CVE-2013-4002

{"id": "CVE-2013-4002", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "[email protected]", "cvssData": {"version": "2.0", "baseScore": 7.1, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 6.9, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2013-07-23T11:03:19.790", "references": [{"url": "http://lists.apple.com/archives/security-announce/2013/Oct/msg00001.html", "tags": ["Broken Link", "Mailing List"], "source": "[email protected]"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00026.html", "tags": ["Third Party Advisory"], "source": "[email protected]"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00027.html", "tags": ["Third Party Advisory"], "source": "[email protected]"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00028.html", "tags": ["Third Party Advisory"], "source": "[email protected]"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00029.html", "tags": ["Third Party Advisory"], "source": "[email protected]"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00000.html", "tags": ["Third Party Advisory"], "source": "[email protected]"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00003.html", "tags": ["Third Party Advisory"], "source": "[email protected]"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00010.html", "tags": ["Third Party Advisory"], "source": "[email protected]"}, {"url": "http://lists.opensuse.org/opensuse-updates/2013-11/msg00023.html", "tags": ["Third Party Advisory"], "source": "[email protected]"}, {"url": "http://marc.info/?l=bugtraq&m=138674031212883&w=2", "tags": ["Issue Tracking", "Mailing List", "Third Party Advisory"], "source": "[email protected]"}, {"url": "http://marc.info/?l=bugtraq&m=138674073720143&w=2", "tags": ["Issue Tracking", "Mailing List", "Third Party Advisory"], "source": "[email protected]"}, {"url": "http://rhn.redhat.com/errata/RHSA-2013-1059.html", "tags": ["Broken Link"], "source": "[email protected]"}, {"url": "http://rhn.redhat.com/errata/RHSA-2013-1060.html", "tags": ["Broken Link"], "source": "[email protected]"}, {"url": "http://rhn.redhat.com/errata/RHSA-2013-1081.html", "tags": ["Broken Link"], "source": "[email protected]"}, {"url": "http://rhn.redhat.com/errata/RHSA-2013-1440.html", "tags": ["Broken Link"], "source": "[email protected]"}, {"url": "http://rhn.redhat.com/errata/RHSA-2013-1447.html", "tags": ["Broken Link"], "source": "[email protected]"}, {"url": "http://rhn.redhat.com/errata/RHSA-2013-1451.html", "tags": ["Broken Link"], "source": "[email protected]"}, {"url": "http://rhn.redhat.com/errata/RHSA-2013-1505.html", "tags": ["Broken Link"], "source": "[email protected]"}, {"url": "http://rhn.redhat.com/errata/RHSA-2014-1818.html", "tags": ["Broken Link"], "source": "[email protected]"}, {"url": "http://rhn.redhat.com/errata/RHSA-2014-1821.html", "tags": ["Broken Link"], "source": "[email protected]"}, {"url": "http://rhn.redhat.com/errata/RHSA-2014-1822.html", "tags": ["Broken Link"], "source": "[email protected]"}, {"url": "http://rhn.redhat.com/errata/RHSA-2014-1823.html", "tags": ["Broken Link"], "source": "[email protected]"}, {"url": "http://rhn.redhat.com/errata/RHSA-2015-0675.html", "tags": ["Broken Link"], "source": "[email protected]"}, {"url": "http://rhn.redhat.com/errata/RHSA-2015-0720.html", "tags": ["Broken Link"], "source": "[email protected]"}, {"url": "http://rhn.redhat.com/errata/RHSA-2015-0765.html", "tags": ["Broken Link"], "source": "[email protected]"}, {"url": "http://rhn.redhat.com/errata/RHSA-2015-0773.html", "tags": ["Broken Link"], "source": "[email protected]"}, {"url": "http://secunia.com/advisories/56257", "tags": ["Third Party Advisory"], "source": "[email protected]"}, {"url": "http://security.gentoo.org/glsa/glsa-201406-32.xml", "tags": ["Third Party Advisory"], "source": "[email protected]"}, {"url": "http://support.apple.com/kb/HT5982", "tags": ["Third Party Advisory"], "source": "[email