NVD脆弱性詳細

CVE-2020-11022

概要	In jQuery starting with 1.12.0 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
概要	En las versiones de jQuery mayores o iguales a 1.2 y anteriores a la versión 3.5.0, se puede ejecutar HTML desde fuentes no seguras, incluso después de desinfectarlo, a uno de los métodos de manipulación DOM de jQuery (es decir .html (), .append () y otros). código no seguro Este problema está corregido en jQuery 3.5.0.
公表日	2020年4月30日7:15
登録日	2021年1月26日10:40
最終更新日	2026年4月14日0:16

CVSS3.1 : MEDIUM
スコア	6.1
ベクター	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	低
攻撃に必要な特権レベル(PR)	不要
利用者の関与(UI)	要
影響の想定範囲(S)	変更あり
機密性への影響(C)	低
完全性への影響(I)	低
可用性への影響(A)	なし

CVSS2.0 : MEDIUM
スコア	4.3
ベクター	AV:N/AC:M/Au:N/C:N/I:P/A:N
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	中
攻撃前の認証要否(Au)	不要
機密性への影響(C)	なし
完全性への影響(I)	低
可用性への影響(A)	なし
全ての特権を取得	いいえ
ユーザー権限を取得	いいえ
その他の権限を取得	いいえ
ユーザー操作が必要	はい

