CVE-2020-11022
- Source
- https://cve.org/CVERecord?id=CVE-2020-11022
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-11022.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2020-11022
- Aliases
- Downstream
- Related
- Published
- 2020-04-29T22:15:11.903Z
- Modified
- 2026-05-31T03:55:46.549201378Z
- Severity
-
- 6.1 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
- Summary
- [none]
- Details
-
In jQuery starting with 1.12.0 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
- Database specific
{ "unresolved_ranges": [ { "source": "CPE_RANGE", "extracted_events": [ { "introduced": "3.0" }, { "last_affected": "3.1.3" } ], "vendor_product": "netapp:oncommand_system_manager", "cpes": [ "cpe:2.3:a:netapp:oncommand_system_manager:*:*:*:*:*:*:*:*" ] }, { "source": "CPE_RANGE", "extracted_events": [ { "introduced": "18.1" }, { "last_affected": "20.1" } ], "vendor_product": "oracle:banking_digital_experience", "cpes": [ "cpe:2.3:a:oracle:banking_digital_experience:*:*:*:*:*:*:*:*" ] }, { "source": "CPE_RANGE", "extracted_events": [ { "fixed": "21.1.2" } ], "vendor_product": "oracle:blockchain_platform", "cpes": [ "cpe:2.3:a:oracle:blockchain_platform:*:*:*:*:*:*:*:*" ] }, { "source": "CPE_RANGE", "extracted_events": [ { "introduced": "8.0.0" }, { "last_affected": "8.2.2" }, { "introduced": "8.0.0" }, { "last_affected": "8.2.2" } ], "vendor_product": "oracle:communications_diameter_signaling_router_idih:", "cpes": [ "cpe:2.3:a:oracle:communications_diameter_signaling_router_idih\\::*:*:*:*:*:*:*:*" ] }, { "source": "CPE_RANGE", "extracted_events": [ { "introduced": "16.1.0" }, { "last_affected": "16.4.0" } ], "vendor_product": "oracle:communications_eagle_application_processor", "cpes": [ "cpe:2.3:a:oracle:communications_eagle_application_processor:*:*:*:*:*:*:*:*" ] }, { "source": "CPE_RANGE", "extracted_events": [ { "introduced": "8.0.6.0.0" }, { "last_affected": "8.1.0.0.0" }, { "introduced": "8.0.6" }, { "last_affected": "8.1.0" } ], "vendor_product": "oracle:financial_services_analytical_applications_infrastructure", "cpes": [ "cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:*:*:*:*:*:*:*:*" ] }, { "source": "CPE_RANGE", "extracted_events": [ { "introduced": "8.0.6" }, { "last_affected": "8.0.8" }, { "introduced": "8.0.6" }, { "last_affected": "8.0.8" } ], "vendor_product": "oracle:financial_services_analytical_applications_reconciliation_framework", "cpes": [ "cpe:2.3:a:oracle:financial_services_analytical_applications_reconciliation_framework:*:*:*:*:*:*:*:*" ] }, { "source": "CPE_RANGE", "extracted_events": [ { "introduced": "8.0.6" }, { "last_affected": "8.0.8" }, { "introduced": "8.0.6" }, { "last_affected": "8.0.8" } ], "vendor_product": "oracle:financial_services_basel_regulatory_capital_basic", "cpes": [ "cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_basic:*:*:*:*:*:*:*:*" ] }, { "source": "CPE_RANGE", "extracted_events": [ { "introduced": "8.0.6" }, { "last_affected": "8.0.8" }, { "introduced": "8.0.6" }, { "last_affected": "8.0.8" } ], "vendor_product": "oracle:financial_services_basel_regulatory_capital_internal_ratings_based_approach", "cpes": [ "cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_internal_ratings_based_approach:*:*:*:*:*:*:*:*" ] }, { "source": "CPE_RANGE", "extracted_events": [ { "introduced": "8.0.6" }, { "last_affected": "8.1.0" }, { "introduced": "8.0.6" }, { "last_affected": "8.1.0" } ], "vendor_product": "oracle:financial_services_data_foundation", "cpes": [ "cpe:2.3:a:oracle:financial_services_data_foundation:*:*:*:*:*:*:*:*" ] }, { "source": "CPE_RANGE", "extracted_events": [ { "introduced": "8.0.6" }, { "last_affected": "8.0.9" }, { "introduced": "8.0.6" }, { "last_affected": "8.0.9" } ], "vendor_product": "oracle:financial_services_data_governance_for_us_regulatory_reporting", "cpes": [ "cpe:2.3:a:oracle:financial_services_data_governance_for_us_regulatory_reporting:*:*:*:*:*:*:*:*" ] }, { "source": "CPE_RANGE", "extracted_events": [ { "introduced": "8.0.6" }, { "last_affected": "8.0.8" }, { "introduced": "8.0.6" }, { "last_affected": "8.0.8" } ], "vendor_product": "oracle:financial_services_hedge_management_and_ifrs_valuations", "cpes": [ "cpe:2.3:a:oracle:financial_services_hedge_management_and_ifrs_valuations:*:*:*:*:*:*:*:*" ] }, { "source": "CPE_RANGE", "extracted_events": [ { "introduced": "8.0.6" }, { "last_affected": "8.0.8" }, { "introduced": "8.0.6" }, { "last_affected": "8.0.8" } ], "vendor_product": "oracle:financial_services_loan_loss_forecasting_and_provisioning", "cpes": [ "cpe:2.3:a:oracle:financial_services_loan_loss_forecasting_and_provisioning:*:*:*:*:*:*:*:*" ] }, { "source": "CPE_RANGE", "extracted_events": [ { "introduced": "8.0.6" }, { "last_affected": "8.1.0" }, { "introduced": "8.0.6" }, { "last_affected": "8.1.0" } ], "vendor_product": "oracle:financial_services_regulatory_reporting_for_european_banking_authority", "cpes": [ "cpe:2.3:a:oracle:financial_services_regulatory_reporting_for_european_banking_authority:*:*:*:*:*:*:*:*" ] }, { "source": "CPE_RANGE", "extracted_events": [ { "introduced": "8.0.6" }, { "last_affected": "8.0.9" }, { "introduced": "8.0.6" }, { "last_affected": "8.0.9" } ], "vendor_product": "oracle:financial_services_regulatory_reporting_for_us_federal_reserve", "cpes": [ "cpe:2.3:a:oracle:financial_services_regulatory_reporting_for_us_federal_reserve:*:*:*:*:*:*:*:*" ] }, { "source": "CPE_RANGE", "extracted_events": [ { "introduced": "19.1.0" }, { "last_affected": "19.1.2" } ], "vendor_product": "oracle:hospitality_simphony", "cpes": [ "cpe:2.3:a:oracle:hospitality_simphony:*:*:*:*:*:*:*:*" ] }, { "source": "CPE_RANGE", "extracted_events": [ { "introduced": "8.0.6" }, { "last_affected": "8.1.0" } ], "vendor_product": "oracle:insurance_data_foundation", "cpes": [ "cpe:2.3:a:oracle:insurance_data_foundation:*:*:*:*:*:*:*:*" ] }, { "source": "CPE_RANGE", "extracted_events": [ { "introduced": "5.0.0.0" }, { "last_affected": "5.6.0.0" }, { "introduced": "5.0.0.0" }, { "last_affected": "5.6.0.0" } ], "vendor_product": "oracle:insurance_insbridge_rating_and_underwriting", "cpes": [ "cpe:2.3:a:oracle:insurance_insbridge_rating_and_underwriting:*:*:*:*:*:*:*:*" ] }, { "source": "CPE_RANGE", "extracted_events": [ { "introduced": "12.2.0" }, { "last_affected": "12.2.20" }, { "introduced": "12.2.0" }, { "last_affected": "12.2.20" } ], "vendor_product": "oracle:policy_automation", "cpes": [ "cpe:2.3:a:oracle:policy_automation:*:*:*:*:*:*:*:*" ] }, { "source": "CPE_RANGE", "extracted_events": [ { "introduced": "12.2.0" }, { "last_affected": "12.2.20" }, { "introduced": "12.2.0" }, { "last_affected": "12.2.20" } ], "vendor_product": "oracle:policy_automation_for_mobile_devices", "cpes": [ "cpe:2.3:a:oracle:policy_automation_for_mobile_devices:*:*:*:*:*:*:*:*" ] }, { "source": "CPE_RANGE", "extracted_events": [ { "fixed": "6.0.9" } ], "vendor_product": "tenable:log_correlation_engine", "cpes": [ "cpe:2.3:a:tenable:log_correlation_engine:*:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "9.0" } ], "vendor_product": "debian:debian_linux", "cpes": [ "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "31" }, { "last_affected": "32" }, { "last_affected": "33" } ], "vendor_product": "fedoraproject:fedora", "cpes": [ "cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*", "cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*", "cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "15.1" }, { "last_affected": "15.2" } ], "vendor_product": "opensuse:leap", "cpes": [ "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*", "cpe:2.3:o:opensuse:leap:15.2:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "6.2.0.0" } ], "vendor_product": "oracle:agile_product_lifecycle_management_for_process", "cpes": [ "cpe:2.3:a:oracle:agile_product_lifecycle_management_for_process:6.2.0.0:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "6.2.0.0" } ], "vendor_product": "oracle:agile_product_supplier_collaboration_for_process", "cpes": [ "cpe:2.3:a:oracle:agile_product_supplier_collaboration_for_process:6.2.0.0:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "13.3.0.1" } ], "vendor_product": "oracle:application_testing_suite", "cpes": [ "cpe:2.3:a:oracle:application_testing_suite:13.3.0.1:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "18.1" }, { "last_affected": "18.2" }, { "last_affected": "18.3" }, { "last_affected": "19.1" }, { "last_affected": "19.2" }, { "last_affected": "20.1" } ], "vendor_product": "oracle:banking_digital_experience", "cpes": [ "cpe:2.3:a:oracle:banking_digital_experience:18.1:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:banking_digital_experience:18.2:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:banking_digital_experience:18.3:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:banking_digital_experience:19.1:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:banking_digital_experience:19.2:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:banking_digital_experience:20.1:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "3.8m0" }, { "last_affected": "3.8m0" } ], "vendor_product": "oracle:communications_application_session_controller", "cpes": [ "cpe:2.3:a:oracle:communications_application_session_controller:3.8m0:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "7.5.0.23.0" }, { "last_affected": "12.0.0.3.0" }, { "last_affected": "7.5.0.23.0" }, { "last_affected": "12.0.0.3.0" } ], "vendor_product": "oracle:communications_billing_and_revenue_management", "cpes": [ "cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.3.0:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:communications_billing_and_revenue_management:7.5.0.23.0:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "7.0" } ], "vendor_product": "oracle:communications_services_gatekeeper", "cpes": [ "cpe:2.3:a:oracle:communications_services_gatekeeper:7.0:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "7.2" }, { "last_affected": "7.2" } ], "vendor_product": "oracle:communications_webrtc_session_controller", "cpes": [ "cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "12.4.0.0" }, { "last_affected": "12.4.0.0" } ], "vendor_product": "oracle:enterprise_manager_ops_center", "cpes": [ "cpe:2.3:a:oracle:enterprise_manager_ops_center:12.4.0.0:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "8.4" }, { "last_affected": "8.4" } ], "vendor_product": "oracle:enterprise_session_border_controller", "cpes": [ "cpe:2.3:a:oracle:enterprise_session_border_controller:8.4:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "8.1.0" }, { "last_affected": "8.1.0" } ], "vendor_product": "oracle:financial_services_analytical_applications_reconciliation_framework", "cpes": [ "cpe:2.3:a:oracle:financial_services_analytical_applications_reconciliation_framework:8.1.0:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "8.0.6" }, { "last_affected": "8.0.7" }, { "last_affected": "8.1.0" }, { "last_affected": "8.0.6" }, { "last_affected": "8.0.7" }, { "last_affected": "8.1.0" } ], "vendor_product": "oracle:financial_services_asset_liability_management", "cpes": [ "cpe:2.3:a:oracle:financial_services_asset_liability_management:8.0.6:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:financial_services_asset_liability_management:8.0.7:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:financial_services_asset_liability_management:8.1.0:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "8.0.8" }, { "last_affected": "8.0.8" } ], "vendor_product": "oracle:financial_services_balance_sheet_planning", "cpes": [ "cpe:2.3:a:oracle:financial_services_balance_sheet_planning:8.0.8:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "8.1.0" }, { "last_affected": "8.1.0" } ], "vendor_product": "oracle:financial_services_basel_regulatory_capital_basic", "cpes": [ "cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_basic:8.1.0:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "8.1.0" }, { "last_affected": "8.1.0" } ], "vendor_product": "oracle:financial_services_basel_regulatory_capital_internal_ratings_based_approach", "cpes": [ "cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_internal_ratings_based_approach:8.1.0:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "8.0.6" }, { "last_affected": "8.0.7" }, { "last_affected": "8.1.0" }, { "last_affected": "8.0.6" }, { "last_affected": "8.0.7" }, { "last_affected": "8.1.0" } ], "vendor_product": "oracle:financial_services_data_integration_hub", "cpes": [ "cpe:2.3:a:oracle:financial_services_data_integration_hub:8.0.6:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:financial_services_data_integration_hub:8.0.7:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:financial_services_data_integration_hub:8.1.0:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "8.0.6" }, { "last_affected": "8.0.7" }, { "last_affected": "8.1.0" }, { "last_affected": "8.0.6" }, { "last_affected": "8.0.7" }, { "last_affected": "8.1.0" } ], "vendor_product": "oracle:financial_services_funds_transfer_pricing", "cpes": [ "cpe:2.3:a:oracle:financial_services_funds_transfer_pricing:8.0.6:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:financial_services_funds_transfer_pricing:8.0.7:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:financial_services_funds_transfer_pricing:8.1.0:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "8.1.0" }, { "last_affected": "8.1.0" } ], "vendor_product": "oracle:financial_services_hedge_management_and_ifrs_valuations", "cpes": [ "cpe:2.3:a:oracle:financial_services_hedge_management_and_ifrs_valuations:8.1.0:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "8.0.6" }, { "last_affected": "8.0.7" }, { "last_affected": "8.1.0" }, { "last_affected": "8.0.6" }, { "last_affected": "8.0.7" }, { "last_affected": "8.1.0" } ], "vendor_product": "oracle:financial_services_institutional_performance_analytics", "cpes": [ "cpe:2.3:a:oracle:financial_services_institutional_performance_analytics:8.0.6:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:financial_services_institutional_performance_analytics:8.0.7:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:financial_services_institutional_performance_analytics:8.1.0:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "8.0.6" }, { "last_affected": "8.0.6" } ], "vendor_product": "oracle:financial_services_liquidity_risk_management", "cpes": [ "cpe:2.3:a:oracle:financial_services_liquidity_risk_management:8.0.6:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "8.0.7" }, { "last_affected": "8.0.8" }, { "last_affected": "8.1.0" }, { "last_affected": "8.0.7" }, { "last_affected": "8.0.8" }, { "last_affected": "8.1.0" } ], "vendor_product": "oracle:financial_services_liquidity_risk_measurement_and_management", "cpes": [ "cpe:2.3:a:oracle:financial_services_liquidity_risk_measurement_and_management:8.0.7:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:financial_services_liquidity_risk_measurement_and_management:8.0.8:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:financial_services_liquidity_risk_measurement_and_management:8.1.0:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "8.1.0" }, { "last_affected": "8.1.0" } ], "vendor_product": "oracle:financial_services_loan_loss_forecasting_and_provisioning", "cpes": [ "cpe:2.3:a:oracle:financial_services_loan_loss_forecasting_and_provisioning:8.1.0:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "8.0.6" }, { "last_affected": "8.0.8" }, { "last_affected": "8.0.6" }, { "last_affected": "8.0.8" } ], "vendor_product": "oracle:financial_services_market_risk_measurement_and_management", "cpes": [ "cpe:2.3:a:oracle:financial_services_market_risk_measurement_and_management:8.0.6:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:financial_services_market_risk_measurement_and_management:8.0.8:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "8.0.6" }, { "last_affected": "8.0.7" }, { "last_affected": "8.0.6" }, { "last_affected": "8.0.7" } ], "vendor_product": "oracle:financial_services_price_creation_and_discovery", "cpes": [ "cpe:2.3:a:oracle:financial_services_price_creation_and_discovery:8.0.6:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:financial_services_price_creation_and_discovery:8.0.7:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "8.0.6" }, { "last_affected": "8.0.7" }, { "last_affected": "8.1.0" }, { "last_affected": "8.0.6" }, { "last_affected": "8.0.7" }, { "last_affected": "8.1.0" } ], "vendor_product": "oracle:financial_services_profitability_management", "cpes": [ "cpe:2.3:a:oracle:financial_services_profitability_management:8.0.6:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:financial_services_profitability_management:8.0.7:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:financial_services_profitability_management:8.1.0:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "7.1.1" }, { "last_affected": "7.2.0" }, { "last_affected": "7.2.1" }, { "last_affected": "7.3.0" }, { "last_affected": "7.1.1" }, { "last_affected": "7.2.0" }, { "last_affected": "7.2.1" }, { "last_affected": "7.3.0" } ], "vendor_product": "oracle:healthcare_foundation", "cpes": [ "cpe:2.3:a:oracle:healthcare_foundation:7.1.1:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:healthcare_foundation:7.2.0:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:healthcare_foundation:7.2.1:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:healthcare_foundation:7.3.0:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "18.1" }, { "last_affected": "18.1" } ], "vendor_product": "oracle:hospitality_materials_control", "cpes": [ "cpe:2.3:a:oracle:hospitality_materials_control:18.1:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "18.1" }, { "last_affected": "18.2" }, { "last_affected": "18.1" }, { "last_affected": "18.2" }, { "last_affected": "19.1.0-19.1.2" } ], "vendor_product": "oracle:hospitality_simphony", "cpes": [ "cpe:2.3:a:oracle:hospitality_simphony:18.1:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:hospitality_simphony:18.2:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:hospitality_simphony:19.1.0-19.1.2:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "8.0.9" }, { "last_affected": "8.0.9" } ], "vendor_product": "oracle:insurance_accounting_analyzer", "cpes": [ "cpe:2.3:a:oracle:insurance_accounting_analyzer:8.0.9:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "8.0.8" }, { "last_affected": "8.1.0" }, { "last_affected": "8.0.8" }, { "last_affected": "8.1.0" } ], "vendor_product": "oracle:insurance_allocation_manager_for_enterprise_profitability", "cpes": [ "cpe:2.3:a:oracle:insurance_allocation_manager_for_enterprise_profitability:8.0.8:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:insurance_allocation_manager_for_enterprise_profitability:8.1.0:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "8.0.6-8.1.0" } ], "vendor_product": "oracle:insurance_data_foundation", "cpes": [ "cpe:2.3:a:oracle:insurance_data_foundation:8.0.6-8.1.0:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "5.6.1.0" }, { "last_affected": "5.6.1.0" } ], "vendor_product": "oracle:insurance_insbridge_rating_and_underwriting", "cpes": [ "cpe:2.3:a:oracle:insurance_insbridge_rating_and_underwriting:5.6.1.0:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "11.1.1.9.0" }, { "last_affected": "12.2.1.3.0" }, { "last_affected": "12.2.1.4.0" }, { "last_affected": "11.1.1.9.0" }, { "last_affected": "12.2.1.3.0" }, { "last_affected": "12.2.1.4.0" } ], "vendor_product": "oracle:jdeveloper", "cpes": [ "cpe:2.3:a:oracle:jdeveloper:11.1.1.9.0:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:jdeveloper:12.2.1.3.0:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "8.56" }, { "last_affected": "8.57" }, { "last_affected": "8.58" }, { "last_affected": "8.56" }, { "last_affected": "8.57" }, { "last_affected": "8.58" } ], "vendor_product": "oracle:peoplesoft_enterprise_peopletools", "cpes": [ "cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.56:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "10.4.6" }, { "last_affected": "10.4.6" } ], "vendor_product": "oracle:policy_automation_connector_for_siebel", "cpes": [ "cpe:2.3:a:oracle:policy_automation_connector_for_siebel:10.4.6:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "14.0" }, { "last_affected": "14.1" }, { "last_affected": "14.0" }, { "last_affected": "14.1" } ], "vendor_product": "oracle:retail_back_office", "cpes": [ "cpe:2.3:a:oracle:retail_back_office:14.0:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:retail_back_office:14.1:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "19.0" }, { "last_affected": "19.0" } ], "vendor_product": "oracle:retail_customer_management_and_segmentation_foundation", "cpes": [ "cpe:2.3:a:oracle:retail_customer_management_and_segmentation_foundation:19.0:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "14.0" }, { "last_affected": "14.1" }, { "last_affected": "14.0" }, { "last_affected": "14.1" } ], "vendor_product": "oracle:retail_returns_management", "cpes": [ "cpe:2.3:a:oracle:retail_returns_management:14.0:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:retail_returns_management:14.1:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "20.8" }, { "last_affected": "20.8" } ], "vendor_product": "oracle:siebel_ui_framework", "cpes": [ "cpe:2.3:a:oracle:siebel_ui_framework:20.8:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "8.5.1" } ], "vendor_product": "oracle:storagetek_acsls", "cpes": [ "cpe:2.3:a:oracle:storagetek_acsls:8.5.1:*:*:*:*:*:*:*" ] }, { "source": "CPE_STRING", "extracted_events": [ { "last_affected": "10.3.6.0.0" }, { "last_affected": "12.1.3.0.0" }, { "last_affected": "12.2.1.3.0" }, { "last_affected": "12.2.1.4.0" }, { "last_affected": "14.1.1.0.0" }, { "last_affected": "10.3.6.0.0" }, { "last_affected": "12.1.3.0.0" }, { "last_affected": "12.2.1.3.0" }, { "last_affected": "12.2.1.4.0" }, { "last_affected": "14.1.1.0.0" } ], "vendor_product": "oracle:weblogic_server", "cpes": [ "cpe:2.3:a:oracle:weblogic_server:10.3.6.0.0:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:weblogic_server:12.1.3.0.0:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*" ] } ] }- References
-
- http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00067.html
- http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00085.html
- http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00039.html
- https://github.com/jquery/jquery/releases/tag/3.5.0
- https://jquery.com/upgrade-guide/3.5
- https://lists.apache.org/thread.html/r0483ba0072783c2e1bfea613984bfb3c86e73ba8879d780dc1cc7d36%40%3Cissues.flink.apache.org%3E
- https://lists.apache.org/thread.html/r0483ba0072783c2e1bfea613984bfb3c86e73ba8879d780dc1cc7d36@%3Cissues.flink.apache.org%3E