protected]"}, {"url": "http://svn.apache.org/viewvc/xerces/java/trunk/src/org/apache/xerces/impl/XMLScanner.java?r1=965250&r2=1499506&view=patch", "tags": ["Patch", "Vendor Advisory"], "source": "[email protected]"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IC98015", "tags": ["Vendor Advisory"], "source": "[email protected]"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21644197", "tags": ["Vendor Advisory"], "source": "[email protected]"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21653371", "tags": ["Vendor Advisory"], "source": "[email protected]"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21657539", "tags": ["Vendor Advisory"], "source": "[email protected]"}, {"url": "http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS13-025/index.html", "tags": ["Third Party Advisory"], "source": "[email protected]"}, {"url": "http://www.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_ibm_filenet_content_manager_and_ibm_content_foundation_xml_4j_denial_of_service_attack_cve_2013_4002", "tags": ["Vendor Advisory"], "source": "[email protected]"}, {"url": "http://www.ibm.com/developerworks/java/jdk/alerts/#IBM_Security_Update_July_2013", "tags": ["Vendor Advisory"], "source": "[email protected]"}, {"url": "http://www.ibm.com/support/docview.wss?uid=swg21648172", "tags": ["Broken Link"], "source": "[email protected]"}, {"url": "http://www.securityfocus.com/bid/61310", "tags": ["Third Party Advisory", "VDB Entry"], "source": "[email protected]"}, {"url": "http://www.ubuntu.com/usn/USN-2033-1", "tags": ["Third Party Advisory"], "source": "[email protected]"}, {"url": "http://www.ubuntu.com/usn/USN-2089-1", "tags": ["Third Party Advisory"], "source": "[email protected]"}, {"url": "https://access.redhat.com/errata/RHSA-2014:0414", "tags": ["Third Party Advisory"], "source": "[email protected]"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/85260", "tags": ["VDB Entry", "Vendor Advisory"], "source": "[email protected]"}, {"url": "https://issues.apache.org/jira/browse/XERCESJ-1679", "tags": ["Issue Tracking", "Vendor Advisory"], "source": "[email protected]"}, {"url": "https://lists.apache.org/thread.html/49dc6702104a86ecbb40292dcd329ce9ae4c32b74733199ecab14a73%40%3Cj-users.xerces.apache.org%3E", "source": "[email protected]"}, {"url": "https://lists.apache.org/thread.html/708d94141126eac03011144a971a6411fcac16d9c248d1d535a39451%40%3Csolr-user.lucene.apache.org%3E", "source": "[email protected]"}, {"url": "https://lists.apache.org/thread.html/r204ba2a9ea750f38d789d2bb429cc0925ad6133deea7cbc3001d96b5%40%3Csolr-user.lucene.apache.org%3E", "source": "[email protected]"}, {"url": "https://www.oracle.com/security-alerts/cpuapr2022.html", "source": "[email protected]"}, {"url": "https://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "tags": ["Third Party Advisory"], "source": "[email protected]"}, {"url": "http://lists.apple.com/archives/security-announce/2013/Oct/msg00001.html", "tags": ["Broken Link", "Mailing List"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00026.html", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00027.html", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00028.html", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00029.html", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00000.html", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00003.html", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00010.html", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://lists.opensuse.org/opensuse-updates/2013-11/msg00023.html", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://marc.info/?l=bugtraq&m=138674031212883&w=2", "tags": ["Issue Tracking", "Mailing List", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://marc.info/?l=bugtraq&m=138674073720143&w=2", "tags": ["Issue Tracking", "Mailing List", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://rhn.redhat.com/errata/RHSA-2013-1059.html", "tags": ["Broken Link"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://rhn.redhat.com/errata/RHSA-2013-1060.html", "tags": ["Broken Link"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://rhn.redhat.com/errata/RHSA-2013-1081.html", "tags": ["Broken Link"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://rhn.redhat.com/errata/RHSA-2013-1440.html", "tags": ["Broken Link"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://rhn.redhat.com/errata/RHSA-2013-1447.html", "tags": ["Broken Link"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://rhn.redhat.com/errata/RHSA-2013-1451.html", "tags": ["Broken Link"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://rhn.redhat.com/errata/RHSA-2013-1505.html", "tags": ["Broken Link"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://rhn.redhat.com/errata/RHSA-2014-1818.html", "tags": ["Broken Link"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://rhn.redhat.com/errata/RHSA-2014-1821.html", "tags": ["Broken Link"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://rhn.redhat.com/errata/RHSA-2014-1822.html", "tags": ["Broken Link"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://rhn.redhat.com/errata/RHSA-2014-1823.html", "tags": ["Broken Link"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://rhn.redhat.com/errata/RHSA-2015-0675.html", "tags": ["Broken Link"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://rhn.redhat.com/errata/RHSA-2015-0720.html", "tags": ["Broken Link"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://rhn.redhat.com/errata/RHSA-2015-0765.html", "tags": ["Broken Link"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://rhn.redhat.com/errata/RHSA-2015-0773.html", "tags": ["Broken Link"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/56257", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://security.gentoo.org/glsa/glsa-201406-32.xml", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://support.apple.com/kb/HT5982", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://svn.apache.org/viewvc/xerces/java/trunk/src/org/apache/xerces/impl/XMLScanner.java?r1=965250&r2=1499506&view=patch", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IC98015", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21644197", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21653371", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21657539", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS13-025/index.html", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_ibm_filenet_content_manager_and_ibm_content_foundation_xml_4j_denial_of_service_attack_cve_2013_4002", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.ibm.com/developerworks/java/jdk/alerts/#IBM_Security_Update_July_2013", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.ibm.com/support/docview.wss?uid=swg21648172", "tags": ["Broken Link"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/61310", "tags": ["Third Party Advisory", "VDB Entry"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.ubuntu.com/usn/USN-2033-1", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.ubuntu.com/usn/USN-2089-1", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://access.redhat.com/errata/RHSA-2014:0414", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/85260", "tags": ["VDB Entry", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://issues.apache.org/jira/browse/XERCESJ-1679", "tags": ["Issue Tracking", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://lists.apache.org/thread.html/49dc6702104a86ecbb40292dcd329ce9ae4c32b74733199ecab14a73%40%3Cj-users.xerces.apache.org%3E", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://lists.apache.org/thread.html/708d94141126eac03011144a971a6411fcac16d9c248d1d535a39451%40%3Csolr-user.lucene.apache.org%3E", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://lists.apache.org/thread.html/r204ba2a9ea750f38d789d2bb429cc0925ad6133deea7cbc3001d96b5%40%3Csolr-user.lucene.apache.org%3E", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.oracle.com/security-alerts/cpuapr2022.