影響を受けるソフトウェアの構成

構成1	以上	以下	より上	未満
cpe:2.3:a:jquery:jquery::::::::	1.2			3.5.0
cpe:2.3:a:drupal:drupal::::::::	7.0			7.70
cpe:2.3:a:drupal:drupal::::::::	8.7.0			8.7.14
cpe:2.3:a:drupal:drupal::::::::	8.8.0			8.8.6
cpe:2.3:o:debian:debian_linux:9.0:::::::*
cpe:2.3:o:fedoraproject:fedora:31:::::::*
cpe:2.3:o:fedoraproject:fedora:32:::::::*
cpe:2.3:o:fedoraproject:fedora:33:::::::*
cpe:2.3:a:oracle:agile_product_lifecycle_management_for_process:6.2.0.0:::::::*
cpe:2.3:a:oracle:application_testing_suite:13.3.0.1:::::::*
cpe:2.3:a:oracle:banking_digital_experience:18.1:::::::*
cpe:2.3:a:oracle:banking_digital_experience:18.2:::::::*
cpe:2.3:a:oracle:banking_digital_experience:18.3:::::::*
cpe:2.3:a:oracle:banking_digital_experience:19.1:::::::*
cpe:2.3:a:oracle:banking_digital_experience:19.2:::::::*
cpe:2.3:a:oracle:banking_digital_experience:20.1:::::::*
cpe:2.3:a:oracle:blockchain_platform::::::::				21.1.2
cpe:2.3:a:oracle:communications_application_session_controller:3.8m0:::::::*
cpe:2.3:a:oracle:communications_billing_and_revenue_management:7.5.0.23.0:::::::*
cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.3.0:::::::*
cpe:2.3:a:oracle:communications_diameter_signaling_router_idih\:::::::::	8.0.0	8.2.2
cpe:2.3:a:oracle:communications_eagle_application_processor::::::::	16.1.0	16.4.0
cpe:2.3:a:oracle:communications_services_gatekeeper:7.0:::::::*
cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2:::::::*
cpe:2.3:a:oracle:enterprise_manager_ops_center:12.4.0.0:::::::*
cpe:2.3:a:oracle:enterprise_session_border_controller:8.4:::::::*
cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure::::::::	8.0.6.0.0	8.1.0.0.0
cpe:2.3:a:oracle:financial_services_analytical_applications_reconciliation_framework::::::::	8.0.6	8.0.8
cpe:2.3:a:oracle:financial_services_analytical_applications_reconciliation_framework:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_asset_liability_management:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_asset_liability_management:8.0.7:::::::*
cpe:2.3:a:oracle:financial_services_asset_liability_management:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_balance_sheet_planning:8.0.8:::::::*
cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_basic::::::::	8.0.6	8.0.8
cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_basic:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_internal_ratings_based_approach::::::::	8.0.6	8.0.8
cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_internal_ratings_based_approach:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_data_foundation::::::::	8.0.6	8.1.0
cpe:2.3:a:oracle:financial_services_data_governance_for_us_regulatory_reporting::::::::	8.0.6	8.0.9
cpe:2.3:a:oracle:financial_services_data_integration_hub:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_data_integration_hub:8.0.7:::::::*
cpe:2.3:a:oracle:financial_services_data_integration_hub:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_funds_transfer_pricing:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_funds_transfer_pricing:8.0.7:::::::*
cpe:2.3:a:oracle:financial_services_funds_transfer_pricing:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_hedge_management_and_ifrs_valuations::::::::	8.0.6	8.0.8
cpe:2.3:a:oracle:financial_services_hedge_management_and_ifrs_valuations:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_institutional_performance_analytics:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_institutional_performance_analytics:8.0.7:::::::*
cpe:2.3:a:oracle:financial_services_institutional_performance_analytics:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_liquidity_risk_management:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_liquidity_risk_measurement_and_management:8.0.7:::::::*
cpe:2.3:a:oracle:financial_services_liquidity_risk_measurement_and_management:8.0.8:::::::*
cpe:2.3:a:oracle:financial_services_liquidity_risk_measurement_and_management:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_loan_loss_forecasting_and_provisioning::::::::	8.0.6	8.0.8
cpe:2.3:a:oracle:financial_services_loan_loss_forecasting_and_provisioning:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_market_risk_measurement_and_management:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_market_risk_measurement_and_management:8.0.8:::::::*
cpe:2.3:a:oracle:financial_services_price_creation_and_discovery:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_price_creation_and_discovery:8.0.7:::::::*
cpe:2.3:a:oracle:financial_services_profitability_management:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_profitability_management:8.0.7:::::::*
cpe:2.3:a:oracle:financial_services_profitability_management:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_regulatory_reporting_for_european_banking_authority::::::::	8.0.6	8.1.0
cpe:2.3:a:oracle:financial_services_regulatory_reporting_for_us_federal_reserve::::::::	8.0.6	8.0.9
cpe:2.3:a:oracle:healthcare_foundation:7.1.1:::::::*
cpe:2.3:a:oracle:healthcare_foundation:7.2.0:::::::*
cpe:2.3:a:oracle:healthcare_foundation:7.2.1:::::::*
cpe:2.3:a:oracle:healthcare_foundation:7.3.0:::::::*
cpe:2.3:a:oracle:hospitality_materials_control:18.1:::::::*
cpe:2.3:a:oracle:hospitality_simphony::::::::	19.1.0	19.1.2
cpe:2.3:a:oracle:hospitality_simphony:18.1:::::::*
cpe:2.3:a:oracle:hospitality_simphony:18.2:::::::*
cpe:2.3:a:oracle:insurance_accounting_analyzer:8.0.9:::::::*
cpe:2.3:a:oracle:insurance_allocation_manager_for_enterprise_profitability:8.0.8:::::::*
cpe:2.3:a:oracle:insurance_allocation_manager_for_enterprise_profitability:8.1.0:::::::*
cpe:2.3:a:oracle:insurance_data_foundation::::::::	8.0.6	8.1.0
cpe:2.3:a:oracle:insurance_insbridge_rating_and_underwriting::::::::	5.0.0.0	5.6.0.0
cpe:2.3:a:oracle:insurance_insbridge_rating_and_underwriting:5.6.1.0:::::::*
cpe:2.3:a:oracle:jdeveloper:11.1.1.9.0:::::::*
cpe:2.3:a:oracle:jdeveloper:12.2.1.3.0:::::::*
cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:::::::*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.56:::::::*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57:::::::*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:::::::*
cpe:2.3:a:oracle:policy_automation::::::::	12.2.0	12.2.20
cpe:2.3:a:oracle:policy_automation_connector_for_siebel:10.4.6:::::::*
cpe:2.3:a:oracle:policy_automation_for_mobile_devices::::::::	12.2.0	12.2.20
cpe:2.3:a:oracle:retail_back_office:14.0:::::::*
cpe:2.3:a:oracle:retail_back_office:14.1:::::::*
cpe:2.3:a:oracle:retail_customer_management_and_segmentation_foundation:19.0:::::::*
cpe:2.3:a:oracle:retail_returns_management:14.0:::::::*
cpe:2.3:a:oracle:retail_returns_management:14.1:::::::*
cpe:2.3:a:oracle:siebel_ui_framework:20.8:::::::*
cpe:2.3:a:oracle:storagetek_acsls:8.5.1:::::::*
cpe:2.3:a:oracle:weblogic_server:10.3.6.0.0:::::::*
cpe:2.3:a:oracle:weblogic_server:12.1.3.0.0:::::::*
cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:::::::*
