Risk Scores
CVSS v4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
EPSS Score
86.66%
99.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Oracle | Oracle Financial Services Applications 11.11 | |
| Oracle | Oracle Communications Applications 7.4.1 | |
| Oracle | Oracle Retail Applications 18.0.0.12 | |
| Oracle | Oracle Retail Applications 14.2 | |
| Oracle | Oracle Communications Applications 8.0.0.7.0 | |
| Oracle | Oracle Financial Services Applications <= 14.3 | |
| Oracle | Oracle Financial Services Applications 2.7.0 | |
| Oracle | Oracle Communications Applications <=6.0.1 | |
| Oracle | Oracle Communications Applications 7.4.0 | |
| Oracle | Oracle Retail Applications 16.0.2 | |
| Oracle | Oracle Retail Applications 18.0.5 | |
| Oracle | Oracle Financial Services Applications 19.1 | |
| Oracle | Oracle Communications Applications <=7.4.2 | |
| Oracle | Oracle Retail Applications 19.0.4 | |
| Oracle | Oracle Financial Services Applications 18.3 | |
| Oracle | Oracle Communications Applications <=5.5.9 | |
| Oracle | Oracle Financial Services Applications 2.6.2 | |
| Oracle | Oracle Retail Applications 20.0.3 | |
| Broadcom | Broadcom Brocade SANnav <2.3.1a | |
| Broadcom | Broadcom Brocade SANnav <2.3.0a |
…and 48 more
Timeline
- Jul 6, 2022 CVE Published
- Jul 7, 2022 EPSS Score
- Jul 9, 2022 EPSS Score
- Jul 15, 2022 EPSS Score
- Oct 29, 2022 EPSS Score
- Nov 16, 2022 EPSS Score
- Dec 8, 2022 CVE Updated
- Jul 8, 2023 EPSS Score
- Jul 13, 2023 EPSS Score
- Aug 8, 2023 EPSS Score
- Oct 24, 2023 EPSS Score
- Dec 17, 2023 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-0590.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0590 advisory
- https://seclists.org/oss-sec/2022/q3/29 advisory
- https://github.com/tangxiaofeng7/CVE-2022-33980-Apache-Commons-Configuration-RCE advisory
- https://access.redhat.com/errata/RHSA-2022:6916 advisory
- https://www.ibm.com/blogs/psirt/security-bulletin-a-vulnerability-in-apache-commons-configuration-affects-ibm-infosphere-information-server-cve-2022-33980/ advisory
- https://access.redhat.com/errata/RHSA-2022:8652 advisory
- https://lists.debian.org/debian-security-announce/2022/msg00261.html advisory
- https://www.ibm.com/support/pages/node/6985689 advisory
- https://www.ibm.com/support/pages/node/7008449 advisory
- https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24999 advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-2056.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-2056 advisory
- https://access.redhat.com/errata/RHSA-2023:0777 advisory
- https://access.redhat.com/errata/RHSA-2023:0560 advisory
- https://www.jenkins.io/security/advisory/2022-11-15/ advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-0133.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0133 advisory
- https://www.oracle.com/security-alerts/cpujan2023.html#AppendixIFLX advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-0138.json advisory
…and 25 more