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "[email protected]", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "XMLscanner.java in Apache Xerces2 Java Parser before 2.12.0, as used in the Java Runtime Environment (JRE) in IBM Java 5.0 before 5.0 SR16-FP3, 6 before 6 SR14, 6.0.1 before 6.0.1 SR6, and 7 before 7 SR5 as well as Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, Java SE Embedded 7u40 and earlier, and possibly other products allows remote attackers to cause a denial of service via vectors related to XML attribute names."}, {"lang": "es", "value": "XMLscanner.java en Apache Xerces2 Java Parser, en versiones anteriores a la 2.12.0, tal y como se emple\u00f3 en Java Runtime Environment (JRE) en IBM Java, en versiones 5.0 anteriores a la 5.0 SR16-FP3, 6 anteriores a la 6 SR14, 6.0.1 anteriores a la 6.0.1 SR6 y 7 anteriores a la 7 SR5, as\u00ed como en Oracle Java SE 7u40 y anteriores, Java SE 6u60 y anteriores, Java SE 5.0u51 y anteriores, JRockit R28.2.8 y anteriores, JRockit R27.7.6 y anteriores, Java SE Embedded 7u40 y anteriores y, posiblemente, otros productos, permite que los atacantes remotos realicen una denegaci\u00f3n de servicio (DoS) mediante vectores relacionados con los nombres de atributo XML."}], "lastModified": "2025-04-11T00:51:21.963", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ibm:java:5.0.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "03D3F84F-3F6E-4DF1-B162-152293D951EA"}, {"criteria": "cpe:2.3:a:ibm:java:5.0.11.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A18121C3-F3F1-4EC7-A64E-3F6A0C9788C8"}, {"criteria": "cpe:2.3:a:ibm:java:5.0.11.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BAD59912-7325-4AE1-ACCF-D4F804AF3947"}, {"criteria": "cpe:2.3:a:ibm:java:5.0.11.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "62783157-E3B6-4A23-8D2F-1FBD0762E9A0"}, {"criteria": "cpe:2.3:a:ibm:java:5.0.12.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "14CC0D53-8AB8-4D44-82BB-0E6A974C36AB"}, {"criteria": "cpe:2.3:a:ibm:java:5.0.12.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "91A3129F-17A6-4F32-BD5D-34E4A1D1A840"}, {"criteria": "cpe:2.3:a:ibm:java:5.0.12.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E2845FF4-2620-4B8D-96CF-CC26B3DEA3C4"}, {"criteria": "cpe:2.3:a:ibm:java:5.0.12.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CC7CD279-54B6-4F6B-AE14-299FB319C690"}, {"criteria": "cpe:2.3:a:ibm:java:5.0.12.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0EA269CA-4676-4008-89EF-20FAB89886A1"}, {"criteria": "cpe:2.3:a:ibm:java:5.0.12.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D22105B6-1378-4E1C-B28A-FCAE00A2D5CF"}, {"criteria": "cpe:2.3:a:ibm:java:5.0.13.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "601762D3-1188-4945-931D-EB8DAC2847A1"}, {"criteria": "cpe:2.3:a:ibm:java:5.0.14.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FA4A30A6-498C-46B8-8EFC-45EB13354EAF"}, {"criteria": "cpe:2.3:a:ibm:java:5.0.15.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "414CC00A-C797-4C34-8709-75DC061DCDE1"}, {"criteria": "cpe:2.3:a:ibm:java:5.0.16.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4401B967-0550-44F1-8753-9632120D2A44"}, {"criteria": "cpe:2.3:a:ibm:java:5.0.16.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4961693D-F56C-46CD-B721-6A15E2837C17"}, {"criteria": "cpe:2.3:a:ibm:java:5.0.16.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AA4FBB66-CF6A-42D2-B122-1861F4139E75"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ibm:java:6.0.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "14AD4A87-382A-41F0-96D8-0F0A9B738773"}, {"criteria": "cpe:2.3:a:ibm:java:6.0.