{"url":"http://public2.vulnerablecode.io/api/packages/385369?format=json","purl":"pkg:apk/alpine/openjdk7@7.241.2.6.20-r0?arch=ppc64le&distroversion=v3.13&reponame=community","type":"apk","namespace":"alpine","name":"openjdk7","version":"7.241.2.6.20-r0","qualifiers":{"arch":"ppc64le","distroversion":"v3.13","reponame":"community"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"7.251.2.6.21-r0","latest_non_vulnerable_version":"7.281.2.6.24-r0","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96366?format=json","vulnerability_id":"VCID-11ek-azsq-uqe5","summary":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: 2D). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2988.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2988.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2988","reference_id":"","reference_type":"","scores":[{"value":"0.00573","scoring_system":"epss","scoring_elements":"0.6914","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00573","scoring_system":"epss","scoring_elements":"0.69137","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00573","scoring_system":"epss","scoring_elements":"0.69117","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00573","scoring_system":"epss","scoring_elements":"0.69133","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00573","scoring_system":"epss","scoring_elements":"0.69091","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00573","scoring_system":"epss","scoring_elements":"0.69131","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2988"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2894","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2894"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2949","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2949"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2962","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2962"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2964","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2964"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2973","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2973"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2975","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2975"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2977","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2977"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2978","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2978"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2981","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2981"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2983","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2983"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2987","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2987"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2988","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2988"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2989","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2989"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2992","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2992"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2999","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2999"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1760999","reference_id":"1760999","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1760999"},{"reference_url":"https://seclists.org/bugtraq/2019/Oct/27","reference_id":"27","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:43Z/"}],"url":"https://seclists.org/bugtraq/2019/Oct/27"},{"reference_url":"https://seclists.org/bugtraq/2019/Oct/31","reference_id":"31","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:43Z/"}],"url":"https://seclists.org/bugtraq/2019/Oct/31"},{"reference_url":"https://usn.ubuntu.com/4223-1/","reference_id":"4223-1","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:43Z/"}],"url":"https://usn.ubuntu.com/4223-1/"},{"reference_url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html","reference_id":"cpuoct2019-5072832.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:43Z/"}],"url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"},{"reference_url":"https://www.debian.org/security/2019/dsa-4546","reference_id":"dsa-4546","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:43Z/"}],"url":"https://www.debian.org/security/2019/dsa-4546"},{"reference_url":"https://www.debian.org/security/2019/dsa-4548","reference_id":"dsa-4548","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:43Z/"}],"url":"https://www.debian.org/security/2019/dsa-4548"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html","reference_id":"msg00005.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:43Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html","reference_id":"msg00031.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:43Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html","reference_id":"msg00064.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:43Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html","reference_id":"msg00066.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:43Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20191017-0001/","reference_id":"ntap-20191017-0001","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:43Z/"}],"url":"https://security.netapp.com/advisory/ntap-20191017-0001/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3127","reference_id":"RHSA-2019:3127","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3127"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3128","reference_id":"RHSA-2019:3128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3128"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3134","reference_id":"RHSA-2019:3134","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:43Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3134"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3135","reference_id":"RHSA-2019:3135","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:43Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3135"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3136","reference_id":"RHSA-2019:3136","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:43Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3136"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3157","reference_id":"RHSA-2019:3157","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:43Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3157"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3158","reference_id":"RHSA-2019:3158","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:43Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3158"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4109","reference_id":"RHSA-2019:4109","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:43Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4109"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4110","reference_id":"RHSA-2019:4110","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:43Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4110"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4113","reference_id":"RHSA-2019:4113","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:43Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4113"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4115","reference_id":"RHSA-2019:4115","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:43Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4115"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0006","reference_id":"RHSA-2020:0006","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:43Z/"}],"url":"https://access.redhat.com/errata/RHSA-2020:0006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0046","reference_id":"RHSA-2020:0046","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:43Z/"}],"url":"https://access.redhat.com/errata/RHSA-2020:0046"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/385369?format=json","purl":"pkg:apk/alpine/openjdk7@7.241.2.6.20-r0?arch=ppc64le&distroversion=v3.13&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk7@7.241.2.6.20-r0%3Farch=ppc64le&distroversion=v3.13&reponame=community"}],"aliases":["CVE-2019-2988"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-11ek-azsq-uqe5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96357?format=json","vulnerability_id":"VCID-5qgv-65jd-bqey","summary":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: 2D). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.0 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2962.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2962.