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:::::::*
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:::::::*
cpe:2.3:a:netapp:max_data:-:::::::*
cpe:2.3:a:netapp:oncommand_insight:-:::::::*
cpe:2.3:a:netapp:oncommand_system_manager::::::::	3.0	3.1.3
cpe:2.3:a:netapp:snap_creator_framework:-:::::::*
cpe:2.3:a:netapp:snapcenter:-:::::::*
cpe:2.3:o:netapp:h300s_firmware:-:::::::*
cpe:2.3:o:netapp:h500s_firmware:-:::::::*
cpe:2.3:o:netapp:h700s_firmware:-:::::::*
cpe:2.3:o:netapp:h300e_firmware:-:::::::*
cpe:2.3:o:netapp:h500e_firmware:-:::::::*
cpe:2.3:o:netapp:h700e_firmware:-:::::::*
cpe:2.3:o:netapp:h410s_firmware:-:::::::*
cpe:2.3:o:netapp:h410c_firmware:-:::::::*
cpe:2.3:o:opensuse:leap:15.1:::::::*
cpe:2.3:o:opensuse:leap:15.2:::::::*
cpe:2.3:a:tenable:log_correlation_engine::::::::				6.0.9
cpe:2.3:a:oracle:agile_product_supplier_collaboration_for_process:6.2.0.0:::::::*
cpe:2.3:a:oracle:banking_digital_experience::::::::	18.1	20.1
cpe:2.3:a:oracle:communications_application_session_controller:3.8m0:::::::*
cpe:2.3:a:oracle:communications_billing_and_revenue_management:7.5.0.23.0:::::::*
cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.3.0:::::::*
cpe:2.3:a:oracle:communications_diameter_signaling_router_idih\:::::::::	8.0.0	8.2.2
cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2:::::::*
cpe:2.3:a:oracle:enterprise_manager_ops_center:12.4.0.0:::::::*
cpe:2.3:a:oracle:enterprise_session_border_controller:8.4:::::::*
cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure::::::::	8.0.6	8.1.0
cpe:2.3:a:oracle:financial_services_analytical_applications_reconciliation_framework::::::::	8.0.6	8.0.8
cpe:2.3:a:oracle:financial_services_analytical_applications_reconciliation_framework:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_asset_liability_management:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_asset_liability_management:8.0.7:::::::*
cpe:2.3:a:oracle:financial_services_asset_liability_management:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_balance_sheet_planning:8.0.8:::::::*
cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_basic::::::::	8.0.6	8.0.8
cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_basic:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_internal_ratings_based_approach::::::::	8.0.6	8.0.8
cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_internal_ratings_based_approach:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_data_foundation::::::::	8.0.6	8.1.0
cpe:2.3:a:oracle:financial_services_data_governance_for_us_regulatory_reporting::::::::	8.0.6	8.0.9
cpe:2.3:a:oracle:financial_services_data_integration_hub:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_data_integration_hub:8.0.7:::::::*
cpe:2.3:a:oracle:financial_services_data_integration_hub:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_funds_transfer_pricing:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_funds_transfer_pricing:8.0.7:::::::*
cpe:2.3:a:oracle:financial_services_funds_transfer_pricing:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_hedge_management_and_ifrs_valuations::::::::	8.0.6	8.0.8
cpe:2.3:a:oracle:financial_services_hedge_management_and_ifrs_valuations:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_institutional_performance_analytics:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_institutional_performance_analytics:8.0.7:::::::*
cpe:2.3:a:oracle:financial_services_institutional_performance_analytics:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_liquidity_risk_management:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_liquidity_risk_measurement_and_management:8.0.7:::::::*
cpe:2.3:a:oracle:financial_services_liquidity_risk_measurement_and_management:8.0.8:::::::*
cpe:2.3:a:oracle:financial_services_liquidity_risk_measurement_and_management:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_loan_loss_forecasting_and_provisioning::::::::	8.0.6	8.0.8
cpe:2.3:a:oracle:financial_services_loan_loss_forecasting_and_provisioning:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_market_risk_measurement_and_management:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_market_risk_measurement_and_management:8.0.8:::::::*
cpe:2.3:a:oracle:financial_services_price_creation_and_discovery:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_price_creation_and_discovery:8.0.7:::::::*
cpe:2.3:a:oracle:financial_services_profitability_management:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_profitability_management:8.0.7:::::::*
cpe:2.3:a:oracle:financial_services_profitability_management:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_regulatory_reporting_for_european_banking_authority::::::::	8.0.6	8.1.0
cpe:2.3:a:oracle:financial_services_regulatory_reporting_for_us_federal_reserve::::::::	8.0.6	8.0.9
cpe:2.3:a:oracle:healthcare_foundation:7.1.1:::::::*
cpe:2.3:a:oracle:healthcare_foundation:7.2.0:::::::*
cpe:2.3:a:oracle:healthcare_foundation:7.2.1:::::::*
cpe:2.3:a:oracle:healthcare_foundation:7.3.0:::::::*
cpe:2.3:a:oracle:hospitality_materials_control:18.1:::::::*
cpe:2.3:a:oracle:hospitality_simphony:18.1:::::::*
cpe:2.3:a:oracle:hospitality_simphony:18.2:::::::*
cpe:2.3:a:oracle:hospitality_simphony:19.1.0-19.1.2:::::::*
cpe:2.3:a:oracle:insurance_accounting_analyzer:8.0.9:::::::*
cpe:2.3:a:oracle:insurance_allocation_manager_for_enterprise_profitability:8.0.8:::::::*
cpe:2.3:a:oracle:insurance_allocation_manager_for_enterprise_profitability:8.1.0:::::::*
cpe:2.3:a:oracle:insurance_data_foundation:8.0.6-8.1.0:::::::*
cpe:2.3:a:oracle:insurance_insbridge_rating_and_underwriting::::::::	5.0.0.0	5.6.0.0
cpe:2.3:a:oracle:insurance_insbridge_rating_and_underwriting:5.6.1.0:::::::*
cpe:2.3:a:oracle:jdeveloper:11.1.1.9.0:::::::*
cpe:2.3:a:oracle:jdeveloper:12.2.1.3.0:::::::*
cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:::::::*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.56:::::::*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57:::::::*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:::::::*
cpe:2.3:a:oracle:policy_automation::::::::	12.2.0	12.2.20
cpe:2.3:a:oracle:policy_automation_connector_for_siebel:10.4.6:::::::*
cpe:2.3:a:oracle:policy_automation_for_mobile_devices::::::::	12.2.0	12.2.20
cpe:2.3:a:oracle:retail_back_office:14.0:::::::*
cpe:2.3:a:oracle:retail_back_office:14.1:::::::*
cpe:2.3:a:oracle:retail_customer_management_and_segmentation_foundation:19.0:::::::*
cpe:2.3:a:oracle:retail_returns_management:14.0:::::::*
cpe:2.3:a:oracle:retail_returns_management:14.1:::::::*
cpe:2.3:a:oracle:siebel_ui_framework:20.8:::::::*
cpe:2.3:a:oracle:weblogic_server:10.3.6.0.0:::::::*
cpe:2.3:a:oracle:weblogic_server:12.1.3.0.0:::::::*
cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:::::::*
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:::::::*
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:::::::*