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "33701DDF-6882-41D3-A11B-A1F4585A77A7"}, {"criteria": "cpe:2.3:a:ibm:java:6.0.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "25C58BBA-06AC-40CD-A906-FD1B3B0AAB69"}, {"criteria": "cpe:2.3:a:ibm:java:6.0.3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "76C5B430-EE11-4674-B4B0-895D66E3B32F"}, {"criteria": "cpe:2.3:a:ibm:java:6.0.4.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B1837D84-6B4F-40D8-9A3F-71C328F659BA"}, {"criteria": "cpe:2.3:a:ibm:java:6.0.5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D20A369B-2168-4883-A84C-BB48A71AFB33"}, {"criteria": "cpe:2.3:a:ibm:java:6.0.6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3628AAB4-E524-46E5-AAF4-1980256F13CE"}, {"criteria": "cpe:2.3:a:ibm:java:6.0.7.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "30DC9FE3-CDE9-4F83-989B-4E431BA18B56"}, {"criteria": "cpe:2.3:a:ibm:java:6.0.8.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C17B1C6B-04CE-49FB-B9BD-98ECD626B26F"}, {"criteria": "cpe:2.3:a:ibm:java:6.0.8.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "81F529EB-2BCA-4E3E-93E4-2A9880CDA367"}, {"criteria": "cpe:2.3:a:ibm:java:6.0.9.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8DEAC3D6-F9F8-4F82-9BF1-FF0EC07A3274"}, {"criteria": "cpe:2.3:a:ibm:java:6.0.9.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7694638C-CDAC-44DF-B9F9-F7237CD98017"}, {"criteria": "cpe:2.3:a:ibm:java:6.0.9.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "23903A3C-1760-4836-BAE6-BDD32CBB4CBD"}, {"criteria": "cpe:2.3:a:ibm:java:6.0.10.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2477E033-D26B-4D71-839B-5FE4B0927559"}, {"criteria": "cpe:2.3:a:ibm:java:6.0.10.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B1CAB7BF-265E-411D-A584-E78DE171F065"}, {"criteria": "cpe:2.3:a:ibm:java:6.0.11.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4E45F670-232F-4CE5-8926-6463E5619506"}, {"criteria": "cpe:2.3:a:ibm:java:6.0.12.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5B70E6E3-15B3-4D48-AE49-B9184A58EECE"}, {"criteria": "cpe:2.3:a:ibm:java:6.0.13.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D5BCE3FD-B89B-4141-8103-9DB941AD60D0"}, {"criteria": "cpe:2.3:a:ibm:java:6.0.13.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8EADFB3B-738F-4919-B165-9ECEED46EA6C"}, {"criteria": "cpe:2.3:a:ibm:java:6.0.13.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B23A5431-E599-4848-AB83-B299898F5EF0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ibm:java:7.0.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9A8BF650-B8F5-467E-8DBF-81788B55F345"}, {"criteria": "cpe:2.3:a:ibm:java:7.0.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1752A831-916F-4A7D-8AAE-1CEFACC51F91"}, {"criteria": "cpe:2.3:a:ibm:java:7.0.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0C9744C4-76BE-428B-AFF2-5BCE00A58322"}, {"criteria": "cpe:2.3:a:ibm:java:7.0.3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "48B1DE45-90F9-416B-9087-8AEF5B0A3C46"}, {"criteria": "cpe:2.3:a:ibm:java:7.0.4.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9EF6A045-0DF6-463B-A0DB-6C31D8C2984C"}, {"criteria": "cpe:2.3:a:ibm:java:7.0.4.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A731493C-9B46-4105-9902-B15BA0E0FB11"}, {"criteria": "cpe:2.3:a:ibm:java:7.0.4.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "49454369-A494-4EAA-88D5-181570DEBB4A"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:jdk:1.5.0:update51:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "04C71221-E477-4DF8-B10A-3AC64511E4EE"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.6.0:update60:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FF7DE0E6-F329-417B-8035-B4EBF9C97483"}, {"criteria": "cpe:2.3:a:oracle:jdk:1.7.0:update40:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "220536FA-695D-4DE8-9813-494E3D061B78"}, {"criteria": "cpe:2.3:a:oracle:jre:1.5.0:update51:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