Product Information
Vendor Oracle
Product Communications Cloud Native Core Policy
Version 1.15.0
cpe:2.3:a:oracle:communications_cloud_native_core_policy:1.15.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Communications Cloud Native Core Console by Oracle

Product Information
Vendor Oracle
Product Communications Cloud Native Core Console
Version 22.1.0
cpe:2.3:a:oracle:communications_cloud_native_core_console:22.1.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Communications Cloud Native Core Network Repository Function by Oracle

Product Information
Vendor Oracle
Product Communications Cloud Native Core Network Repository Function
Version 22.1.0
cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:22.1.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Retail Integration Bus by Oracle

Product Information
Vendor Oracle
Product Retail Integration Bus
Version 19.0.1
cpe:2.3:a:oracle:retail_integration_bus:19.0.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Communications Cloud Native Core Security Edge Protection Proxy by Oracle

Product Information
Vendor Oracle
Product Communications Cloud Native Core Security Edge Protection Proxy
Version 1.7.0
cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:1.7.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Hardware

Netbackup Appliance by Veritas

Product Information
Vendor Veritas
Product Netbackup Appliance
Version 4.0.0.1
cpe:2.3:h:veritas:netbackup_appliance:4.0.0.1:maintenance_release2:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Communications Cloud Native Core Network Function Cloud Native Environment by Oracle

Product Information
Vendor Oracle
Product Communications Cloud Native Core Network Function Cloud Native Environment
Version 1.10.0
cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:1.10.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Hardware

Netbackup Virtual Appliance by Veritas

Product Information
Vendor Veritas
Product Netbackup Virtual Appliance
Version 4.0
cpe:2.3:h:veritas:netbackup_virtual_appliance:4.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Communications Cloud Native Core Unified Data Repository by Oracle

Product Information
Vendor Oracle
Product Communications Cloud Native Core Unified Data Repository
Version 1.15.0
cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:1.15.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Retail Financial Integration by Oracle

Product Information
Vendor Oracle
Product Retail Financial Integration
Version 15.0.3.1
cpe:2.3:a:oracle:retail_financial_integration:15.0.3.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Siveillance Identity by Siemens

Product Information
Vendor Siemens
Product Siveillance Identity
Version 1.6
cpe:2.3:a:siemens:siveillance_identity:1.6:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Simatic Speech Assistant For Machines by Siemens

Product Information
Vendor Siemens
Product Simatic Speech Assistant For Machines
Version Range Affected
To 1.2.1 (exclusive)
cpe:2.3:a:siemens:simatic_speech_assistant_for_machines:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Communications Cloud Native Core Network Slice Selection Function by Oracle

Product Information
Vendor Oracle
Product Communications Cloud Native Core Network Slice Selection Function
Version 1.15.0
cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:1.15.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Communications Cloud Native Core Security Edge Protection Proxy by Oracle

Product Information
Vendor Oracle
Product Communications Cloud Native Core Security Edge Protection Proxy
Version 22.1.0
cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.1.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Communications Cloud Native Core Network Slice Selection Function by Oracle

Product Information
Vendor Oracle
Product Communications Cloud Native Core Network Slice Selection Function
Version 22.1.0
cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:22.1.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Communications Cloud Native Core Console by Oracle

Product Information
Vendor Oracle
Product Communications Cloud Native Core Console
Version 1.9.0
cpe:2.3:a:oracle:communications_cloud_native_core_console:1.9.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Flex Appliance by Veritas

Product Information
Vendor Veritas
Product Flex Appliance
Version 1.3
cpe:2.3:a:veritas:flex_appliance:1.3:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Communications Cloud Native Core Network Exposure Function by Oracle

Product Information
Vendor Oracle
Product Communications Cloud Native Core Network Exposure Function
Version 22.1.0
cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.1.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Communications Unified Inventory Management by Oracle

Product Information
Vendor Oracle
Product Communications Unified Inventory Management
Version 7.4.2
cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Access Appliance by Veritas