構成2		以上	以下	より上	未満

関連情報、対策とツール

No	URL	refsource
1	http://security.netapp.com/advisory/ntap-20200511-0006	security-advisories@github.com
2	https://blog.jquery.com/2020/04/10/jquery-3-5-0-released	security-advisories@github.com
3	https://github.com/jquery/jquery/commit/1d61fd9407e6fbe82fe55cb0b938307aa0791f77	security-advisories@github.com
4	https://github.com/jquery/jquery/releases/tag/3.5.0	security-advisories@github.com
5	https://github.com/jquery/jquery/security/advisories/GHSA-gxr4-xjj5-5px2	security-advisories@github.com
6	https://github.com/maximebf/php-debugbar/commit/847216e60544258c881f2733d699bbcfeefac0fc	security-advisories@github.com
7	https://github.com/maximebf/php-debugbar/issues/447	security-advisories@github.com
8	https://github.com/rubysec/ruby-advisory-db/blob/master/gems/jquery-rails/CVE-2020-11022.yml	security-advisories@github.com
9	https://jquery.com/upgrade-guide/3.5	security-advisories@github.com
10	https://lists.apache.org/thread.html/r0483ba0072783c2e1bfea613984bfb3c86e73ba8879d780dc1cc7d36@%3Cissues.flink.apache.org%3E	security-advisories@github.com
11	https://lists.apache.org/thread.html/r49ce4243b4738dd763caeb27fa8ad6afb426ae3e8c011ff00b8b1f48@%3Cissues.flink.apache.org%3E	security-advisories@github.com
12	https://lists.apache.org/thread.html/r54565a8f025c7c4f305355fdfd75b68eca442eebdb5f31c2e7d977ae@%3Cissues.flink.apache.org%3E	security-advisories@github.com
13	https://lists.apache.org/thread.html/r564585d97bc069137e64f521e68ba490c7c9c5b342df5d73c49a0760@%3Cissues.flink.apache.org%3E	security-advisories@github.com
14	https://lists.apache.org/thread.html/r706cfbc098420f7113968cc377247ec3d1439bce42e679c11c609e2d@%3Cissues.flink.apache.org%3E	security-advisories@github.com
15	https://lists.apache.org/thread.html/r8f70b0f65d6bedf316ecd899371fd89e65333bc988f6326d2956735c@%3Cissues.flink.apache.org%3E	security-advisories@github.com
16	https://lists.apache.org/thread.html/rbb448222ba62c430e21e13f940be4cb5cfc373cd3bce56b48c0ffa67@%3Cdev.flink.apache.org%3E	security-advisories@github.com
17	https://lists.apache.org/thread.html/rdf44341677cf7eec7e9aa96dcf3f37ed709544863d619cca8c36f133@%3Ccommits.airflow.apache.org%3E	security-advisories@github.com
18	https://lists.apache.org/thread.html/re4ae96fa5c1a2fe71ccbb7b7ac1538bd0cb677be270a2bf6e2f8d108@%3Cissues.flink.apache.org%3E	security-advisories@github.com
19	https://lists.apache.org/thread.html/rede9cfaa756e050a3d83045008f84a62802fc68c17f2b4eabeaae5e4@%3Cissues.flink.apache.org%3E	security-advisories@github.com
20	https://lists.apache.org/thread.html/ree3bd8ddb23df5fa4e372d11c226830ea3650056b1059f3965b3fce2@%3Cissues.flink.apache.org%3E	security-advisories@github.com
21	https://lists.debian.org/debian-lts-announce/2021/03/msg00033.html	security-advisories@github.com
22	https://lists.debian.org/debian-lts-announce/2023/08/msg00040.html	security-advisories@github.com
23	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AVKYXLWCLZBV2N7M46KYK4LVA5OXWPBY	security-advisories@github.com
24	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QPN2L2XVQGUA2V5HNQJWHK3APSK3VN7K	security-advisories@github.com
25	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SAPQVX3XDNPGFT26QAQ6AJIXZZBZ4CD4	security-advisories@github.com
26	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SFP4UK4EGP4AFH2MWYJ5A5Z4I7XVFQ6B	security-advisories@github.com
27	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VOE7P7APPRQKD4FGNHBKJPDY6FFCOH3W	security-advisories@github.com
28	https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00067.html	security-advisories@github.com
29	https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00085.html	security-advisories@github.com
30	https://lists.opensuse.org/opensuse-security-announce/2020-11/msg00039.html	security-advisories@github.com
31	https://packetstormsecurity.com/files/162159/jQuery-1.2-Cross-Site-Scripting.html	security-advisories@github.com
32	https://security.gentoo.org/glsa/202007-03	security-advisories@github.com
33	https://www.debian.org/security/2020/dsa-4693	security-advisories@github.com
34	https://www.drupal.org/sa-core-2020-002	security-advisories@github.com
35	https://www.oracle.com/security-alerts/cpuApr2021.html	security-advisories@github.com
36	https://www.oracle.com/security-alerts/cpuapr2022.html	security-advisories@github.com
37	https://www.oracle.com/security-alerts/cpujan2021.html	security-advisories@github.com
38	https://www.oracle.com/security-alerts/cpujan2022.html	security-advisories@github.com
39	https://www.oracle.com/security-alerts/cpujul2020.html	security-advisories@github.com
40	https://www.oracle.com/security-alerts/cpujul2021.html	security-advisories@github.com
41	https://www.oracle.com/security-alerts/cpujul2022.html	security-advisories@github.com
42	https://www.oracle.com/security-alerts/cpuoct2020.html	security-advisories@github.com
43	https://www.oracle.com/security-alerts/cpuoct2021.html	security-advisories@github.com
44	https://www.tenable.com/security/tns-2020-10	security-advisories@github.com
45	https://www.tenable.com/security/tns-2020-11	security-advisories@github.com
46	https://www.tenable.com/security/tns-2021-02	security-advisories@github.com