ACB55CC5-0EC7-44B2-B5A9-A5B1EE584791"}, {"criteria": "cpe:2.3:a:oracle:jre:1.6.0:update60:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4F6B5E73-6751-475A-B9BF-3414D3476208"}, {"criteria": "cpe:2.3:a:oracle:jre:1.7.0:update40:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7CB654DC-1D3D-4475-8815-335AC573F54C"}, {"criteria": "cpe:2.3:a:oracle:jrockit:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DF26274E-5364-4FC1-9603-A78C365596DB", "versionEndIncluding": "r27.7.6", "versionStartIncluding": "r27.7.0"}, {"criteria": "cpe:2.3:a:oracle:jrockit:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "583E7A18-48C5-4AEE-A9C1-239D678E275A", "versionEndIncluding": "r28.2.8", "versionStartIncluding": "r28.0.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ibm:sterling_b2b_integrator:5.2.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CF65201D-8980-450A-A542-3B5473A6F374"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ibm:host_on-demand:11.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E51D5AEF-B3D4-4782-9988-BC1DB3F3F296"}, {"criteria": "cpe:2.3:a:ibm:host_on-demand:11.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E179FC2F-C700-4998-9D7A-3B945874CAC1"}, {"criteria": "cpe:2.3:a:ibm:host_on-demand:11.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2341D5E7-15CD-4C8F-ABE8-AA915BFA2804"}, {"criteria": "cpe:2.3:a:ibm:host_on-demand:11.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "474DC3BA-27F2-452A-85AD-BCC476EDD35B"}, {"criteria": "cpe:2.3:a:ibm:host_on-demand:11.0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "997CA07C-EBB7-4D7F-AF23-A161817BF4A9"}, {"criteria": "cpe:2.3:a:ibm:host_on-demand:11.0.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5BFE87FC-7B77-4840-8185-1707CB37323B"}, {"criteria": "cpe:2.3:a:ibm:host_on-demand:11.0.5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C77DD8B3-A227-4350-8699-FEC822119393"}, {"criteria": "cpe:2.3:a:ibm:host_on-demand:11.0.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1FA56704-18EB-4F3B-A36F-BCEF67B07C0F"}, {"criteria": "cpe:2.3:a:ibm:host_on-demand:11.0.6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "420CC5FF-0300-4FA7-AB53-78C1A0B83C11"}, {"criteria": "cpe:2.3:a:ibm:host_on-demand:11.0.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B7132A0E-C2A1-403E-9516-A6911563D7B9"}, {"criteria": "cpe:2.3:a:ibm:host_on-demand:11.0.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F32CA797-ED68-426E-9370-E16C90075E01"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A2572D17-1DE6-457B-99CC-64AFD54487EA"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ibm:tivoli_application_dependency_discovery_manager:7.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BB2F6EF3-721A-43AB-AAFD-BE3EEDB0AA61"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E492C463-D76E-49B7-A4D4-3B499E422D89"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}, {"criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A2572D17-1DE6-457B-99CC-64AFD54487EA"}, {"criteria": "cpe:2.3:o:oracle:solaris:-:*:*:*:*:*:-:*", "vulnerable": false, "matchCriteriaId": "F5027746-8216-452D-83C5-2F8E9546F2A5"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ibm:sterling_b2b_integrator:5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "40363692-5283-4D0C-BAE1-C049C02A0294"}, {"criteria": "cpe:2.3:a:ibm:sterling_b2b_integrator:5.