Product Information
Vendor Veritas
Product Access Appliance
Version 7.4.3.100
cpe:2.3:a:veritas:access_appliance:7.4.3.100:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Flex Appliance by Veritas

Product Information
Vendor Veritas
Product Flex Appliance
Version 2.1
cpe:2.3:a:veritas:flex_appliance:2.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Hardware

Netbackup Virtual Appliance by Veritas

Product Information
Vendor Veritas
Product Netbackup Virtual Appliance
Version 4.0.0.1
cpe:2.3:h:veritas:netbackup_virtual_appliance:4.0.0.1:maintenance_release3:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Weblogic Server by Oracle

Product Information
Vendor Oracle
Product Weblogic Server
Version 12.2.1.3.0
cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Hardware

Netbackup Appliance by Veritas

Product Information
Vendor Veritas
Product Netbackup Appliance
Version 4.0.0.1
cpe:2.3:h:veritas:netbackup_appliance:4.0.0.1:maintenance_release3:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Retail Merchandising System by Oracle

Product Information
Vendor Oracle
Product Retail Merchandising System
Version 16.0.3
cpe:2.3:a:oracle:retail_merchandising_system:16.0.3:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Hardware

Netbackup Appliance by Veritas

Product Information
Vendor Veritas
Product Netbackup Appliance
Version 4.1
cpe:2.3:h:veritas:netbackup_appliance:4.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Hardware

Netbackup Appliance by Veritas

Product Information
Vendor Veritas
Product Netbackup Appliance
Version 4.1.0.1
cpe:2.3:h:veritas:netbackup_appliance:4.1.0.1:maintenance_release2:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Financial Services Enterprise Case Management by Oracle

Product Information
Vendor Oracle
Product Financial Services Enterprise Case Management
Version 8.1.1.1
cpe:2.3:a:oracle:financial_services_enterprise_case_management:8.1.1.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
https://www.cisa.gov/known-exploited-vulnerabilities-catalo…
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022…
http://packetstormsecurity.com/files/166713/Spring4Shell-Co…
http://packetstormsecurity.com/files/166713/Spring4Shell-Code-Execution.html
http://packetstormsecurity.com/files/167011/Spring4Shell-Sp…
http://packetstormsecurity.com/files/167011/Spring4Shell-Spring-Framework-Class…
https://cert-portal.siemens.com/productcert/pdf/ssa-254054.…
https://cert-portal.siemens.com/productcert/pdf/ssa-254054.pdf
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-…
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0005
https://tanzu.vmware.com/security/cve-2022-22965
https://tanzu.vmware.com/security/cve-2022-22965
https://tools.cisco.com/security/center/content/CiscoSecuri…
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-…
https://www.kb.cert.org/vuls/id/970766
https://www.kb.cert.org/vuls/id/970766
https://www.oracle.com/security-alerts/cpuapr2022.html
https://www.oracle.com/security-alerts/cpuapr2022.html
https://www.oracle.com/security-alerts/cpujul2022.html
https://www.oracle.com/security-alerts/cpujul2022.html
http://packetstormsecurity.com/files/166713/Spring4Shell-Co…
http://packetstormsecurity.com/files/166713/Spring4Shell-Code-Execution.html
http://packetstormsecurity.com/files/167011/Spring4Shell-Sp…
http://packetstormsecurity.com/files/167011/Spring4Shell-Spring-Framework-Class…
https://cert-portal.siemens.com/productcert/pdf/ssa-254054.…
https://cert-portal.siemens.com/productcert/pdf/ssa-254054.pdf
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-…
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0005
https://tanzu.vmware.com/security/cve-2022-22965
https://tanzu.vmware.com/security/cve-2022-22965
https://tools.cisco.com/security/center/content/CiscoSecuri…
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-…
https://www.oracle.com/security-alerts/cpuapr2022.html
https://www.oracle.com/security-alerts/cpuapr2022.html
https://www.oracle.com/security-alerts/cpujul2022.html
https://www.oracle.com/security-alerts/cpujul2022.html