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2962","reference_id":"","reference_type":"","scores":[{"value":"0.00476","scoring_system":"epss","scoring_elements":"0.6526","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00476","scoring_system":"epss","scoring_elements":"0.65256","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00476","scoring_system":"epss","scoring_elements":"0.65237","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00476","scoring_system":"epss","scoring_elements":"0.65248","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00476","scoring_system":"epss","scoring_elements":"0.65207","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00476","scoring_system":"epss","scoring_elements":"0.6525","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2962"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2894","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2894"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2949","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2949"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2962","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2962"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2964","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2964"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2973","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2973"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2975","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2975"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2977","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2977"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2978","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2978"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2981","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2981"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2983","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2983"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2987","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2987"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2988","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2988"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2989","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2989"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2992","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2992"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2999","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2999"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1761266","reference_id":"1761266","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1761266"},{"reference_url":"https://seclists.org/bugtraq/2019/Oct/27","reference_id":"27","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:20Z/"}],"url":"https://seclists.org/bugtraq/2019/Oct/27"},{"reference_url":"https://seclists.org/bugtraq/2019/Oct/31","reference_id":"31","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:20Z/"}],"url":"https://seclists.org/bugtraq/2019/Oct/31"},{"reference_url":"https://usn.ubuntu.com/4223-1/","reference_id":"4223-1","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:20Z/"}],"url":"https://usn.ubuntu.com/4223-1/"},{"reference_url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html","reference_id":"cpuoct2019-5072832.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:20Z/"}],"url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"},{"reference_url":"https://www.debian.org/security/2019/dsa-4546","reference_id":"dsa-4546","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:20Z/"}],"url":"https://www.debian.org/security/2019/dsa-4546"},{"reference_url":"https://www.debian.org/security/2019/dsa-4548","reference_id":"dsa-4548","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:20Z/"}],"url":"https://www.debian.org/security/2019/dsa-4548"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html","reference_id":"msg00005.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:20Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html","reference_id":"msg00031.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:20Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html","reference_id":"msg00064.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:20Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html","reference_id":"msg00066.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:20Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20191017-0001/","reference_id":"ntap-20191017-0001","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:20Z/"}],"url":"https://security.netapp.com/advisory/ntap-20191017-0001/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3127","reference_id":"RHSA-2019:3127","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3127"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3128","reference_id":"RHSA-2019:3128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3128"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3134","reference_id":"RHSA-2019:3134","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:20Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3134"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3135","reference_id":"RHSA-2019:3135","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:20Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3135"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3136","reference_id":"RHSA-2019:3136","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:20Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3136"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3157","reference_id":"RHSA-2019:3157","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:20Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3157"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3158","reference_id":"RHSA-2019:3158","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:20Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3158"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4109","reference_id":"RHSA-2019:4109","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:20Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4109"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4110","reference_id":"RHSA-2019:4110","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:20Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4110"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4113","reference_id":"RHSA-2019:4113","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:20Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4113"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4115","reference_id":"RHSA-2019:4115","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:20Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4115"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0006","reference_id":"RHSA-2020:0006","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:20Z/"}],"url":"https://access.redhat.com/errata/RHSA-2020:0006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0046","reference_id":"RHSA-2020:0046","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:20Z/"}],"url":"https://access.redhat.com/errata/RHSA-2020:0046"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/385369?format=json","purl":"pkg:apk/alpine/openjdk7@7.241.2.6.20-r0?arch=ppc64le&distroversion=v3.13&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk7@7.241.2.6.20-r0%3Farch=ppc64le&distroversion=v3.13&reponame=community"}],"aliases":["CVE-2019-2962"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5qgv-65jd-bqey"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96358?format=json","vulnerability_id":"VCID-889c-pud7-tfgu","summary":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Concurrency). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability can only be exploited by supplying data to APIs in the specified Component without using Untrusted Java Web Start applications or Untrusted Java applets, such as through a web service. CVSS 3.0 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2964.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2964.