DSA-2023-197: Dell Objectscale 1.2 Security Update for Third-Party Vulnerabilities
Summary: Dell ObjectScale 1.2 remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected systems.
This article applies to
This article does not apply to
This article is not tied to any specific product.
Not all product versions are identified in this article.
Impact
Critical
Details
| Third-party Component | CVEs | More Information | |
|---|---|---|---|
| Apache Avro | CVE-2021-43045, CVE-2022-36124, CVE-2022-35724 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/  |
|
| Apache Commons Compress | CVE-2021-36090, CVE-2021-35517, CVE-2021-35515, CVE-2021-35516 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Apache Groovy | CVE-2020-17521 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Apache Hadoop | CVE-2021-25642, CVE-2022-25168, CVE-2022-26612, CVE-2021-33036, CVE-2021-37404 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Apache HttpClient | CVE-2020-13956, CVE-2015-5262, CVE-2012-6153, CVE-2014-3577, CVE-2012-5783 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Apache Log4j | CVE-2021-44832, CVE-2021-45105 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Apache MINA Core API | CVE-2021-41973 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Apache Portable Runtime | CVE-2021-35940, CVE-2017-12613 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Apache Santuario (Java) | CVE-2021-40690 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Apache Thrift | CVE-2020-13949, CVE-2019-0205, CVE-2019-0210 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Apache ZooKeeper | CVE-2021-28169, CVE-2021-21295 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| apt - Advanced Package Tool | CVE-2011-3374, CVE-2019-3462, CVE-2020-27350, CVE-2020-3810 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| AWS Java SDK | CVE-2022-31159 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| AWS SDK for Go | CVE-2020-8912, CVE-2020-8911 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Bash | CVE-2016-0634, CVE-2016-7543, CVE-2016-9401, CVE-2017-5932, CVE-2019-18276, CVE-2019-9924 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| BIND9 (Berkeley Internet Name Domain) | CVE-2021-25220, CVE-2022-0635, CVE-2022-0396, CVE-2022-0667, CVE-2021-25219, CVE-2021-25216, CVE-2021-25214, CVE-2021-25215, CVE-2020-8625 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| bluemonday | CVE-2021-42576, CVE-2021-29272 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Bootstrap (Twitter) | CVE-2016-10735, CVE-2018-14040, CVE-2018-14041, CVE-2018-14042, CVE-2018-20676, CVE-2018-20677, CVE-2019-8331 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Bouncy Castle | CVE-2020-15522, CVE-2020-26939, CVE-2013-1624, CVE-2018-1000180, CVE-2016-1000345, CVE-2016-1000344, CVE-2016-1000352, CVE-2016-1000346, CVE-2016-1000342, CVE-2016-1000343, CVE-2016-1000339, CVE-2016-1000341, CVE-2016-1000338, CVE-2018-5382, CVE-2017-13098, CVE-2007-6721, CVE-2020-28052 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| busybox | CVE-2021-42373, CVE-2021-42374, CVE-2021-42375, CVE-2021-42376, CVE-2021-42377, CVE-2021-42378, CVE-2021-42379, CVE-2021-42380, CVE-2021-42381, CVE-2021-42382, CVE-2021-42383, CVE-2021-42384, CVE-2021-42385, CVE-2021-42386, CVE-2022-28391, CVE-2022-30065 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Bzip2 | CVE-2016-3189, CVE-2017-14107, CVE-2019-12900 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| c-ares | CVE-2021-3672 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Cassandra | CVE-2020-17516 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| client_golang | CVE-2022-21698 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Commons IO | CVE-2021-29425 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| containerd/containerd | CVE-2022-23471, CVE-2021-41103, CVE-2021-32760, CVE-2021-21334, CVE-2020-15257, CVE-2022-23648, CVE-2022-31030 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| cracklib | CVE-2016-6318 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| cronie | CVE-2019-9705, CVE-2019-9704 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| cron-utils | CVE-2021-41269 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| curl | CVE-2020-8169, CVE-2020-8177, CVE-2020-8231, CVE-2020-8284, CVE-2020-8285, CVE-2020-8286, CVE-2021-22876, CVE-2021-22890, CVE-2021-22897, CVE-2021-22898, CVE-2021-22922, CVE-2021-22923, CVE-2021-22924, CVE-2021-22925, CVE-2021-22926, CVE-2021-22946, CVE-2021-22947, CVE-2019-5482, CVE-2019-5481, CVE-2019-5443, CVE-2019-5435, CVE-2019-5436, CVE-2019-3822, CVE-2019-3823, CVE-2018-16890, CVE-2022-22576, CVE-2022-27774, CVE-2022-27776, CVE-2022-27781, CVE-2022-27782, CVE-2022-32206, CVE-2022-32208, CVE-2022-35252, CVE-2021-22945, CVE-2022-27775, CVE-2022-32205, CVE-2022-32207 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Cyrus SASL | CVE-2019-19906, CVE-2013-4122, CVE-2022-24407 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| D-Bus | CVE-2022-42012, CVE-2022-42011, CVE-2022-42010, CVE-2019-12749, CVE-2020-12049, CVE-2020-35512 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| deislabs/oras | CVE-2021-21272 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| docker-cli | CVE-2021-41092 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| dpkg | CVE-2022-1664 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| e2fsprogs | CVE-2018-9445, CVE-2019-5094, CVE-2019-5188, CVE-2022-1304 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Elasticsearch Kubernetes cloud plugin | CVE-2021-20218 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| elfutils | CVE-2016-10254, CVE-2016-10255, CVE-2017-7607, CVE-2017-7608, CVE-2017-7609, CVE-2017-7610, CVE-2017-7611, CVE-2017-7612, CVE-2017-7613, CVE-2018-16062, CVE-2018-16402, CVE-2018-16403, CVE-2018-18310, CVE-2018-18520, CVE-2018-18521, CVE-2019-7146, CVE-2019-7148, CVE-2019-7149, CVE-2019-7150, CVE-2019-7664, CVE-2019-7665 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| exhibitor | CVE-2019-5029 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| fence-agents | CVE-2019-10153 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| file | CVE-2018-10360, CVE-2019-18218, CVE-2019-8904, CVE-2019-8905, CVE-2019-8906, CVE-2019-8907 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| GMP | CVE-2021-43618 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| GNU Binutils | CVE-2021-46195, CVE-2021-45078, CVE-2021-3530, CVE-2018-9996, CVE-2019-9076, CVE-2020-35448, CVE-2021-20197, CVE-2021-20284, CVE-2021-20294, CVE-2021-3487, CVE-2021-3549 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| GNU C Library | CVE-2009-5155, CVE-2010-3192, CVE-2012-6656, CVE-2013-2207, CVE-2013-4458, CVE-2013-7423, CVE-2014-0475, CVE-2014-4043, CVE-2014-5119, CVE-2014-6040, CVE-2014-7817, CVE-2014-8121, CVE-2014-9402, CVE-2014-9761, CVE-2014-9984, CVE-2015-1472, CVE-2015-1473, CVE-2015-1781, CVE-2015-5180, CVE-2015-5277, CVE-2015-7547, CVE-2015-8776, CVE-2015-8777, CVE-2015-8778, CVE-2015-8779, CVE-2015-8982, CVE-2015-8983, CVE-2015-8984, CVE-2015-8985, CVE-2016-10228, CVE-2016-10739, CVE-2016-1234, CVE-2016-2856, CVE-2016-3075, CVE-2016-3706, CVE-2016-4429, CVE-2016-5417, CVE-2016-6323, CVE-2017-1000366, CVE-2017-1000408, CVE-2017-1000409, CVE-2017-12132, CVE-2017-12133, CVE-2017-15670, CVE-2017-15671, CVE-2017-15804, CVE-2017-16997, CVE-2017-17426, CVE-2017-18269, CVE-2018-1000001, CVE-2018-11236, CVE-2018-11237, CVE-2018-19591, CVE-2018-20796, CVE-2018-6485, CVE-2018-6551, CVE-2019-1010022, CVE-2019-1010023, CVE-2019-1010024, CVE-2019-1010025, CVE-2019-19126, CVE-2019-25013, CVE-2019-6488, CVE-2019-7309, CVE-2019-9169, CVE-2019-9192, CVE-2020-10029, CVE-2020-1751, CVE-2020-1752, CVE-2020-27618, CVE-2020-29562, CVE-2020-29573, CVE-2020-6096, CVE-2021-27645, CVE-2021-3326, CVE-2021-33574, CVE-2021-35942, CVE-2021-38604, CVE-2021-43396, CVE-2022-23218, CVE-2022-23219, CVE-2021-3998, CVE-2021-3999 