47	https://www.tenable.com/security/tns-2021-10	security-advisories@github.com
48	http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00067.html	af854a3a-2127-422b-91ae-364da2661108
49	http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00085.html	af854a3a-2127-422b-91ae-364da2661108
50	http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00039.html	af854a3a-2127-422b-91ae-364da2661108
51	http://packetstormsecurity.com/files/162159/jQuery-1.2-Cross-Site-Scripting.html	af854a3a-2127-422b-91ae-364da2661108
52	https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/	af854a3a-2127-422b-91ae-364da2661108
53	https://github.com/jquery/jquery/commit/1d61fd9407e6fbe82fe55cb0b938307aa0791f77	af854a3a-2127-422b-91ae-364da2661108
54	https://github.com/jquery/jquery/security/advisories/GHSA-gxr4-xjj5-5px2	af854a3a-2127-422b-91ae-364da2661108
55	https://jquery.com/upgrade-guide/3.5/	af854a3a-2127-422b-91ae-364da2661108
56	https://lists.apache.org/thread.html/r0483ba0072783c2e1bfea613984bfb3c86e73ba8879d780dc1cc7d36%40%3Cissues.flink.apache.org%3E	af854a3a-2127-422b-91ae-364da2661108
57	https://lists.apache.org/thread.html/r49ce4243b4738dd763caeb27fa8ad6afb426ae3e8c011ff00b8b1f48%40%3Cissues.flink.apache.org%3E	af854a3a-2127-422b-91ae-364da2661108
58	https://lists.apache.org/thread.html/r54565a8f025c7c4f305355fdfd75b68eca442eebdb5f31c2e7d977ae%40%3Cissues.flink.apache.org%3E	af854a3a-2127-422b-91ae-364da2661108
59	https://lists.apache.org/thread.html/r564585d97bc069137e64f521e68ba490c7c9c5b342df5d73c49a0760%40%3Cissues.flink.apache.org%3E	af854a3a-2127-422b-91ae-364da2661108
60	https://lists.apache.org/thread.html/r706cfbc098420f7113968cc377247ec3d1439bce42e679c11c609e2d%40%3Cissues.flink.apache.org%3E	af854a3a-2127-422b-91ae-364da2661108
61	https://lists.apache.org/thread.html/r8f70b0f65d6bedf316ecd899371fd89e65333bc988f6326d2956735c%40%3Cissues.flink.apache.org%3E	af854a3a-2127-422b-91ae-364da2661108
62	https://lists.apache.org/thread.html/rbb448222ba62c430e21e13f940be4cb5cfc373cd3bce56b48c0ffa67%40%3Cdev.flink.apache.org%3E	af854a3a-2127-422b-91ae-364da2661108
63	https://lists.apache.org/thread.html/rdf44341677cf7eec7e9aa96dcf3f37ed709544863d619cca8c36f133%40%3Ccommits.airflow.apache.org%3E	af854a3a-2127-422b-91ae-364da2661108
64	https://lists.apache.org/thread.html/re4ae96fa5c1a2fe71ccbb7b7ac1538bd0cb677be270a2bf6e2f8d108%40%3Cissues.flink.apache.org%3E	af854a3a-2127-422b-91ae-364da2661108
65	https://lists.apache.org/thread.html/rede9cfaa756e050a3d83045008f84a62802fc68c17f2b4eabeaae5e4%40%3Cissues.flink.apache.org%3E	af854a3a-2127-422b-91ae-364da2661108
66	https://lists.apache.org/thread.html/ree3bd8ddb23df5fa4e372d11c226830ea3650056b1059f3965b3fce2%40%3Cissues.flink.apache.org%3E	af854a3a-2127-422b-91ae-364da2661108
67	https://lists.debian.org/debian-lts-announce/2021/03/msg00033.html	af854a3a-2127-422b-91ae-364da2661108
68	https://lists.debian.org/debian-lts-announce/2023/08/msg00040.html	af854a3a-2127-422b-91ae-364da2661108
69	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AVKYXLWCLZBV2N7M46KYK4LVA5OXWPBY/	af854a3a-2127-422b-91ae-364da2661108
70	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QPN2L2XVQGUA2V5HNQJWHK3APSK3VN7K/	af854a3a-2127-422b-91ae-364da2661108
71	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SAPQVX3XDNPGFT26QAQ6AJIXZZBZ4CD4/	af854a3a-2127-422b-91ae-364da2661108
72	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SFP4UK4EGP4AFH2MWYJ5A5Z4I7XVFQ6B/	af854a3a-2127-422b-91ae-364da2661108
73	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VOE7P7APPRQKD4FGNHBKJPDY6FFCOH3W/	af854a3a-2127-422b-91ae-364da2661108
74	https://security.gentoo.org/glsa/202007-03	af854a3a-2127-422b-91ae-364da2661108
75	https://security.netapp.com/advisory/ntap-20200511-0006/	af854a3a-2127-422b-91ae-364da2661108
76	https://www.debian.org/security/2020/dsa-4693	af854a3a-2127-422b-91ae-364da2661108
77	https://www.drupal.org/sa-core-2020-002	af854a3a-2127-422b-91ae-364da2661108
78	https://www.oracle.com//security-alerts/cpujul2021.html	af854a3a-2127-422b-91ae-364da2661108
79	https://www.oracle.com/security-alerts/cpuApr2021.html	af854a3a-2127-422b-91ae-364da2661108
80	https://www.oracle.com/security-alerts/cpuapr2022.html	af854a3a-2127-422b-91ae-364da2661108
81	https://www.oracle.com/security-alerts/cpujan2021.html	af854a3a-2127-422b-91ae-364da2661108
82	https://www.oracle.com/security-alerts/cpujan2022.html	af854a3a-2127-422b-91ae-364da2661108
83	https://www.oracle.com/security-alerts/cpujul2020.html	af854a3a-2127-422b-91ae-364da2661108
84	https://www.oracle.com/security-alerts/cpujul2022.html	af854a3a-2127-422b-91ae-364da2661108
85	https://www.oracle.com/security-alerts/cpuoct2020.html	af854a3a-2127-422b-91ae-364da2661108
86	https://www.oracle.com/security-alerts/cpuoct2021.html	af854a3a-2127-422b-91ae-364da2661108
87	https://www.tenable.com/security/tns-2020-10	af854a3a-2127-422b-91ae-364da2661108
88	https://www.tenable.com/security/tns-2020-11	af854a3a-2127-422b-91ae-364da2661108
89	https://www.tenable.com/security/tns-2021-02	af854a3a-2127-422b-91ae-364da2661108
90	https://www.tenable.com/security/tns-2021-10	af854a3a-2127-422b-91ae-364da2661108