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F805BA3A-178D-416E-9DED-4258F71A17C8"}, {"criteria": "cpe:2.3:a:ibm:sterling_file_gateway:2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9A40AC14-AC2B-4A0D-A9CC-3A00B48D8975"}, {"criteria": "cpe:2.3:a:ibm:sterling_file_gateway:2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1554D69E-D68E-46CA-B1F7-C24CAABF58E8"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hp:hp-ux:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F480AA32-841A-4E68-9343-B2E7548B0A0C"}, {"criteria": "cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E492C463-D76E-49B7-A4D4-3B499E422D89"}, {"criteria": "cpe:2.3:o:ibm:i:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C684FC45-C9BA-4EF0-BD06-BB289450DD21"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}, {"criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A2572D17-1DE6-457B-99CC-64AFD54487EA"}, {"criteria": "cpe:2.3:o:oracle:solaris:-:*:*:*:*:*:-:*", "vulnerable": false, "matchCriteriaId": "F5027746-8216-452D-83C5-2F8E9546F2A5"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:opensuse:opensuse:12.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D806A17E-B8F9-466D-807D-3F1E77603DC8"}, {"criteria": "cpe:2.3:o:opensuse:opensuse:12.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DFBF430B-0832-44B0-AA0E-BA9E467F7668"}, {"criteria": "cpe:2.3:o:suse:linux_enterprise_desktop:10:sp4:*:*:-:*:*:*", "vulnerable": true, "matchCriteriaId": "4339DE06-19FB-4B8E-B6AE-3495F605AD05"}, {"criteria": "cpe:2.3:o:suse:linux_enterprise_desktop:11:sp3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3ED68ADD-BBDA-4485-BC76-58F011D72311"}, {"criteria": "cpe:2.3:o:suse:linux_enterprise_java:10:sp4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3CF5C5B9-2CB9-4CD8-B94F-A674ED909CC3"}, {"criteria": "cpe:2.3:o:suse:linux_enterprise_java:11:sp2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "252CF7A7-3FEB-4503-AEE8-B67139C5B0D5"}, {"criteria": "cpe:2.3:o:suse:linux_enterprise_java:11:sp3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "79D7DBBA-6849-45F7-AFEF-C765569C481A"}, {"criteria": "cpe:2.3:o:suse:linux_enterprise_sdk:11:sp2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2C634990-2690-4E3B-B21F-6687A6A34644"}, {"criteria": "cpe:2.3:o:suse:linux_enterprise_sdk:11:sp3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "73B7BC23-6CCA-41B2-8F61-EDB95F1AFB1D"}, {"criteria": "cpe:2.3:o:suse:linux_enterprise_server:9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4CD2D897-E321-4CED-92E0-11A98B52053C"}, {"criteria": "cpe:2.3:o:suse:linux_enterprise_server:10:sp3:*:*:ltss:*:*:*", "vulnerable": true, "matchCriteriaId": "CED02712-1031-4206-AC4D-E68710F46EC9"}, {"criteria": "cpe:2.3:o:suse:linux_enterprise_server:10:sp4:*:*:-:*:*:*", "vulnerable": true, "matchCriteriaId": "D1D7B467-58DD-45F1-9F1F-632620DF072A"}, {"criteria": "cpe:2.3:o:suse:linux_enterprise_server:11:sp2:*:*:*:-:*:*", "vulnerable": true, "matchCriteriaId": "88D6E858-FD8F-4C55-B7D5-CEEDA2BBA898"}, {"criteria": "cpe:2.3:o:suse:linux_enterprise_server:11:sp2:*:*:*:vmware:*:*", "vulnerable": true, "matchCriteriaId": "DB4D6749-81A1-41D7-BF4F-1C45A7F49A22"}, {"criteria": "cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:*:-:*:*", "vulnerable": true, "matchCriteriaId": "E534C201-BCC5-473C-AAA7-AAB97CEB5437"}, {"criteria": "cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:*:vmware:*:*", "vulnerable": true, "matchCriteriaId": "2470C6E8-2024-4CF5-9982-CFF50E88EAE9"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*", "vulnerable": true, "matchCriteriaId": "01EDA41C-6B2E-49AF-B503-EB3882265C11"}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*", "vulnerable": true, "matchCriteriaId": "CB66DB75-2B16-4EBF-9B93-CE49D8086E41"}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E2076871-2E80-4605-A470-A41C1A8EC7EE"}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:13.04:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EFAA48D9-BEB4-4E49-AD50-325C262D46D9"}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:13.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7F61F047-129C-41A6-8A27-FFCBB8563E91"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:apache:xerces2_java:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8CFD62E4-794A-43C0-8C65-A44D970D1569", "versionEndExcluding": "2.12.0", "versionStartIncluding": "2.4.0"}], "operator": "OR"}]}], "sourceIdentifier": "[email protected]"}