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2964","reference_id":"","reference_type":"","scores":[{"value":"0.00476","scoring_system":"epss","scoring_elements":"0.6526","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00476","scoring_system":"epss","scoring_elements":"0.65256","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00476","scoring_system":"epss","scoring_elements":"0.65237","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00476","scoring_system":"epss","scoring_elements":"0.65248","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00476","scoring_system":"epss","scoring_elements":"0.65207","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00476","scoring_system":"epss","scoring_elements":"0.6525","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2964"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2894","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2894"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2949","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2949"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2962","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2962"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2964","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2964"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2973","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2973"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2975","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2975"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2977","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2977"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2978","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2978"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2981","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2981"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2983","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2983"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2987","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2987"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2988","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2988"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2989","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2989"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2992","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2992"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2999","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2999"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1760963","reference_id":"1760963","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1760963"},{"reference_url":"https://seclists.org/bugtraq/2019/Oct/27","reference_id":"27","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:17Z/"}],"url":"https://seclists.org/bugtraq/2019/Oct/27"},{"reference_url":"https://seclists.org/bugtraq/2019/Oct/31","reference_id":"31","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:17Z/"}],"url":"https://seclists.org/bugtraq/2019/Oct/31"},{"reference_url":"https://usn.ubuntu.com/4223-1/","reference_id":"4223-1","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:17Z/"}],"url":"https://usn.ubuntu.com/4223-1/"},{"reference_url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html","reference_id":"cpuoct2019-5072832.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:17Z/"}],"url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"},{"reference_url":"https://www.debian.org/security/2019/dsa-4546","reference_id":"dsa-4546","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:17Z/"}],"url":"https://www.debian.org/security/2019/dsa-4546"},{"reference_url":"https://www.debian.org/security/2019/dsa-4548","reference_id":"dsa-4548","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:17Z/"}],"url":"https://www.debian.org/security/2019/dsa-4548"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html","reference_id":"msg00005.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:17Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html","reference_id":"msg00031.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:17Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html","reference_id":"msg00064.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:17Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html","reference_id":"msg00066.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:17Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20191017-0001/","reference_id":"ntap-20191017-0001","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:17Z/"}],"url":"https://security.netapp.com/advisory/ntap-20191017-0001/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3127","reference_id":"RHSA-2019:3127","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3127"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3128","reference_id":"RHSA-2019:3128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3128"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3134","reference_id":"RHSA-2019:3134","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3134"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3135","reference_id":"RHSA-2019:3135","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3135"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3136","reference_id":"RHSA-2019:3136","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3136"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3157","reference_id":"RHSA-2019:3157","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3157"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3158","reference_id":"RHSA-2019:3158","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3158"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4109","reference_id":"RHSA-2019:4109","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4109"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4110","reference_id":"RHSA-2019:4110","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4110"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4113","reference_id":"RHSA-2019:4113","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4113"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4115","reference_id":"RHSA-2019:4115","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4115"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0006","reference_id":"RHSA-2020:0006","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2020:0006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0046","reference_id":"RHSA-2020:0046","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2020:0046"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/385369?format=json","purl":"pkg:apk/alpine/openjdk7@7.241.2.6.20-r0?arch=ppc64le&distroversion=v3.13&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk7@7.241.2.6.20-r0%3Farch=ppc64le&distroversion=v3.13&reponame=community"}],"aliases":["CVE-2019-2964"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-889c-pud7-tfgu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96355?format=json","vulnerability_id":"VCID-9hyx-653s-byff","summary":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Kerberos). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via Kerberos to compromise Java SE, Java SE Embedded. While the vulnerability is in Java SE, Java SE Embedded, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.0 Base Score 6.8 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2949.json","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2949.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2949","reference_id":"","reference_type":"","scores":[{"value":"0.00551","scoring_system":"epss","scoring_elements":"0.68387","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00551","scoring_system":"epss","scoring_elements":"0.68344","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00551","scoring_system":"epss","scoring_elements":"0.68386","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00551","scoring_system":"epss","scoring_elements":"0.68394","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00551","scoring_system":"epss","scoring_elements":"0.68371","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2949"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2894","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2894"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2949","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2949"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2962","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2962"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2964","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2964"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2973","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2973"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2975","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2975"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2977","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2977"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2978","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2978"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2981","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2981"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2983","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2983"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2987","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2987"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2988","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2988"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2989","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2989"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2992","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2992"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2999","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2999"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1761594","reference_id":"1761594","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1761594"},{"reference_url":"https://seclists.org/bugtraq/2019/Oct/27","reference_id":"27","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:41Z/"}],"url":"https://seclists.org/bugtraq/2019/Oct/27"},{"reference_url":"https://seclists.org/bugtraq/2019/Oct/31","reference_id":"31","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:41Z/"}],"url":"https://seclists.org/bugtraq/2019/Oct/31"},{"reference_url":"https://usn.ubuntu.com/4223-1/","reference_id":"4223-1","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:41Z/"}],"url":"https://usn.ubuntu.com/4223-1/"},{"reference_url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html","reference_id":"cpuoct2019-5072832.