共通脆弱性一覧

No	CWE	名前	URL
1	CWE-79	クロスサイト・スクリプティング（XSS）	https://cwe.mitre.org/data/definitions/79.html

JVN脆弱性情報

jQuery におけるクロスサイトスクリプティングの脆弱性

タイトル	jQuery におけるクロスサイトスクリプティングの脆弱性
概要	jQuery には、クロスサイトスクリプティングの脆弱性が存在します。
想定される影響	情報を取得される、および情報を改ざんされる可能性があります。
対策	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
公表日	2020年4月10日0:00
登録日	2020年5月29日15:47
最終更新日	2025年7月3日15:01

影響を受けるシステム

日立

Hitachi Ops Center Common Services (海外販売のみ)

jQuery

jQuery 1.2 以上 3.5.0 未満

CVE (情報セキュリティ共通脆弱性識別子)

No	名前	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2020-11022	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11022
National Vulnerability Database (NVD)
2	CVE-2020-11022	https://nvd.nist.gov/vuln/detail/CVE-2020-11022

CWE (共通脆弱性タイプ一覧)

No	名前	URL
JVNDB
1	CWE-79	https://jvndb.jvn.jp/ja/cwe/CWE-79.html

ベンダー情報

No	名前	URL
GitHub
1	Manipulation: Make jQuery.htmlPrefilter an identity function	https://github.com/jquery/jquery/commit/1d61fd9407e6fbe82fe55cb0b938307aa0791f77
2	Potential XSS vulnerability in jQuery.htmlPrefilter and related methods	https://github.com/jquery/jquery/security/advisories/GHSA-gxr4-xjj5-5px2
Hitachi Software Vulnerability Information
3	hitachi-sec-2020-130	https://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/hitachi-sec-2020-130/index.html
jQuery
4	jQuery 3.5.0 Released!	https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/
5	jQuery Core 3.5 Upgrade Guide	https://jquery.com/upgrade-guide/3.5/
ソフトウェア製品セキュリティ情報
6	hitachi-sec-2020-130	https://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/hitachi-sec-2020-130/index.html

その他

No	名前	URL
ICS-CERT ADVISORY
1	ICSA-22-055-02	https://www.cisa.gov/uscert/ics/advisories/icsa-22-055-02
2	ICSA-22-097-01	https://www.cisa.gov/uscert/ics/advisories/icsa-22-097-01
3	ICSA-22-342-02	https://www.cisa.gov/news-events/ics-advisories/icsa-22-342-02
4	ICSA-25-182-07	https://www.cisa.gov/news-events/ics-advisories/ICSA-25-182-07
JVN
5	JVNVU#94847990	http://jvn.jp/vu/JVNVU94847990/index.html
6	JVNVU#94912830	https://jvn.jp/vu/JVNVU94912830/
7	JVNVU#94973485	https://jvn.jp/vu/JVNVU94973485/index.html
8	JVNVU#99843134	https://jvn.jp/vu/JVNVU99843134/index.html
関連文書
9	VDE-2021-027 (Pepperl+Fuchs: WirelessHART-Gateway - Vulnerability may allow remote attackers to cause a Denial Of Service)	https://cert.vde.com/en/advisories/VDE-2021-027/

変更履歴

No	変更内容	変更日
7	[2023年03月22日] 参考情報：JVN (JVNVU#99843134) を追加参考情報：ICS-CERT ADVISORY (ICSA-22-342-02) を追加	2023年3月22日14:09
6	[2022年04月11日] 参考情報：JVN (JVNVU#94847990) を追加参考情報：ICS-CERT ADVISORY (ICSA-22-097-01) を追加参考情報：関連文書 (VDE-2021-027) を追加	2022年4月11日13:59
5	[2022年03月01日] 参考情報：ICS-CERT ADVISORY (ICSA-22-055-02) を追加	2022年3月1日10:54
4	[2022年02月16日] 参考情報：JVN (JVNVU#94912830) を追加	2022年2月16日11:41
1	[2020年05月29日] 掲載	2020年5月29日15:47
3	[2020年10月28日] 影響を受けるシステム：内容を更新ベンダ情報：Hitachi Software Vulnerability Information (hitachi-sec-2020-130) を追加ベンダ情報：ソフトウェア製品セキュリティ情報 (hitachi-sec-2020-130) を追加	2020年10月28日11:06
8	[2025年07月03日] 参考情報：JVN (JVNVU#94973485) を追加参考情報：ICS-CERT ADVISORY (ICSA-25-182-07) を追加	2025年7月3日14:29