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| GNU Compiler Collection | CVE-2021-37322, CVE-2019-15847, CVE-2019-14250, CVE-2018-12886, CVE-2018-12641, CVE-2021-3826, CVE-2022-27943 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| GNU Core Utilities | CVE-2017-18018, CVE-2016-2781 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| GNU cpio | CVE-2019-14866, CVE-2021-38185, CVE-2019-14866 , CVE-2021-3541 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| GNU tar | CVE-2016-6321, CVE-2018-20482, CVE-2019-9923, CVE-2021-20193 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| GnuPG | CVE-2018-1000858, CVE-2018-12020, CVE-2018-9234, CVE-2019-13050, CVE-2019-14855, CVE-2022-34903 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| GnuTLS | CVE-2018-10844, CVE-2018-10845, CVE-2018-10846, CVE-2018-16868, CVE-2019-3829, CVE-2020-11501, CVE-2020-13777, CVE-2020-24659, CVE-2021-20231, CVE-2021-20232, CVE-2019-3836, CVE-2021-4209, CVE-2022-2509 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| gogo-protobuf | CVE-2021-3121 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| google-gson | CVE-2022-25647 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| go-restful | CVE-2022-1996 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Grafana | CVE-2020-12052, CVE-2020-12245, CVE-2020-12458, CVE-2021-39226, CVE-2021-43813, CVE-2022-21702, CVE-2022-26148, CVE-2022-31107, CVE-2022-31123, CVE-2022-31130, CVE-2022-32275, CVE-2022-35957, CVE-2022-36062, CVE-2022-39201, CVE-2022-39229 |
|
|
| Guava: Google Core Libraries for Java | CVE-2020-8908 |
|
|
| helm/helm | CVE-2021-32690, CVE-2021-21303, CVE-2020-15187, CVE-2020-15185, CVE-2020-15186, CVE-2020-15184, CVE-2020-4053, CVE-2020-11013, CVE-2022-36049, CVE-2022-36055 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| ICU for C/C++ (ICU4C) | CVE-2020-21913, CVE-2020-10531, CVE-2018-18928 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| iproute2 | CVE-2019-20795 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| jackson-databind | CVE-2021-20190, CVE-2020-36183, CVE-2020-36182, CVE-2020-36180, CVE-2020-36179, CVE-2020-36187, CVE-2020-36188, CVE-2020-36189, CVE-2020-36185, CVE-2020-36186, CVE-2020-36181, CVE-2020-36184, CVE-2020-35728, CVE-2020-35491, CVE-2020-35490, CVE-2020-25649, CVE-2020-24750, CVE-2019-10172, CVE-2020-24616, CVE-2020-14195, CVE-2020-14060, CVE-2020-14062, CVE-2020-14061, CVE-2020-11620, CVE-2020-11619, CVE-2020-11113, CVE-2020-11112, CVE-2020-11111, CVE-2020-10968, CVE-2020-10969, CVE-2020-10672, CVE-2020-10673, CVE-2020-9546, CVE-2020-9547, CVE-2020-9548, CVE-2020-8840, CVE-2019-14893, CVE-2019-14892, CVE-2019-20330, CVE-2019-17531, CVE-2019-17267, CVE-2019-16942, CVE-2019-16943, CVE-2019-16335, CVE-2019-14540, CVE-2019-14439, CVE-2019-14379, CVE-2019-12814, CVE-2019-12384, CVE-2019-12086, CVE-2018-11307, CVE-2018-14720, CVE-2018-14721, CVE-2018-14719, CVE-2018-14718, CVE-2018-19362, CVE-2018-19361, CVE-2018-19360, CVE-2018-12023, CVE-2018-12022, CVE-2018-7489, CVE-2018-5968, CVE-2017-17485, CVE-2017-15095, CVE-2017-7525, CVE-2020-36518, CVE-2022-42004, CVE-2022-42003 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| jbeder/yaml-cpp | CVE-2018-20573, CVE-2018-20574, CVE-2019-6285, CVE-2019-6292 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| JDOM | CVE-2021-33813 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Jersey | CVE-2021-28168, CVE-2014-3643 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Jettison - Json Stax implementation | CVE-2022-40150, CVE-2022-40149 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Jetty | CVE-2022-2191, CVE-2022-2047, CVE-2022-2048, CVE-2021-34429, CVE-2021-34428 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| jQuery | CVE-2015-9251, CVE-2017-16012, CVE-2019-11358, CVE-2019-5428, CVE-2020-11022, CVE-2020-11023 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| JSch | CVE-2016-5725 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| json-c | CVE-2020-12762, CVE-2013-6370, CVE-2013-6371 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| json-smart | CVE-2021-31684 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| JUnit | CVE-2020-15250 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| jwt-go | CVE-2020-26160 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| keycloak | CVE-2021-20323, CVE-2021-3424, CVE-2021-3754, CVE-2021-3827, CVE-2022-0225, CVE-2022-1245, CVE-2022-1466, CVE-2022-2256 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Kotlin | CVE-2022-24329, CVE-2020-29582, CVE-2019-10101, CVE-2019-10103, CVE-2019-10102 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| krb5/krb5 | CVE-2017-7562, CVE-2019-14844, CVE-2020-28196, CVE-2021-36222, CVE-2021-37750 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Kubernetes | CVE-2018-1002101, CVE-2018-1002102, CVE-2018-1002105, CVE-2019-1002100, CVE-2019-1002101, CVE-2019-11244, CVE-2019-11246, CVE-2019-11247, CVE-2019-11248, CVE-2019-11249, CVE-2019-11250, CVE-2019-11252, CVE-2019-11253, CVE-2019-11254, CVE-2019-9946, CVE-2020-10749, CVE-2020-8552, CVE-2020-8554, CVE-2020-8555, CVE-2020-8557, CVE-2020-8558, CVE-2020-8559, CVE-2020-8561, CVE-2020-8563, CVE-2020-8562, CVE-2020-8564, CVE-2020-8565, CVE-2020-8566, CVE-2021-25735, CVE-2021-25740, CVE-2021-25741, CVE-2021-25743, CVE-2021-25737 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Kubernetes Client API | CVE-2021-25738, CVE-2020-8570 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| libbsd | CVE-2019-20367 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| libexpat | CVE-2013-0340, CVE-2018-20843, CVE-2019-15903, CVE-2021-40439, CVE-2021-45960, CVE-2021-46143, CVE-2022-22822, CVE-2022-22823, CVE-2022-22824, CVE-2022-22825, CVE-2022-22826, CVE-2022-22827, CVE-2022-25236, CVE-2022-25235, CVE-2022-23990, CVE-2022-23852, CVE-2022-25315, CVE-2022-25313, CVE-2022-25314, CVE-2022-40674, CVE-2022-43680 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| libgcrypt | CVE-2018-0495, CVE-2018-6594, CVE-2018-6829, CVE-2019-12904, CVE-2019-13627, CVE-2021-33560, CVE-2021-40528 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Libidn | CVE-2019-12290, CVE-2019-18224, CVE-2017-14062 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| libjpeg | CVE-2020-14153, CVE-2020-14152, CVE-2018-11813 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| libpcap | CVE-2019-15161, CVE-2019-15162, CVE-2019-15163, CVE-2019-15164, CVE-2019-15165 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| libpng | CVE-2018-14550, CVE-2019-7317, CVE-2019-6129, CVE-2018-14048, CVE-2018-13785, CVE-2017-12652, CVE-2016-10087, CVE-2016-3751, CVE-2015-8472, CVE-2015-8126 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| libproxy | CVE-2020-25219, CVE-2020-26154 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| libssh | CVE-2019-14889, CVE-2020-16135, CVE-2020-1730, CVE-2021-3634, CVE-2019-17498 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| libssh2 | CVE-2019-17498, CVE-2019-13115, CVE-2019-3857, CVE-2019-3860, CVE-2019-3856, CVE-2019-3861, CVE-2019-3863, CVE-2019-3858, CVE-2019-3855, CVE-2019-3859, CVE-2019-3862 