- https://lists.apache.org/thread.html/r49ce4243b4738dd763caeb27fa8ad6afb426ae3e8c011ff00b8b1f48%40%3Cissues.flink.apache.org%3E
- https://lists.apache.org/thread.html/r49ce4243b4738dd763caeb27fa8ad6afb426ae3e8c011ff00b8b1f48@%3Cissues.flink.apache.org%3E
- https://lists.apache.org/thread.html/r54565a8f025c7c4f305355fdfd75b68eca442eebdb5f31c2e7d977ae%40%3Cissues.flink.apache.org%3E
- https://lists.apache.org/thread.html/r54565a8f025c7c4f305355fdfd75b68eca442eebdb5f31c2e7d977ae@%3Cissues.flink.apache.org%3E
- https://lists.apache.org/thread.html/r564585d97bc069137e64f521e68ba490c7c9c5b342df5d73c49a0760%40%3Cissues.flink.apache.org%3E
- https://lists.apache.org/thread.html/r564585d97bc069137e64f521e68ba490c7c9c5b342df5d73c49a0760@%3Cissues.flink.apache.org%3E
- https://lists.apache.org/thread.html/r706cfbc098420f7113968cc377247ec3d1439bce42e679c11c609e2d%40%3Cissues.flink.apache.org%3E
- https://lists.apache.org/thread.html/r706cfbc098420f7113968cc377247ec3d1439bce42e679c11c609e2d@%3Cissues.flink.apache.org%3E
- https://lists.apache.org/thread.html/r8f70b0f65d6bedf316ecd899371fd89e65333bc988f6326d2956735c%40%3Cissues.flink.apache.org%3E
- https://lists.apache.org/thread.html/r8f70b0f65d6bedf316ecd899371fd89e65333bc988f6326d2956735c@%3Cissues.flink.apache.org%3E
- https://lists.apache.org/thread.html/rbb448222ba62c430e21e13f940be4cb5cfc373cd3bce56b48c0ffa67%40%3Cdev.flink.apache.org%3E
- https://lists.apache.org/thread.html/rbb448222ba62c430e21e13f940be4cb5cfc373cd3bce56b48c0ffa67@%3Cdev.flink.apache.org%3E
- https://lists.apache.org/thread.html/rdf44341677cf7eec7e9aa96dcf3f37ed709544863d619cca8c36f133%40%3Ccommits.airflow.apache.org%3E
- https://lists.apache.org/thread.html/rdf44341677cf7eec7e9aa96dcf3f37ed709544863d619cca8c36f133@%3Ccommits.airflow.apache.org%3E
- https://lists.apache.org/thread.html/re4ae96fa5c1a2fe71ccbb7b7ac1538bd0cb677be270a2bf6e2f8d108%40%3Cissues.flink.apache.org%3E
- https://lists.apache.org/thread.html/re4ae96fa5c1a2fe71ccbb7b7ac1538bd0cb677be270a2bf6e2f8d108@%3Cissues.flink.apache.org%3E
- https://lists.apache.org/thread.html/rede9cfaa756e050a3d83045008f84a62802fc68c17f2b4eabeaae5e4%40%3Cissues.flink.apache.org%3E
- https://lists.apache.org/thread.html/rede9cfaa756e050a3d83045008f84a62802fc68c17f2b4eabeaae5e4@%3Cissues.flink.apache.org%3E
- https://lists.apache.org/thread.html/ree3bd8ddb23df5fa4e372d11c226830ea3650056b1059f3965b3fce2%40%3Cissues.flink.apache.org%3E
- https://lists.apache.org/thread.html/ree3bd8ddb23df5fa4e372d11c226830ea3650056b1059f3965b3fce2@%3Cissues.flink.apache.org%3E
- https://lists.debian.org/debian-lts-announce/2023/08/msg00040.html
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AVKYXLWCLZBV2N7M46KYK4LVA5OXWPBY/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QPN2L2XVQGUA2V5HNQJWHK3APSK3VN7K/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SAPQVX3XDNPGFT26QAQ6AJIXZZBZ4CD4/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SFP4UK4EGP4AFH2MWYJ5A5Z4I7XVFQ6B/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VOE7P7APPRQKD4FGNHBKJPDY6FFCOH3W/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AVKYXLWCLZBV2N7M46KYK4LVA5OXWPBY
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QPN2L2XVQGUA2V5HNQJWHK3APSK3VN7K
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SAPQVX3XDNPGFT26QAQ6AJIXZZBZ4CD4
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SFP4UK4EGP4AFH2MWYJ5A5Z4I7XVFQ6B
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VOE7P7APPRQKD4FGNHBKJPDY6FFCOH3W
- https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00067.html
- https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00085.html
- https://lists.opensuse.org/opensuse-security-announce/2020-11/msg00039.html