構成1	以上	以下	より上	未満
cpe:2.3:a:jquery:jquery::::::::	1.2			3.5.0
cpe:2.3:a:drupal:drupal::::::::	7.0			7.70
cpe:2.3:a:drupal:drupal::::::::	8.7.0			8.7.14
cpe:2.3:a:drupal:drupal::::::::	8.8.0			8.8.6
cpe:2.3:o:debian:debian_linux:9.0:::::::*
cpe:2.3:o:fedoraproject:fedora:31:::::::*
cpe:2.3:o:fedoraproject:fedora:32:::::::*
cpe:2.3:o:fedoraproject:fedora:33:::::::*
cpe:2.3:a:oracle:agile_product_lifecycle_management_for_process:6.2.0.0:::::::*
cpe:2.3:a:oracle:application_testing_suite:13.3.0.1:::::::*
cpe:2.3:a:oracle:banking_digital_experience:18.1:::::::*
cpe:2.3:a:oracle:banking_digital_experience:18.2:::::::*
cpe:2.3:a:oracle:banking_digital_experience:18.3:::::::*
cpe:2.3:a:oracle:banking_digital_experience:19.1:::::::*
cpe:2.3:a:oracle:banking_digital_experience:19.2:::::::*
cpe:2.3:a:oracle:banking_digital_experience:20.1:::::::*
cpe:2.3:a:oracle:blockchain_platform::::::::				21.1.2
cpe:2.3:a:oracle:communications_application_session_controller:3.8m0:::::::*
cpe:2.3:a:oracle:communications_billing_and_revenue_management:7.5.0.23.0:::::::*
cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.3.0:::::::*
cpe:2.3:a:oracle:communications_diameter_signaling_router_idih\:::::::::	8.0.0	8.2.2
cpe:2.3:a:oracle:communications_eagle_application_processor::::::::	16.1.0	16.4.0
cpe:2.3:a:oracle:communications_services_gatekeeper:7.0:::::::*
cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2:::::::*
cpe:2.3:a:oracle:enterprise_manager_ops_center:12.4.0.0:::::::*
cpe:2.3:a:oracle:enterprise_session_border_controller:8.4:::::::*
cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure::::::::	8.0.6.0.0	8.1.0.0.0
cpe:2.3:a:oracle:financial_services_analytical_applications_reconciliation_framework::::::::	8.0.6	8.0.8
cpe:2.3:a:oracle:financial_services_analytical_applications_reconciliation_framework:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_asset_liability_management:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_asset_liability_management:8.0.7:::::::*
cpe:2.3:a:oracle:financial_services_asset_liability_management:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_balance_sheet_planning:8.0.8:::::::*
cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_basic::::::::	8.0.6	8.0.8
cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_basic:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_internal_ratings_based_approach::::::::	8.0.6	8.0.8
cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_internal_ratings_based_approach:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_data_foundation::::::::	8.0.6	8.1.0
cpe:2.3:a:oracle:financial_services_data_governance_for_us_regulatory_reporting::::::::	8.0.6	8.0.9
cpe:2.3:a:oracle:financial_services_data_integration_hub:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_data_integration_hub:8.0.7:::::::*
cpe:2.3:a:oracle:financial_services_data_integration_hub:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_funds_transfer_pricing:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_funds_transfer_pricing:8.0.7:::::::*
cpe:2.3:a:oracle:financial_services_funds_transfer_pricing:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_hedge_management_and_ifrs_valuations::::::::	8.0.6	8.0.8
cpe:2.3:a:oracle:financial_services_hedge_management_and_ifrs_valuations:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_institutional_performance_analytics:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_institutional_performance_analytics:8.0.7:::::::*
cpe:2.3:a:oracle:financial_services_institutional_performance_analytics:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_liquidity_risk_management:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_liquidity_risk_measurement_and_management:8.0.7:::::::*
cpe:2.3:a:oracle:financial_services_liquidity_risk_measurement_and_management:8.0.8:::::::*
cpe:2.3:a:oracle:financial_services_liquidity_risk_measurement_and_management:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_loan_loss_forecasting_and_provisioning::::::::	8.0.6	8.0.8
cpe:2.3:a:oracle:financial_services_loan_loss_forecasting_and_provisioning:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_market_risk_measurement_and_management:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_market_risk_measurement_and_management:8.0.8:::::::*
cpe:2.3:a:oracle:financial_services_price_creation_and_discovery:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_price_creation_and_discovery:8.0.7:::::::*
cpe:2.3:a:oracle:financial_services_profitability_management:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_profitability_management:8.0.7:::::::*
cpe:2.3:a:oracle:financial_services_profitability_management:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_regulatory_reporting_for_european_banking_authority::::::::	8.0.6	8.1.0
cpe:2.3:a:oracle:financial_services_regulatory_reporting_for_us_federal_reserve::::::::	8.0.6	8.0.9
cpe:2.3:a:oracle:healthcare_foundation:7.1.1:::::::*
cpe:2.3:a:oracle:healthcare_foundation:7.2.0:::::::*
cpe:2.3:a:oracle:healthcare_foundation:7.2.1:::::::*
cpe:2.3:a:oracle:healthcare_foundation:7.3.0:::::::*
cpe:2.3:a:oracle:hospitality_materials_control:18.1:::::::*
cpe:2.3:a:oracle:hospitality_simphony::::::::	19.1.0	19.1.2
cpe:2.3:a:oracle:hospitality_simphony:18.1:::::::*
cpe:2.3:a:oracle:hospitality_simphony:18.2:::::::*
cpe:2.3:a:oracle:insurance_accounting_analyzer:8.0.9:::::::*
cpe:2.3:a:oracle:insurance_allocation_manager_for_enterprise_profitability:8.0.8:::::::*
cpe:2.3:a:oracle:insurance_allocation_manager_for_enterprise_profitability:8.1.0:::::::*
cpe:2.3:a:oracle:insurance_data_foundation::::::::	8.0.6	8.1.0
cpe:2.3:a:oracle:insurance_insbridge_rating_and_underwriting::::::::	5.0.0.0	5.6.0.0
cpe:2.3:a:oracle:insurance_insbridge_rating_and_underwriting:5.6.1.0:::::::*
cpe:2.3:a:oracle:jdeveloper:11.1.1.9.0:::::::*
cpe:2.3:a:oracle:jdeveloper:12.2.1.3.0:::::::*
cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:::::::*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.56:::::::*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57:::::::*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:::::::*
cpe:2.3:a:oracle:policy_automation::::::::	12.2.0	12.2.20
cpe:2.3:a:oracle:policy_automation_connector_for_siebel:10.4.6:::::::*
cpe:2.3:a:oracle:policy_automation_for_mobile_devices::::::::	12.2.0	12.2.20
cpe:2.3:a:oracle:retail_back_office:14.0:::::::*
cpe:2.3:a:oracle:retail_back_office:14.1:::::::*
cpe:2.3:a:oracle:retail_customer_management_and_segmentation_foundation:19.0:::::::*
cpe:2.3:a:oracle:retail_returns_management:14.0:::::::*
cpe:2.3:a:oracle:retail_returns_management:14.1:::::::*
cpe:2.3:a:oracle:siebel_ui_framework:20.8:::::::*
cpe:2.3:a:oracle:storagetek_acsls:8.5.1:::::::*
cpe:2.3:a:oracle:weblogic_server:10.3.6.0.0:::::::*
cpe:2.3:a:oracle:weblogic_server:12.1.3.0.0:::::::*
cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:::::::*