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Libtasn1 | CVE-2018-1000654, CVE-2021-46848 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| libTIFF | CVE-2020-19143 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| libtirpc | CVE-2021-46828 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| libxml2 | CVE-2021-3516, CVE-2020-24977, CVE-2019-20388, CVE-2020-7595, CVE-2019-19956, CVE-2018-14567, CVE-2018-14404, CVE-2018-9251, CVE-2017-8872, CVE-2022-29824, CVE-2021-3517, CVE-2021-3518, CVE-2021-3537, CVE-2016-4483, CVE-2017-15412, CVE-2017-18258, CVE-2017-7375, CVE-2017-7376, CVE-2017-5130, CVE-2017-16932, CVE-2017-16931, CVE-2017-0663, CVE-2017-9048, CVE-2017-9049, CVE-2017-9047, CVE-2017-9050, CVE-2017-5969, CVE-2016-9318, CVE-2016-4658, CVE-2016-5131, CVE-2016-4448, CVE-2016-1838, CVE-2022-23308 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| libxslt | CVE-2021-30560, CVE-2019-5815, CVE-2019-18197, CVE-2019-13117, CVE-2019-13118, CVE-2019-11068 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Linux-Pam | CVE-2013-7041, CVE-2014-2583, CVE-2015-3238, CVE-2018-17953, CVE-2020-36394, CVE-2011-3628, CVE-2011-3148, CVE-2011-3149, CVE-2010-4707, CVE-2010-4706, CVE-2010-3853, CVE-2010-3430, CVE-2010-3435, CVE-2010-3431, CVE-2009-3232, CVE-2009-0887, CVE-2005-2977, CVE-2002-1227, CVE-2022-28321 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Logback | CVE-2021-42550 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| lua | CVE-2019-6706, CVE-2020-15888, CVE-2020-15945, CVE-2020-24342, CVE-2020-24369, CVE-2020-24370, CVE-2020-24371, CVE-2021-43519, CVE-2021-44647 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| lxml | CVE-2021-43818, CVE-2021-28957, CVE-2020-27783 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| lz4 | CVE-2014-4715, CVE-2019-17543, CVE-2021-3520 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| mailx | CVE-2004-2771 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| miekg/dns | CVE-2019-19794 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| mongodb/mongo-go-driver | CVE-2021-20329 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| musl | CVE-2020-28928 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| nats-io/jwt | CVE-2021-3127, CVE-2020-26892, CVE-2020-26521 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| ncurses | CVE-2022-29458, CVE-2018-19211, CVE-2018-19217, CVE-2019-17594, CVE-2019-17595, CVE-2021-39537 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Nettle | CVE-2021-20305, CVE-2021-3580 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Netty Project | CVE-2021-43797, CVE-2021-37137, CVE-2021-37136, CVE-2021-21409, CVE-2021-21290, CVE-2020-11612, CVE-2019-20445, CVE-2019-20444, CVE-2020-7238, CVE-2019-16869, CVE-2019-9512, CVE-2019-9518, CVE-2019-9515, CVE-2019-9514, CVE-2022-24823 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| nghttp2 | CVE-2020-11080, CVE-2019-9511, CVE-2019-9513 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| nginx | CVE-2021-23017 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| NMAP | CVE-2017-18594, CVE-2019-11490, CVE-2018-15173 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| opencontainers/image-spec | CVE-2021-41190 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| OpenJDK | CVE-2022-21291, CVE-2022-21293, CVE-2022-21294, CVE-2022-21341, CVE-2022-21305, CVE-2022-21283, CVE-2022-21277, CVE-2022-21340, CVE-2022-21360, CVE-2022-21365, CVE-2022-21366, CVE-2022-21299, CVE-2022-21248, CVE-2022-21282, CVE-2022-21296, CVE-2021-35603, CVE-2021-35567, CVE-2021-35586, CVE-2021-35565, CVE-2021-35561, CVE-2021-35559, CVE-2021-35556, CVE-2021-35550, CVE-2021-2163, CVE-2021-35578, CVE-2021-35564, CVE-2021-2341, CVE-2021-2369, CVE-2021-2388, CVE-2020-14562, CVE-2020-14796, CVE-2020-14792, CVE-2020-14803, CVE-2020-14779, CVE-2020-14781, CVE-2020-14797, CVE-2020-14782, CVE-2020-14621, CVE-2020-14577, CVE-2020-14556, CVE-2020-14581, CVE-2020-14593, CVE-2020-2755, CVE-2020-2781, CVE-2020-2767, CVE-2020-2830, CVE-2020-2800, CVE-2020-2756, CVE-2020-2754, CVE-2020-2757, CVE-2020-2778, CVE-2020-2773, CVE-2020-2655, CVE-2020-2593, CVE-2020-2583, CVE-2020-2601, CVE-2020-2590, CVE-2020-2654, CVE-2019-2933, CVE-2019-2945, CVE-2019-2987, CVE-2019-2962, CVE-2019-2964, CVE-2019-2977, CVE-2019-2978, CVE-2019-2992, CVE-2019-2988, CVE-2019-2983, CVE-2019-2973, CVE-2019-2981, CVE-2019-2975, CVE-2019-2989, CVE-2019-2949, CVE-2019-2958, CVE-2019-2762, CVE-2019-2816, CVE-2019-2766, CVE-2019-2786, CVE-2019-2818, CVE-2019-2821, CVE-2019-2769, CVE-2019-2745, CVE-2019-2602, CVE-2019-2684, CVE-2019-2426, CVE-2019-2422, CVE-2018-3211, CVE-2020-25710, CVE-2020-25709, CVE-2021-27212, CVE-2020-36224, CVE-2020-36227, CVE-2020-36223, CVE-2020-36230, CVE-2020-36225, CVE-2020-36222 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| OpenLDAP | CVE-2020-25710, CVE-2020-25709, CVE-2021-27212, CVE-2020-36224, CVE-2020-36227, CVE-2020-36223, CVE-2020-36230, CVE-2020-36225, CVE-2020-36222, CVE-2020-36221, CVE-2020-36226, CVE-2020-36228, CVE-2020-36229, CVE-2020-25692, CVE-2020-15719, CVE-2020-12243, CVE-2019-13057, CVE-2019-13565, CVE-2022-29155 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| OpenSSH | CVE-2021-36368, CVE-2021-41617, CVE-2016-20012, CVE-2021-28041, CVE-2020-15778, CVE-2020-14145, CVE-2019-6110, CVE-2020-12062 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| OpenSSL | CVE-2018-0734, CVE-2018-0735, CVE-2019-1543, CVE-2019-1547, CVE-2019-1549, CVE-2019-1551, CVE-2019-1552, CVE-2019-1563, CVE-2020-1967, CVE-2020-1971, CVE-2021-23839, CVE-2021-23840, CVE-2021-23841, CVE-2021-3449, CVE-2021-3450, CVE-2021-3711, CVE-2021-3712, CVE-2021-4044, CVE-2020-1968, CVE-2019-1559, CVE-2018-5407, CVE-2016-7056, CVE-2017-3738, CVE-2017-3736, CVE-2016-8610, CVE-2017-3735, CVE-2017-3731, CVE-2016-6306, CVE-2016-6304, CVE-2016-6302, CVE-2016-2181, CVE-2016-2182, CVE-2016-2179, CVE-2016-6303, CVE-2016-2183, CVE-2016-2180, CVE-2016-2178, CVE-2016-2177, CVE-2016-2109, CVE-2016-2105, CVE-2016-2176, CVE-2016-2106, CVE-2016-2108, CVE-2016-2107, CVE-2016-0799, CVE-2016-0798, CVE-2016-0702, CVE-2016-0705, CVE-2016-2842, CVE-2016-0797, CVE-2016-0703, CVE-2016-0704, CVE-2016-0800, CVE-2015-3197, CVE-2015-7575, CVE-2015-3194, CVE-2015-3195, CVE-2015-3196, CVE-2015-1790, CVE-2015-1788, CVE-2015-1791, CVE-2015-1789, CVE-2014-8176, CVE-2015-1792, CVE-2015-4000, CVE-2015-0287, CVE-2015-0289, CVE-2015-0286, CVE-2015-0288, CVE-2015-0292, CVE-2015-0209, CVE-2015-0293, CVE-2015-0205, CVE-2015-0204, CVE-2015-0206, CVE-2014-3570, CVE-2014-3571, CVE-2014-8275, CVE-2014-3572, CVE-2014-3513, CVE-2014-3568, CVE-2014-3567, CVE-2014-3566, CVE-2014-3509, CVE-2014-3510, CVE-2014-3512, CVE-2014-3505, CVE-2014-5139, CVE-2014-3511, CVE-2014-3508, CVE-2014-3506, CVE-2014-3507, CVE-2014-0195, CVE-2014-0221, CVE-2014-3470, CVE-2014-0224, CVE-2014-0198, CVE-2010-5298, CVE-2014-0160, CVE-2014-0076, CVE-2013-4353, CVE-2013-6450, CVE-2013-6449, CVE-2022-1292, CVE-2021-4160, CVE-2022-0778, CVE-2022-2068, CVE-2022-2097, CVE-2022-3358 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| openSUSE libsolv | CVE-2021-3200, CVE-2021-33928, CVE-2021-33929, CVE-2021-33930, CVE-2021-33938 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| p11-kit | CVE-2020-29361, CVE-2020-29362, CVE-2020-29363 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| pac4j core | CVE-2021-44878 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| PCRE | CVE-2017-11164, CVE-2017-16231, CVE-2017-6004, CVE-2017-7186, CVE-2017-7244, CVE-2017-7246, CVE-2019-20454, CVE-2019-20838, CVE-2020-14155, CVE-2014-8964, CVE-2015-2325, CVE-2015-2326, CVE-2015-2327, CVE-2015-2328, CVE-2015-3217, CVE-2015-5073, CVE-2015-8380, CVE-2015-8381, CVE-2015-8383, CVE-2015-8384, CVE-2015-8385, CVE-2015-8386, CVE-2015-8387, CVE-2015-8388, CVE-2015-8389, CVE-2015-8390, CVE-2015-8391, CVE-2015-8392, CVE-2015-8393, CVE-2015-8394, CVE-2015-8395, CVE-2017-7245 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| PCRE2 | CVE-2022-1587, CVE-2022-1586 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Perl | CVE-2017-12814, CVE-2017-12837, CVE-2017-12883, CVE-2018-12015, CVE-2018-18311, CVE-2018-18312, CVE-2018-18313, CVE-2018-18314, CVE-2018-6797, CVE-2018-6798, CVE-2018-6913, CVE-2020-10543, CVE-2020-10878, CVE-2020-12723, CVE-2021-36770, CVE-2017-6512 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| pion/dtls | CVE-2022-29189, CVE-2022-29190, CVE-2022-29222 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| pip | CVE-2021-3572, CVE-2018-20225 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| PostgreSQL Database Server | CVE-2021-23214, CVE-2021-23222, CVE-2021-32027, CVE-2021-32028, CVE-2021-32029, CVE-2021-3677, CVE-2021-43767, CVE-2022-1552, CVE-2022-2625 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Procps | CVE-2018-1121, CVE-2018-1122, CVE-2018-1123, CVE-2018-1124, CVE-2018-1125, CVE-2018-1126 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Protocol Buffer Java API | CVE-2021-22569 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| py | CVE-2020-29651 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Python programming language | CVE-2022-45061, CVE-2022-42919, CVE-2021-29921, CVE-2017-18207, CVE-2019-20907, CVE-2019-9674, CVE-2019-17514, CVE-2019-9947, CVE-2019-9740, CVE-2019-9636, CVE-2018-20406, CVE-2018-1060, CVE-2021-3426, CVE-2021-28359, CVE-2021-23336, CVE-2021-3177, CVE-2020-27619, CVE-2007-4559, CVE-2020-10735 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| PyYAML | CVE-2020-14343, CVE-2020-1747 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Quartz Enterprise Job Scheduler | CVE-2019-13990 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| RPM | CVE-2021-20266, CVE-2021-20271, CVE-2021-3421 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| rsyslog | CVE-2019-17041, CVE-2019-17042 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| runc | CVE-2021-43784, CVE-2021-30465, CVE-2019-19921, CVE-2019-16884, CVE-2019-5736, CVE-2016-9962, CVE-2022-29162, CVE-2022-24769 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Screen | CVE-2021-26937, CVE-2020-9366 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Seccomp Library | CVE-2019-9893 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Shadow Tool Suite | CVE-2018-7169, CVE-2013-4235, CVE-2017-12424 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| SnakeYAML | CVE-2022-38750, CVE-2022-38749, CVE-2022-38751, CVE-2022-38752, CVE-2022-25857 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Spring Framework | CVE-2021-22060, CVE-2021-22096, CVE-2022-22950, CVE-2016-1000027, CVE-2022-22971, CVE-2022-22970, CVE-2022-22968, CVE-2022-22965, CVE-2021-22118, CVE-2022-22963 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Spring Security | CVE-2022-22976, CVE-2022-22978 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| SQLite | CVE-2019-16168, CVE-2019-19242, CVE-2019-19244, CVE-2019-19317, CVE-2019-19603, CVE-2019-19645, CVE-2019-19646, CVE-2019-19880, CVE-2019-19923, CVE-2019-19924, CVE-2019-19925, CVE-2019-19926, CVE-2019-19959, CVE-2019-20218, CVE-2019-8598, CVE-2019-8600, CVE-2019-8602, CVE-2020-11655, CVE-2020-11656, CVE-2020-13434, CVE-2020-13435, CVE-2020-13630, CVE-2020-13631, CVE-2020-13632, CVE-2020-13871, CVE-2020-15358, CVE-2020-9327, CVE-2021-36690, CVE-2019-5827, CVE-2017-2518, CVE-2017-2519, CVE-2017-2520, CVE-2017-13685, CVE-2019-8457, CVE-2019-5018, CVE-2018-20505, CVE-2018-20506, CVE-2018-20346, CVE-2018-8740, CVE-2017-10989, CVE-2016-6153, CVE-2019-9936, CVE-2019-9937, CVE-2020-35525, CVE-2022-35737, CVE-2021-3156, CVE-2021-23240, CVE-2021-23239, CVE-2019-18634, CVE-2019-19232, CVE-2019-19234, CVE-2019-18684, CVE-2019-14287, CVE-2022-4415, CVE-2022-3821, CVE-2021-33910, CVE-2020-13529, CVE-2020-1712, CVE-2019-20386, CVE-2019-3844, CVE-2019-3843, CVE-2019-3842, CVE-2019-6454, CVE-2018-16865, CVE-2018-16864, CVE-2018-15688, CVE-2018-15687, CVE-2018-15686, CVE-2018-6954, CVE-2017-18078, CVE-2013-4392, CVE-2022-45873, CVE-2021-3997, CVE-2017-15908, CVE-2018-16866, CVE-2018-16888, CVE-2018-20839, CVE-2019-14899, CVE-2020-13776, CVE-2018-21029 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| sudo | CVE-2021-3156, CVE-2021-23240, CVE-2021-23239, CVE-2019-18634, CVE-2019-19232, CVE-2019-19234, CVE-2019-18684, CVE-2019-14287 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| systemd | CVE-2022-4415, CVE-2022-3821, CVE-2021-33910, CVE-2020-13529, CVE-2020-1712, CVE-2019-20386, CVE-2019-3844, CVE-2019-3843, CVE-2019-3842, CVE-2019-6454, CVE-2018-16865, CVE-2018-16864, CVE-2018-15688, CVE-2018-15687, CVE-2018-15686, CVE-2018-6954, CVE-2017-18078, CVE-2013-4392, CVE-2022-45873, CVE-2021-3997, CVE-2017-15908, CVE-2018-16866, CVE-2018-16888, CVE-2018-20839, CVE-2019-14899, CVE-2020-13776, CVE-2018-21029 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| The FreeType Project | CVE-2020-15999 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| tidwall/gjson | CVE-2021-42836, CVE-2020-36066, CVE-2020-36067, CVE-2020-35380 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| unixODBC | CVE-2018-7409, CVE-2018-7485 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| urllib3 | CVE-2021-28363, CVE-2021-33503, CVE-2020-26137, CVE-2019-11324, CVE-2019-11236, CVE-2018-20060, CVE-2020-7212 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| util-linux | CVE-2021-3995, CVE-2017-2616, CVE-2018-7738, CVE-2021-37600, CVE-2021-3996 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| vcs-go | CVE-2022-21235 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| velocity.apache. org/tools/devel | CVE-2020-13936 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Wget | CVE-2021-31879 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Woodstox | CVE-2022-40152, CVE-2022-40151 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| XZ Utils | CVE-2022-1271 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Zip & Unzip | CVE-2014-8141, CVE-2014-8139, CVE-2014-8140, CVE-2018-1000035, CVE-2005-0602, CVE-2001-1268, CVE-2001-1269 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Zip & Unzip | CVE-2014-8141 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| zlib | CVE-2022-37434, CVE-2016-9843, CVE-2016-9842, CVE-2016-9840, CVE-2016-9841, CVE-2018-25032 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| zstd | CVE-2019-11922, CVE-2021-24031, CVE-2021-24032 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
| Third-party Component | CVEs | More Information | |
|---|---|---|---|