- https://packetstormsecurity.com/files/162159/jQuery-1.2-Cross-Site-Scripting.html
- https://www.oracle.com/security-alerts/cpujul2021.html
- https://www.oracle.com/security-alerts/cpujul2022.html
- http://security.netapp.com/advisory/ntap-20200511-0006
- https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/
- https://github.com/jquery/jquery/security/advisories/GHSA-gxr4-xjj5-5px2
- https://github.com/rubysec/ruby-advisory-db/blob/master/gems/jquery-rails/CVE-2020-11022.yml
- https://jquery.com/upgrade-guide/3.5/
- https://lists.debian.org/debian-lts-announce/2021/03/msg00033.html
- https://security.gentoo.org/glsa/202007-03
- https://security.netapp.com/advisory/ntap-20200511-0006/
- https://www.debian.org/security/2020/dsa-4693
- https://www.drupal.org/sa-core-2020-002
- https://www.oracle.com/security-alerts/cpujan2021.html
- https://www.oracle.com/security-alerts/cpujul2020.html
- https://www.oracle.com/security-alerts/cpuoct2020.html
- https://www.tenable.com/security/tns-2020-10
- https://www.tenable.com/security/tns-2020-11
- https://www.tenable.com/security/tns-2021-02
- https://www.tenable.com/security/tns-2021-10
- https://github.com/maximebf/php-debugbar/issues/447
- https://github.com/jquery/jquery/commit/1d61fd9407e6fbe82fe55cb0b938307aa0791f77
- https://github.com/maximebf/php-debugbar/commit/847216e60544258c881f2733d699bbcfeefac0fc
- https://www.oracle.com//security-alerts/cpujul2021.html
- https://www.oracle.com/security-alerts/cpuApr2021.html
- https://www.oracle.com/security-alerts/cpuapr2022.html
- https://www.oracle.com/security-alerts/cpujan2022.html
- https://www.oracle.com/security-alerts/cpuoct2021.html
- https://blog.jquery.com/2020/04/10/jquery-3-5-0-released
- http://packetstormsecurity.com/files/162159/jQuery-1.2-Cross-Site-Scripting.html
Affected packages
Git
github.com/drupal/drupal
Affected ranges
- Type
- GIT
- Repo
- https://github.com/drupal/drupal
- Events
- Database specific
{ "source": "CPE_RANGE", "cpe": "cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*", "extracted_events": [ { "introduced": "7.0" }, { "fixed": "7.70" }, { "introduced": "8.7.0" }, { "fixed": "8.7.14" }, { "introduced": "8.8.0" }, { "fixed": "8.8.6" } ] }
Affected versions
7.*
7.0
7.10
7.12
7.14
7.15
7.17
7.22
7.23
7.25
7.28
7.30
7.33
7.36
7.37
7.4
7.40
7.42
7.43
7.50
7.51
7.54
7.55
7.56
7.6
7.61
7.64
7.68
7.69
7.7
7.8
7.9
8.*
8.0-alpha10
8.0-alpha11
8.0-alpha12
8.0-alpha13
8.0-alpha2
8.0-alpha3
8.0-alpha4
8.0-alpha5
8.0-alpha6
8.0-alpha7
8.0-alpha8
8.0-alpha9
8.0.0
8.0.0-alpha14
8.0.0-alpha15
8.0.0-beta1
8.0.0-beta10
8.0.0-beta11
8.0.0-beta12
8.0.0-beta13
8.0.0-beta14
8.0.0-beta15
8.0.0-beta16
8.0.0-beta2
8.0.0-beta3
8.0.0-beta4
8.0.0-beta5
8.0.0-beta6
8.0.0-beta7
8.0.0-beta9
8.0.0-rc1
8.0.0-rc2
8.0.0-rc3
8.0.0-rc4
8.1.0-beta1
8.7.0-alpha1
8.7.0-alpha2
8.7.0-beta1
8.7.0-beta2
8.7.0-rc1
8.7.10
8.7.13
8.7.2
8.7.3
8.7.4
8.7.6
8.7.7
8.7.8
8.7.9
8.8.0
8.8.2
8.8.3
8.8.5
github.com/jquery/jquery
Affected versions
1.*
1.2
1.2.1
1.2.2
1.2.2b
1.2.2b2
1.2.3a
1.2.3b
1.2.4
1.2.4a
1.2.4b
1.2.5
1.3.1rc1
1.3b1
1.3b2
1.3rc1
1.4.3rc1
1.4.3rc2
1.4.4rc1
1.4.4rc2
1.4.4rc3
1.4a1
1.4a2
1.4rc1
1.5.1rc1
1.5.2rc1
1.5b1
1.5rc1
1.6.1rc1
1.6.2rc1
1.6.3rc1
1.6.4rc1
1.6b1
1.6rc1
1.7.1rc1
1.7.2b1
1.7.2rc1
1.7b1
1.7b2
1.7rc1
1.8b1
1.8b2
1.8rc1
1.9.0b1
2.*
2.0.0-beta3
2.0.0b1
2.0.0b2
2.1.0-beta1
github.com/php-debugbar/php-debugbar
Affected versions
1.*
1.0
1.0.1
1.0.2
1.0.3
1.0.4
1.10.0
1.10.1
1.13.1
1.15.1
1.2
1.3
1.4
1.5
1.5.1
1.6
1.6.1
1.7
1.7.1
1.8
1.9
1.9.1
1.9.10
1.9.11
1.9.12
1.9.13
1.9.14
1.9.15
1.9.2
1.9.3
1.9.4
1.9.5
1.9.6
1.9.7
1.9.8
1.9.9
v1.*
v1.10.2
v1.10.3
v1.10.4
v1.10.5
v1.11.0
v1.11.1
v1.12.0
v1.13.0
v1.14.0
v1.14.1
v1.15.0
v1.15.1
v1.16.0
v1.16.1
v1.16.2
v1.16.3
v1.16.4
v1.16.5
v1.17.0
v1.17.1
v1.17.2
v1.17.3
v1.18.0
v1.18.1
v1.18.2