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:::::::*
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:::::::*
cpe:2.3:a:netapp:max_data:-:::::::*
cpe:2.3:a:netapp:oncommand_insight:-:::::::*
cpe:2.3:a:netapp:oncommand_system_manager::::::::	3.0	3.1.3
cpe:2.3:a:netapp:snap_creator_framework:-:::::::*
cpe:2.3:a:netapp:snapcenter:-:::::::*
cpe:2.3:o:netapp:h300s_firmware:-:::::::*
cpe:2.3:o:netapp:h500s_firmware:-:::::::*
cpe:2.3:o:netapp:h700s_firmware:-:::::::*
cpe:2.3:o:netapp:h300e_firmware:-:::::::*
cpe:2.3:o:netapp:h500e_firmware:-:::::::*
cpe:2.3:o:netapp:h700e_firmware:-:::::::*
cpe:2.3:o:netapp:h410s_firmware:-:::::::*
cpe:2.3:o:netapp:h410c_firmware:-:::::::*
cpe:2.3:o:opensuse:leap:15.1:::::::*
cpe:2.3:o:opensuse:leap:15.2:::::::*
cpe:2.3:a:tenable:log_correlation_engine::::::::				6.0.9
cpe:2.3:a:oracle:agile_product_supplier_collaboration_for_process:6.2.0.0:::::::*
cpe:2.3:a:oracle:banking_digital_experience::::::::	18.1	20.1
cpe:2.3:a:oracle:communications_application_session_controller:3.8m0:::::::*
cpe:2.3:a:oracle:communications_billing_and_revenue_management:7.5.0.23.0:::::::*
cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.3.0:::::::*
cpe:2.3:a:oracle:communications_diameter_signaling_router_idih\:::::::::	8.0.0	8.2.2
cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2:::::::*
cpe:2.3:a:oracle:enterprise_manager_ops_center:12.4.0.0:::::::*
cpe:2.3:a:oracle:enterprise_session_border_controller:8.4:::::::*
cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure::::::::	8.0.6	8.1.0
cpe:2.3:a:oracle:financial_services_analytical_applications_reconciliation_framework::::::::	8.0.6	8.0.8
cpe:2.3:a:oracle:financial_services_analytical_applications_reconciliation_framework:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_asset_liability_management:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_asset_liability_management:8.0.7:::::::*
cpe:2.3:a:oracle:financial_services_asset_liability_management:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_balance_sheet_planning:8.0.8:::::::*
cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_basic::::::::	8.0.6	8.0.8
cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_basic:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_internal_ratings_based_approach::::::::	8.0.6	8.0.8
cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_internal_ratings_based_approach:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_data_foundation::::::::	8.0.6	8.1.0
cpe:2.3:a:oracle:financial_services_data_governance_for_us_regulatory_reporting::::::::	8.0.6	8.0.9
cpe:2.3:a:oracle:financial_services_data_integration_hub:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_data_integration_hub:8.0.7:::::::*
cpe:2.3:a:oracle:financial_services_data_integration_hub:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_funds_transfer_pricing:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_funds_transfer_pricing:8.0.7:::::::*
cpe:2.3:a:oracle:financial_services_funds_transfer_pricing:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_hedge_management_and_ifrs_valuations::::::::	8.0.6	8.0.8
cpe:2.3:a:oracle:financial_services_hedge_management_and_ifrs_valuations:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_institutional_performance_analytics:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_institutional_performance_analytics:8.0.7:::::::*
cpe:2.3:a:oracle:financial_services_institutional_performance_analytics:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_liquidity_risk_management:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_liquidity_risk_measurement_and_management:8.0.7:::::::*
cpe:2.3:a:oracle:financial_services_liquidity_risk_measurement_and_management:8.0.8:::::::*
cpe:2.3:a:oracle:financial_services_liquidity_risk_measurement_and_management:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_loan_loss_forecasting_and_provisioning::::::::	8.0.6	8.0.8
cpe:2.3:a:oracle:financial_services_loan_loss_forecasting_and_provisioning:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_market_risk_measurement_and_management:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_market_risk_measurement_and_management:8.0.8:::::::*
cpe:2.3:a:oracle:financial_services_price_creation_and_discovery:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_price_creation_and_discovery:8.0.7:::::::*
cpe:2.3:a:oracle:financial_services_profitability_management:8.0.6:::::::*
cpe:2.3:a:oracle:financial_services_profitability_management:8.0.7:::::::*
cpe:2.3:a:oracle:financial_services_profitability_management:8.1.0:::::::*
cpe:2.3:a:oracle:financial_services_regulatory_reporting_for_european_banking_authority::::::::	8.0.6	8.1.0
cpe:2.3:a:oracle:financial_services_regulatory_reporting_for_us_federal_reserve::::::::	8.0.6	8.0.9
cpe:2.3:a:oracle:healthcare_foundation:7.1.1:::::::*
cpe:2.3:a:oracle:healthcare_foundation:7.2.0:::::::*
cpe:2.3:a:oracle:healthcare_foundation:7.2.1:::::::*
cpe:2.3:a:oracle:healthcare_foundation:7.3.0:::::::*
cpe:2.3:a:oracle:hospitality_materials_control:18.1:::::::*
cpe:2.3:a:oracle:hospitality_simphony:18.1:::::::*
cpe:2.3:a:oracle:hospitality_simphony:18.2:::::::*
cpe:2.3:a:oracle:hospitality_simphony:19.1.0-19.1.2:::::::*
cpe:2.3:a:oracle:insurance_accounting_analyzer:8.0.9:::::::*
cpe:2.3:a:oracle:insurance_allocation_manager_for_enterprise_profitability:8.0.8:::::::*
cpe:2.3:a:oracle:insurance_allocation_manager_for_enterprise_profitability:8.1.0:::::::*
cpe:2.3:a:oracle:insurance_data_foundation:8.0.6-8.1.0:::::::*
cpe:2.3:a:oracle:insurance_insbridge_rating_and_underwriting::::::::	5.0.0.0	5.6.0.0
cpe:2.3:a:oracle:insurance_insbridge_rating_and_underwriting:5.6.1.0:::::::*
cpe:2.3:a:oracle:jdeveloper:11.1.1.9.0:::::::*
cpe:2.3:a:oracle:jdeveloper:12.2.1.3.0:::::::*
cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:::::::*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.56:::::::*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57:::::::*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:::::::*
cpe:2.3:a:oracle:policy_automation::::::::	12.2.0	12.2.20
cpe:2.3:a:oracle:policy_automation_connector_for_siebel:10.4.6:::::::*
cpe:2.3:a:oracle:policy_automation_for_mobile_devices::::::::	12.2.0	12.2.20
cpe:2.3:a:oracle:retail_back_office:14.0:::::::*
cpe:2.3:a:oracle:retail_back_office:14.1:::::::*
cpe:2.3:a:oracle:retail_customer_management_and_segmentation_foundation:19.0:::::::*
cpe:2.3:a:oracle:retail_returns_management:14.0:::::::*
cpe:2.3:a:oracle:retail_returns_management:14.1:::::::*
cpe:2.3:a:oracle:siebel_ui_framework:20.8:::::::*
cpe:2.3:a:oracle:weblogic_server:10.3.6.0.0:::::::*
cpe:2.3:a:oracle:weblogic_server:12.1.3.0.0:::::::*
cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:::::::*
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:::::::*
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:::::::*