| Apache Avro | CVE-2021-43045, CVE-2022-36124, CVE-2022-35724 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Apache Commons Compress | CVE-2021-36090, CVE-2021-35517, CVE-2021-35515, CVE-2021-35516 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Apache Groovy | CVE-2020-17521 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Apache Hadoop | CVE-2021-25642, CVE-2022-25168, CVE-2022-26612, CVE-2021-33036, CVE-2021-37404 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Apache HttpClient | CVE-2020-13956, CVE-2015-5262, CVE-2012-6153, CVE-2014-3577, CVE-2012-5783 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Apache Log4j | CVE-2021-44832, CVE-2021-45105 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Apache MINA Core API | CVE-2021-41973 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Apache Portable Runtime | CVE-2021-35940, CVE-2017-12613 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Apache Santuario (Java) | CVE-2021-40690 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Apache Thrift | CVE-2020-13949, CVE-2019-0205, CVE-2019-0210 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Apache ZooKeeper | CVE-2021-28169, CVE-2021-21295 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| apt - Advanced Package Tool | CVE-2011-3374, CVE-2019-3462, CVE-2020-27350, CVE-2020-3810 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| AWS Java SDK | CVE-2022-31159 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| AWS SDK for Go | CVE-2020-8912, CVE-2020-8911 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Bash | CVE-2016-0634, CVE-2016-7543, CVE-2016-9401, CVE-2017-5932, CVE-2019-18276, CVE-2019-9924 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| BIND9 (Berkeley Internet Name Domain) | CVE-2021-25220, CVE-2022-0635, CVE-2022-0396, CVE-2022-0667, CVE-2021-25219, CVE-2021-25216, CVE-2021-25214, CVE-2021-25215, CVE-2020-8625 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| bluemonday | CVE-2021-42576, CVE-2021-29272 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Bootstrap (Twitter) | CVE-2016-10735, CVE-2018-14040, CVE-2018-14041, CVE-2018-14042, CVE-2018-20676, CVE-2018-20677, CVE-2019-8331 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Bouncy Castle | CVE-2020-15522, CVE-2020-26939, CVE-2013-1624, CVE-2018-1000180, CVE-2016-1000345, CVE-2016-1000344, CVE-2016-1000352, CVE-2016-1000346, CVE-2016-1000342, CVE-2016-1000343, CVE-2016-1000339, CVE-2016-1000341, CVE-2016-1000338, CVE-2018-5382, CVE-2017-13098, CVE-2007-6721, CVE-2020-28052 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| busybox | CVE-2021-42373, CVE-2021-42374, CVE-2021-42375, CVE-2021-42376, CVE-2021-42377, CVE-2021-42378, CVE-2021-42379, CVE-2021-42380, CVE-2021-42381, CVE-2021-42382, CVE-2021-42383, CVE-2021-42384, CVE-2021-42385, CVE-2021-42386, CVE-2022-28391, CVE-2022-30065 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Bzip2 | CVE-2016-3189, CVE-2017-14107, CVE-2019-12900 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| c-ares | CVE-2021-3672 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Cassandra | CVE-2020-17516 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| client_golang | CVE-2022-21698 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Commons IO | CVE-2021-29425 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| containerd/containerd | CVE-2022-23471, CVE-2021-41103, CVE-2021-32760, CVE-2021-21334, CVE-2020-15257, CVE-2022-23648, CVE-2022-31030 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| cracklib | CVE-2016-6318 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| cronie | CVE-2019-9705, CVE-2019-9704 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| cron-utils | CVE-2021-41269 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| curl | CVE-2020-8169, CVE-2020-8177, CVE-2020-8231, CVE-2020-8284, CVE-2020-8285, CVE-2020-8286, CVE-2021-22876, CVE-2021-22890, CVE-2021-22897, CVE-2021-22898, CVE-2021-22922, CVE-2021-22923, CVE-2021-22924, CVE-2021-22925, CVE-2021-22926, CVE-2021-22946, CVE-2021-22947, CVE-2019-5482, CVE-2019-5481, CVE-2019-5443, CVE-2019-5435, CVE-2019-5436, CVE-2019-3822, CVE-2019-3823, CVE-2018-16890, CVE-2022-22576, CVE-2022-27774, CVE-2022-27776, CVE-2022-27781, CVE-2022-27782, CVE-2022-32206, CVE-2022-32208, CVE-2022-35252, CVE-2021-22945, CVE-2022-27775, CVE-2022-32205, CVE-2022-32207 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Cyrus SASL | CVE-2019-19906, CVE-2013-4122, CVE-2022-24407 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| D-Bus | CVE-2022-42012, CVE-2022-42011, CVE-2022-42010, CVE-2019-12749, CVE-2020-12049, CVE-2020-35512 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| deislabs/oras | CVE-2021-21272 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| docker-cli | CVE-2021-41092 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| dpkg | CVE-2022-1664 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| e2fsprogs | CVE-2018-9445, CVE-2019-5094, CVE-2019-5188, CVE-2022-1304 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Elasticsearch Kubernetes cloud plugin | CVE-2021-20218 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| elfutils | CVE-2016-10254, CVE-2016-10255, CVE-2017-7607, CVE-2017-7608, CVE-2017-7609, CVE-2017-7610, CVE-2017-7611, CVE-2017-7612, CVE-2017-7613, CVE-2018-16062, CVE-2018-16402, CVE-2018-16403, CVE-2018-18310, CVE-2018-18520, CVE-2018-18521, CVE-2019-7146, CVE-2019-7148, CVE-2019-7149, CVE-2019-7150, CVE-2019-7664, CVE-2019-7665 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| exhibitor | CVE-2019-5029 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| fence-agents | CVE-2019-10153 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| file | CVE-2018-10360, CVE-2019-18218, CVE-2019-8904, CVE-2019-8905, CVE-2019-8906, CVE-2019-8907 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| GMP | CVE-2021-43618 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| GNU Binutils | CVE-2021-46195, CVE-2021-45078, CVE-2021-3530, CVE-2018-9996, CVE-2019-9076, CVE-2020-35448, CVE-2021-20197, CVE-2021-20284, CVE-2021-20294, CVE-2021-3487, CVE-2021-3549 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| GNU C Library | CVE-2009-5155, CVE-2010-3192, CVE-2012-6656, CVE-2013-2207, CVE-2013-4458, CVE-2013-7423, CVE-2014-0475, CVE-2014-4043, CVE-2014-5119, CVE-2014-6040, CVE-2014-7817, CVE-2014-8121, CVE-2014-9402, CVE-2014-9761, CVE-2014-9984, CVE-2015-1472, CVE-2015-1473, CVE-2015-1781, CVE-2015-5180, CVE-2015-5277, CVE-2015-7547, CVE-2015-8776, CVE-2015-8777, CVE-2015-8778, CVE-2015-8779, CVE-2015-8982, CVE-2015-8983, CVE-2015-8984, CVE-2015-8985, CVE-2016-10228, CVE-2016-10739, CVE-2016-1234, CVE-2016-2856, CVE-2016-3075, CVE-2016-3706, CVE-2016-4429, CVE-2016-5417, CVE-2016-6323, CVE-2017-1000366, CVE-2017-1000408, CVE-2017-1000409, CVE-2017-12132, CVE-2017-12133, CVE-2017-15670, CVE-2017-15671, CVE-2017-15804, CVE-2017-16997, CVE-2017-17426, CVE-2017-18269, CVE-2018-1000001, CVE-2018-11236, CVE-2018-11237, CVE-2018-19591, CVE-2018-20796, CVE-2018-6485, CVE-2018-6551, CVE-2019-1010022, CVE-2019-1010023, CVE-2019-1010024, CVE-2019-1010025, CVE-2019-19126, CVE-2019-25013, CVE-2019-6488, CVE-2019-7309, CVE-2019-9169, CVE-2019-9192, CVE-2020-10029, CVE-2020-1751, CVE-2020-1752, CVE-2020-27618, CVE-2020-29562, CVE-2020-29573, CVE-2020-6096, CVE-2021-27645, CVE-2021-3326, CVE-2021-33574, CVE-2021-35942, CVE-2021-38604, CVE-2021-43396, CVE-2022-23218, CVE-2022-23219, CVE-2021-3998, CVE-2021-3999 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| GNU Compiler Collection | CVE-2021-37322, CVE-2019-15847, CVE-2019-14250, CVE-2018-12886, CVE-2018-12641, CVE-2021-3826, CVE-2022-27943 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| GNU Core Utilities | CVE-2017-18018, CVE-2016-2781 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| GNU cpio | CVE-2019-14866, CVE-2021-38185, CVE-2019-14866 , CVE-2021-3541 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| GNU tar | CVE-2016-6321, CVE-2018-20482, CVE-2019-9923, CVE-2021-20193 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| GnuPG | CVE-2018-1000858, CVE-2018-12020, CVE-2018-9234, CVE-2019-13050, CVE-2019-14855, CVE-2022-34903 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| GnuTLS | CVE-2018-10844, CVE-2018-10845, CVE-2018-10846, CVE-2018-16868, CVE-2019-3829, CVE-2020-11501, CVE-2020-13777, CVE-2020-24659, CVE-2021-20231, CVE-2021-20232, CVE-2019-3836, CVE-2021-4209, CVE-2022-2509 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| gogo-protobuf | CVE-2021-3121 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| google-gson | CVE-2022-25647 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| go-restful | CVE-2022-1996 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Grafana | CVE-2020-12052, CVE-2020-12245, CVE-2020-12458, CVE-2021-39226, CVE-2021-43813, CVE-2022-21702, CVE-2022-26148, CVE-2022-31107, CVE-2022-31123, CVE-2022-31130, CVE-2022-32275, CVE-2022-35957, CVE-2022-36062, CVE-2022-39201, CVE-2022-39229 |
|
|
| Guava: Google Core Libraries for Java | CVE-2020-8908 |
|
|
| helm/helm | CVE-2021-32690, CVE-2021-21303, CVE-2020-15187, CVE-2020-15185, CVE-2020-15186, CVE-2020-15184, CVE-2020-4053, CVE-2020-11013, CVE-2022-36049, CVE-2022-36055 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| ICU for C/C++ (ICU4C) | CVE-2020-21913, CVE-2020-10531, CVE-2018-18928 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| iproute2 | CVE-2019-20795 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| jackson-databind | CVE-2021-20190, CVE-2020-36183, CVE-2020-36182, CVE-2020-36180, CVE-2020-36179, CVE-2020-36187, CVE-2020-36188, CVE-2020-36189, CVE-2020-36185, CVE-2020-36186, CVE-2020-36181, CVE-2020-36184, CVE-2020-35728, CVE-2020-35491, CVE-2020-35490, CVE-2020-25649, CVE-2020-24750, CVE-2019-10172, CVE-2020-24616, CVE-2020-14195, CVE-2020-14060, CVE-2020-14062, CVE-2020-14061, CVE-2020-11620, CVE-2020-11619, CVE-2020-11113, CVE-2020-11112, CVE-2020-11111, CVE-2020-10968, CVE-2020-10969, CVE-2020-10672, CVE-2020-10673, CVE-2020-9546, CVE-2020-9547, CVE-2020-9548, CVE-2020-8840, CVE-2019-14893, CVE-2019-14892, CVE-2019-20330, CVE-2019-17531, CVE-2019-17267, CVE-2019-16942, CVE-2019-16943, CVE-2019-16335, CVE-2019-14540, CVE-2019-14439, CVE-2019-14379, CVE-2019-12814, CVE-2019-12384, CVE-2019-12086, CVE-2018-11307, CVE-2018-14720, CVE-2018-14721, CVE-2018-14719, CVE-2018-14718, CVE-2018-19362, CVE-2018-19361, CVE-2018-19360, CVE-2018-12023, CVE-2018-12022, CVE-2018-7489, CVE-2018-5968, CVE-2017-17485, CVE-2017-15095, CVE-2017-7525, CVE-2020-36518, CVE-2022-42004, CVE-2022-42003 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| jbeder/yaml-cpp | CVE-2018-20573, CVE-2018-20574, CVE-2019-6285, CVE-2019-6292 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| JDOM | CVE-2021-33813 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Jersey | CVE-2021-28168, CVE-2014-3643 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Jettison - Json Stax implementation | CVE-2022-40150, CVE-2022-40149 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Jetty | CVE-2022-2191, CVE-2022-2047, CVE-2022-2048, CVE-2021-34429, CVE-2021-34428 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| jQuery | CVE-2015-9251, CVE-2017-16012, CVE-2019-11358, CVE-2019-5428, CVE-2020-11022, CVE-2020-11023 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| JSch | CVE-2016-5725 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| json-c | CVE-2020-12762, CVE-2013-6370, CVE-2013-6371 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| json-smart | CVE-2021-31684 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| JUnit | CVE-2020-15250 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| jwt-go | CVE-2020-26160 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| keycloak | CVE-2021-20323, CVE-2021-3424, CVE-2021-3754, CVE-2021-3827, CVE-2022-0225, CVE-2022-1245, CVE-2022-1466, CVE-2022-2256 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Kotlin | CVE-2022-24329, CVE-2020-29582, CVE-2019-10101, CVE-2019-10103, CVE-2019-10102 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| krb5/krb5 | CVE-2017-7562, CVE-2019-14844, CVE-2020-28196, CVE-2021-36222, CVE-2021-37750 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Kubernetes | CVE-2018-1002101, CVE-2018-1002102, CVE-2018-1002105, CVE-2019-1002100, CVE-2019-1002101, CVE-2019-11244, CVE-2019-11246, CVE-2019-11247, CVE-2019-11248, CVE-2019-11249, CVE-2019-11250, CVE-2019-11252, CVE-2019-11253, CVE-2019-11254, CVE-2019-9946, CVE-2020-10749, CVE-2020-8552, CVE-2020-8554, CVE-2020-8555, CVE-2020-8557, CVE-2020-8558, CVE-2020-8559, CVE-2020-8561, CVE-2020-8563, CVE-2020-8562, CVE-2020-8564, CVE-2020-8565, CVE-2020-8566, CVE-2021-25735, CVE-2021-25740, CVE-2021-25741, CVE-2021-25743, CVE-2021-25737 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Kubernetes Client API | CVE-2021-25738, CVE-2020-8570 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| libbsd | CVE-2019-20367 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| libexpat | CVE-2013-0340, CVE-2018-20843, CVE-2019-15903, CVE-2021-40439, CVE-2021-45960, CVE-2021-46143, CVE-2022-22822, CVE-2022-22823, CVE-2022-22824, CVE-2022-22825, CVE-2022-22826, CVE-2022-22827, CVE-2022-25236, CVE-2022-25235, CVE-2022-23990, CVE-2022-23852, CVE-2022-25315, CVE-2022-25313, CVE-2022-25314, CVE-2022-40674, CVE-2022-43680 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| libgcrypt | CVE-2018-0495, CVE-2018-6594, CVE-2018-6829, CVE-2019-12904, CVE-2019-13627, CVE-2021-33560, CVE-2021-40528 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Libidn | CVE-2019-12290, CVE-2019-18224, CVE-2017-14062 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| libjpeg | CVE-2020-14153, CVE-2020-14152, CVE-2018-11813 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| libpcap | CVE-2019-15161, CVE-2019-15162, CVE-2019-15163, CVE-2019-15164, CVE-2019-15165 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| libpng | CVE-2018-14550, CVE-2019-7317, CVE-2019-6129, CVE-2018-14048, CVE-2018-13785, CVE-2017-12652, CVE-2016-10087, CVE-2016-3751, CVE-2015-8472, CVE-2015-8126 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| libproxy | CVE-2020-25219, CVE-2020-26154 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| libssh | CVE-2019-14889, CVE-2020-16135, CVE-2020-1730, CVE-2021-3634, CVE-2019-17498 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| libssh2 | CVE-2019-17498, CVE-2019-13115, CVE-2019-3857, CVE-2019-3860, CVE-2019-3856, CVE-2019-3861, CVE-2019-3863, CVE-2019-3858, CVE-2019-3855, CVE-2019-3859, CVE-2019-3862 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Libtasn1 | CVE-2018-1000654, CVE-2021-46848 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| libTIFF | CVE-2020-19143 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| libtirpc | CVE-2021-46828 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| libxml2 | CVE-2021-3516, CVE-2020-24977, CVE-2019-20388, CVE-2020-7595, CVE-2019-19956, CVE-2018-14567, CVE-2018-14404, CVE-2018-9251, CVE-2017-8872, CVE-2022-29824, CVE-2021-3517, CVE-2021-3518, CVE-2021-3537, CVE-2016-4483, CVE-2017-15412, CVE-2017-18258, CVE-2017-7375, CVE-2017-7376, CVE-2017-5130, CVE-2017-16932, CVE-2017-16931, CVE-2017-0663, CVE-2017-9048, CVE-2017-9049, CVE-2017-9047, CVE-2017-9050, CVE-2017-5969, CVE-2016-9318, CVE-2016-4658, CVE-2016-5131, CVE-2016-4448, CVE-2016-1838, CVE-2022-23308 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| libxslt | CVE-2021-30560, CVE-2019-5815, CVE-2019-18197, CVE-2019-13117, CVE-2019-13118, CVE-2019-11068 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Linux-Pam | CVE-2013-7041, CVE-2014-2583, CVE-2015-3238, CVE-2018-17953, CVE-2020-36394, CVE-2011-3628, CVE-2011-3148, CVE-2011-3149, CVE-2010-4707, CVE-2010-4706, CVE-2010-3853, CVE-2010-3430, CVE-2010-3435, CVE-2010-3431, CVE-2009-3232, CVE-2009-0887, CVE-2005-2977, CVE-2002-1227, CVE-2022-28321 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Logback | CVE-2021-42550 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| lua | CVE-2019-6706, CVE-2020-15888, CVE-2020-15945, CVE-2020-24342, CVE-2020-24369, CVE-2020-24370, CVE-2020-24371, CVE-2021-43519, CVE-2021-44647 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| lxml | CVE-2021-43818, CVE-2021-28957, CVE-2020-27783 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| lz4 | CVE-2014-4715, CVE-2019-17543, CVE-2021-3520 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| mailx | CVE-2004-2771 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| miekg/dns | CVE-2019-19794 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| mongodb/mongo-go-driver | CVE-2021-20329 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| musl | CVE-2020-28928 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| nats-io/jwt | CVE-2021-3127, CVE-2020-26892, CVE-2020-26521 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| ncurses | CVE-2022-29458, CVE-2018-19211, CVE-2018-19217, CVE-2019-17594, CVE-2019-17595, CVE-2021-39537 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Nettle | CVE-2021-20305, CVE-2021-3580 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Netty Project | CVE-2021-43797, CVE-2021-37137, CVE-2021-37136, CVE-2021-21409, CVE-2021-21290, CVE-2020-11612, CVE-2019-20445, CVE-2019-20444, CVE-2020-7238, CVE-2019-16869, CVE-2019-9512, CVE-2019-9518, CVE-2019-9515, CVE-2019-9514, CVE-2022-24823 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| nghttp2 | CVE-2020-11080, CVE-2019-9511, CVE-2019-9513 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| nginx | CVE-2021-23017 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| NMAP | CVE-2017-18594, CVE-2019-11490, CVE-2018-15173 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| opencontainers/image-spec | CVE-2021-41190 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| OpenJDK | CVE-2022-21291, CVE-2022-21293, CVE-2022-21294, CVE-2022-21341, CVE-2022-21305, CVE-2022-21283, CVE-2022-21277, CVE-2022-21340, CVE-2022-21360, CVE-2022-21365, CVE-2022-21366, CVE-2022-21299, CVE-2022-21248, CVE-2022-21282, CVE-2022-21296, CVE-2021-35603, CVE-2021-35567, CVE-2021-35586, CVE-2021-35565, CVE-2021-35561, CVE-2021-35559, CVE-2021-35556, CVE-2021-35550, CVE-2021-2163, CVE-2021-35578, CVE-2021-35564, CVE-2021-2341, CVE-2021-2369, CVE-2021-2388, CVE-2020-14562, CVE-2020-14796, CVE-2020-14792, CVE-2020-14803, CVE-2020-14779, CVE-2020-14781, CVE-2020-14797, CVE-2020-14782, CVE-2020-14621, CVE-2020-14577, CVE-2020-14556, CVE-2020-14581, CVE-2020-14593, CVE-2020-2755, CVE-2020-2781, CVE-2020-2767, CVE-2020-2830, CVE-2020-2800, CVE-2020-2756, CVE-2020-2754, CVE-2020-2757, CVE-2020-2778, CVE-2020-2773, CVE-2020-2655, CVE-2020-2593, CVE-2020-2583, CVE-2020-2601, CVE-2020-2590, CVE-2020-2654, CVE-2019-2933, CVE-2019-2945, CVE-2019-2987, CVE-2019-2962, CVE-2019-2964, CVE-2019-2977, CVE-2019-2978, CVE-2019-2992, CVE-2019-2988, CVE-2019-2983, CVE-2019-2973, CVE-2019-2981, CVE-2019-2975, CVE-2019-2989, CVE-2019-2949, CVE-2019-2958, CVE-2019-2762, CVE-2019-2816, CVE-2019-2766, CVE-2019-2786, CVE-2019-2818, CVE-2019-2821, CVE-2019-2769, CVE-2019-2745, CVE-2019-2602, CVE-2019-2684, CVE-2019-2426, CVE-2019-2422, CVE-2018-3211, CVE-2020-25710, CVE-2020-25709, CVE-2021-27212, CVE-2020-36224, CVE-2020-36227, CVE-2020-36223, CVE-2020-36230, CVE-2020-36225, CVE-2020-36222 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| OpenLDAP | CVE-2020-25710, CVE-2020-25709, CVE-2021-27212, CVE-2020-36224, CVE-2020-36227, CVE-2020-36223, CVE-2020-36230, CVE-2020-36225, CVE-2020-36222, CVE-2020-36221, CVE-2020-36226, CVE-2020-36228, CVE-2020-36229, CVE-2020-25692, CVE-2020-15719, CVE-2020-12243, CVE-2019-13057, CVE-2019-13565, CVE-2022-29155 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| OpenSSH | CVE-2021-36368, CVE-2021-41617, CVE-2016-20012, CVE-2021-28041, CVE-2020-15778, CVE-2020-14145, CVE-2019-6110, CVE-2020-12062 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| OpenSSL | CVE-2018-0734, CVE-2018-0735, CVE-2019-1543, CVE-2019-1547, CVE-2019-1549, CVE-2019-1551, CVE-2019-1552, CVE-2019-1563, CVE-2020-1967, CVE-2020-1971, CVE-2021-23839, CVE-2021-23840, CVE-2021-23841, CVE-2021-3449, CVE-2021-3450, CVE-2021-3711, CVE-2021-3712, CVE-2021-4044, CVE-2020-1968, CVE-2019-1559, CVE-2018-5407, CVE-2016-7056, CVE-2017-3738, CVE-2017-3736, CVE-2016-8610, CVE-2017-3735, CVE-2017-3731, CVE-2016-6306, CVE-2016-6304, CVE-2016-6302, CVE-2016-2181, CVE-2016-2182, CVE-2016-2179, CVE-2016-6303, CVE-2016-2183, CVE-2016-2180, CVE-2016-2178, CVE-2016-2177, CVE-2016-2109, CVE-2016-2105, CVE-2016-2176, CVE-2016-2106, CVE-2016-2108, CVE-2016-2107, CVE-2016-0799, CVE-2016-0798, CVE-2016-0702, CVE-2016-0705, CVE-2016-2842, CVE-2016-0797, CVE-2016-0703, CVE-2016-0704, CVE-2016-0800, CVE-2015-3197, CVE-2015-7575, CVE-2015-3194, CVE-2015-3195, CVE-2015-3196, CVE-2015-1790, CVE-2015-1788, CVE-2015-1791, CVE-2015-1789, CVE-2014-8176, CVE-2015-1792, CVE-2015-4000, CVE-2015-0287, CVE-2015-0289, CVE-2015-0286, CVE-2015-0288, CVE-2015-0292, CVE-2015-0209, CVE-2015-0293, CVE-2015-0205, CVE-2015-0204, CVE-2015-0206, CVE-2014-3570, CVE-2014-3571, CVE-2014-8275, CVE-2014-3572, CVE-2014-3513, CVE-2014-3568, CVE-2014-3567, CVE-2014-3566, CVE-2014-3509, CVE-2014-3510, CVE-2014-3512, CVE-2014-3505, CVE-2014-5139, CVE-2014-3511, CVE-2014-3508, CVE-2014-3506, CVE-2014-3507, CVE-2014-0195, CVE-2014-0221, CVE-2014-3470, CVE-2014-0224, CVE-2014-0198, CVE-2010-5298, CVE-2014-0160, CVE-2014-0076, CVE-2013-4353, CVE-2013-6450, CVE-2013-6449, CVE-2022-1292, CVE-2021-4160, CVE-2022-0778, CVE-2022-2068, CVE-2022-2097, CVE-2022-3358 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| openSUSE libsolv | CVE-2021-3200, CVE-2021-33928, CVE-2021-33929, CVE-2021-33930, CVE-2021-33938 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| p11-kit | CVE-2020-29361, CVE-2020-29362, CVE-2020-29363 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| pac4j core | CVE-2021-44878 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| PCRE | CVE-2017-11164, CVE-2017-16231, CVE-2017-6004, CVE-2017-7186, CVE-2017-7244, CVE-2017-7246, CVE-2019-20454, CVE-2019-20838, CVE-2020-14155, CVE-2014-8964, CVE-2015-2325, CVE-2015-2326, CVE-2015-2327, CVE-2015-2328, CVE-2015-3217, CVE-2015-5073, CVE-2015-8380, CVE-2015-8381, CVE-2015-8383, CVE-2015-8384, CVE-2015-8385, CVE-2015-8386, CVE-2015-8387, CVE-2015-8388, CVE-2015-8389, CVE-2015-8390, CVE-2015-8391, CVE-2015-8392, CVE-2015-8393, CVE-2015-8394, CVE-2015-8395, CVE-2017-7245 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| PCRE2 | CVE-2022-1587, CVE-2022-1586 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Perl | CVE-2017-12814, CVE-2017-12837, CVE-2017-12883, CVE-2018-12015, CVE-2018-18311, CVE-2018-18312, CVE-2018-18313, CVE-2018-18314, CVE-2018-6797, CVE-2018-6798, CVE-2018-6913, CVE-2020-10543, CVE-2020-10878, CVE-2020-12723, CVE-2021-36770, CVE-2017-6512 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| pion/dtls | CVE-2022-29189, CVE-2022-29190, CVE-2022-29222 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| pip | CVE-2021-3572, CVE-2018-20225 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| PostgreSQL Database Server | CVE-2021-23214, CVE-2021-23222, CVE-2021-32027, CVE-2021-32028, CVE-2021-32029, CVE-2021-3677, CVE-2021-43767, CVE-2022-1552, CVE-2022-2625 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Procps | CVE-2018-1121, CVE-2018-1122, CVE-2018-1123, CVE-2018-1124, CVE-2018-1125, CVE-2018-1126 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Protocol Buffer Java API | CVE-2021-22569 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| py | CVE-2020-29651 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Python programming language | CVE-2022-45061, CVE-2022-42919, CVE-2021-29921, CVE-2017-18207, CVE-2019-20907, CVE-2019-9674, CVE-2019-17514, CVE-2019-9947, CVE-2019-9740, CVE-2019-9636, CVE-2018-20406, CVE-2018-1060, CVE-2021-3426, CVE-2021-28359, CVE-2021-23336, CVE-2021-3177, CVE-2020-27619, CVE-2007-4559, CVE-2020-10735 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| PyYAML | CVE-2020-14343, CVE-2020-1747 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Quartz Enterprise Job Scheduler | CVE-2019-13990 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| RPM | CVE-2021-20266, CVE-2021-20271, CVE-2021-3421 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| rsyslog | CVE-2019-17041, CVE-2019-17042 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| runc | CVE-2021-43784, CVE-2021-30465, CVE-2019-19921, CVE-2019-16884, CVE-2019-5736, CVE-2016-9962, CVE-2022-29162, CVE-2022-24769 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Screen | CVE-2021-26937, CVE-2020-9366 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Seccomp Library | CVE-2019-9893 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Shadow Tool Suite | CVE-2018-7169, CVE-2013-4235, CVE-2017-12424 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| SnakeYAML | CVE-2022-38750, CVE-2022-38749, CVE-2022-38751, CVE-2022-38752, CVE-2022-25857 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Spring Framework | CVE-2021-22060, CVE-2021-22096, CVE-2022-22950, CVE-2016-1000027, CVE-2022-22971, CVE-2022-22970, CVE-2022-22968, CVE-2022-22965, CVE-2021-22118, CVE-2022-22963 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Spring Security | CVE-2022-22976, CVE-2022-22978 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| SQLite | CVE-2019-16168, CVE-2019-19242, CVE-2019-19244, CVE-2019-19317, CVE-2019-19603, CVE-2019-19645, CVE-2019-19646, CVE-2019-19880, CVE-2019-19923, CVE-2019-19924, CVE-2019-19925, CVE-2019-19926, CVE-2019-19959, CVE-2019-20218, CVE-2019-8598, CVE-2019-8600, CVE-2019-8602, CVE-2020-11655, CVE-2020-11656, CVE-2020-13434, CVE-2020-13435, CVE-2020-13630, CVE-2020-13631, CVE-2020-13632, CVE-2020-13871, CVE-2020-15358, CVE-2020-9327, CVE-2021-36690, CVE-2019-5827, CVE-2017-2518, CVE-2017-2519, CVE-2017-2520, CVE-2017-13685, CVE-2019-8457, CVE-2019-5018, CVE-2018-20505, CVE-2018-20506, CVE-2018-20346, CVE-2018-8740, CVE-2017-10989, CVE-2016-6153, CVE-2019-9936, CVE-2019-9937, CVE-2020-35525, CVE-2022-35737, CVE-2021-3156, CVE-2021-23240, CVE-2021-23239, CVE-2019-18634, CVE-2019-19232, CVE-2019-19234, CVE-2019-18684, CVE-2019-14287, CVE-2022-4415, CVE-2022-3821, CVE-2021-33910, CVE-2020-13529, CVE-2020-1712, CVE-2019-20386, CVE-2019-3844, CVE-2019-3843, CVE-2019-3842, CVE-2019-6454, CVE-2018-16865, CVE-2018-16864, CVE-2018-15688, CVE-2018-15687, CVE-2018-15686, CVE-2018-6954, CVE-2017-18078, CVE-2013-4392, CVE-2022-45873, CVE-2021-3997, CVE-2017-15908, CVE-2018-16866, CVE-2018-16888, CVE-2018-20839, CVE-2019-14899, CVE-2020-13776, CVE-2018-21029 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| sudo | CVE-2021-3156, CVE-2021-23240, CVE-2021-23239, CVE-2019-18634, CVE-2019-19232, CVE-2019-19234, CVE-2019-18684, CVE-2019-14287 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| systemd | CVE-2022-4415, CVE-2022-3821, CVE-2021-33910, CVE-2020-13529, CVE-2020-1712, CVE-2019-20386, CVE-2019-3844, CVE-2019-3843, CVE-2019-3842, CVE-2019-6454, CVE-2018-16865, CVE-2018-16864, CVE-2018-15688, CVE-2018-15687, CVE-2018-15686, CVE-2018-6954, CVE-2017-18078, CVE-2013-4392, CVE-2022-45873, CVE-2021-3997, CVE-2017-15908, CVE-2018-16866, CVE-2018-16888, CVE-2018-20839, CVE-2019-14899, CVE-2020-13776, CVE-2018-21029 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| The FreeType Project | CVE-2020-15999 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| tidwall/gjson | CVE-2021-42836, CVE-2020-36066, CVE-2020-36067, CVE-2020-35380 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| unixODBC | CVE-2018-7409, CVE-2018-7485 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| urllib3 | CVE-2021-28363, CVE-2021-33503, CVE-2020-26137, CVE-2019-11324, CVE-2019-11236, CVE-2018-20060, CVE-2020-7212 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| util-linux | CVE-2021-3995, CVE-2017-2616, CVE-2018-7738, CVE-2021-37600, CVE-2021-3996 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| vcs-go | CVE-2022-21235 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| velocity.apache. org/tools/devel | CVE-2020-13936 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Wget | CVE-2021-31879 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Woodstox | CVE-2022-40152, CVE-2022-40151 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| XZ Utils | CVE-2022-1271 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Zip & Unzip | CVE-2014-8141, CVE-2014-8139, CVE-2014-8140, CVE-2018-1000035, CVE-2005-0602, CVE-2001-1268, CVE-2001-1269 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| Zip & Unzip | CVE-2014-8141 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| zlib | CVE-2022-37434, CVE-2016-9843, CVE-2016-9842, CVE-2016-9840, CVE-2016-9841, CVE-2018-25032 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
|
| zstd | CVE-2019-11922, CVE-2021-24031, CVE-2021-24032 | See NVD link below for individual scores for each CVE. https://nvd.nist.gov/ |
Affected Products & Remediation
| Product | Affected Versions | Remediated Versions | Link |
|---|---|---|---|
| Dell ObjectScale | Versions 1.0.0, 1.0.1, and 1.0.2 | Version 1.2.0 |
https://www.dell.com/support/home/en-in/products/storage_int/storage_enterprise/storage_enterprise_objectscale?app=products |
| Product | Affected Versions | Remediated Versions | Link |
|---|---|---|---|
| Dell ObjectScale | Versions 1.0.0, 1.0.1, and 1.0.2 | Version 1.2.0 |
https://www.dell.com/support/home/en-in/products/storage_int/storage_enterprise/storage_enterprise_objectscale?app=products |
NOTE: There is not a direct upgrade path from the affected versions to ObjectScale 1.2.0. A fresh install is required to avail the security fixes. Note that a fresh install would remove all data from ObjectScale. Make sure to back up your data to be re-written to ObjectScale once it is upgraded to 1.2.0.
Revision History
| Revision | Date | Description |
| 1.0 | 2023-06-07 | Initial Release |
| 2.0 | 2023-08-29 | Updated for enhanced presentation with no changes to content. |
Related Information
Legal Disclaimer
Affected Products
ObjectScale, ObjectScale Product Family, ObjectScale Software Bundle, ObjectScale Software Series, Product Security InformationArticle Properties
Article Number: 000214434
Article Type: Dell Security Advisory
Last Modified: 29 Aug 2023
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.