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:41Z/"}],"url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"},{"reference_url":"https://www.debian.org/security/2019/dsa-4546","reference_id":"dsa-4546","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:41Z/"}],"url":"https://www.debian.org/security/2019/dsa-4546"},{"reference_url":"https://www.debian.org/security/2019/dsa-4548","reference_id":"dsa-4548","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:41Z/"}],"url":"https://www.debian.org/security/2019/dsa-4548"},{"reference_url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10315","reference_id":"index?page=content&id=SB10315","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:41Z/"}],"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10315"},{"reference_url":"https://support.f5.com/csp/article/K54213762?utm_source=f5support&amp%3Butm_medium=RSS","reference_id":"K54213762?utm_source=f5support&amp%3Butm_medium=RSS","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:41Z/"}],"url":"https://support.f5.com/csp/article/K54213762?utm_source=f5support&amp%3Butm_medium=RSS"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html","reference_id":"msg00005.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:41Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html","reference_id":"msg00031.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:41Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html","reference_id":"msg00064.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:41Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html","reference_id":"msg00066.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:41Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20191017-0001/","reference_id":"ntap-20191017-0001","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:41Z/"}],"url":"https://security.netapp.com/advisory/ntap-20191017-0001/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3127","reference_id":"RHSA-2019:3127","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3127"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3128","reference_id":"RHSA-2019:3128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3128"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3134","reference_id":"RHSA-2019:3134","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3134"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3135","reference_id":"RHSA-2019:3135","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3135"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3136","reference_id":"RHSA-2019:3136","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3136"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2237","reference_id":"RHSA-2020:2237","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2237"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2239","reference_id":"RHSA-2020:2239","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2239"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:2241","reference_id":"RHSA-2020:2241","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:2241"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/385369?format=json","purl":"pkg:apk/alpine/openjdk7@7.241.2.6.20-r0?arch=ppc64le&distroversion=v3.13&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk7@7.241.2.6.20-r0%3Farch=ppc64le&distroversion=v3.13&reponame=community"}],"aliases":["CVE-2019-2949"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"6.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9hyx-653s-byff"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96352?format=json","vulnerability_id":"VCID-avax-gxdr-c3fr","summary":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Security). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.0 Base Score 3.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2894.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2894.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2894","reference_id":"","reference_type":"","scores":[{"value":"0.0058","scoring_system":"epss","scoring_elements":"0.69272","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0058","scoring_system":"epss","scoring_elements":"0.69316","published_at":"2026-06-09T12:55:00Z"},{"value":"0.0058","scoring_system":"epss","scoring_elements":"0.69296","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0058","scoring_system":"epss","scoring_elements":"0.69311","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0058","scoring_system":"epss","scoring_elements":"0.6932","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0058","scoring_system":"epss","scoring_elements":"0.69312","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2894"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2894","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2894"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2949","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2949"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2962","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2962"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2964","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2964"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2973","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2973"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2975","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2975"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2977","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2977"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2978","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2978"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2981","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2981"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2983","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2983"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2987","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2987"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2988","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2988"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2989","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2989"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2992","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2992"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2999","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2999"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1777985","reference_id":"1777985","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1777985"},{"reference_url":"https://seclists.org/bugtraq/2019/Oct/27","reference_id":"27","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:15:32Z/"}],"url":"https://seclists.org/bugtraq/2019/Oct/27"},{"reference_url":"https://seclists.org/bugtraq/2019/Oct/31","reference_id":"31","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:15:32Z/"}],"url":"https://seclists.org/bugtraq/2019/Oct/31"},{"reference_url":"https://usn.ubuntu.com/4223-1/","reference_id":"4223-1","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:15:32Z/"}],"url":"https://usn.ubuntu.com/4223-1/"},{"reference_url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html","reference_id":"cpuoct2019-5072832.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:15:32Z/"}],"url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"},{"reference_url":"https://www.debian.org/security/2019/dsa-4546","reference_id":"dsa-4546","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:15:32Z/"}],"url":"https://www.debian.org/security/2019/dsa-4546"},{"reference_url":"https://www.debian.org/security/2019/dsa-4548","reference_id":"dsa-4548","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:15:32Z/"}],"url":"https://www.debian.org/security/2019/dsa-4548"},{"reference_url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10315","reference_id":"index?page=content&id=SB10315","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:15:32Z/"}],"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10315"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html","reference_id":"msg00005.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:15:32Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html","reference_id":"msg00031.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:15:32Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html","reference_id":"msg00064.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:15:32Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html","reference_id":"msg00066.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:15:32Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20191017-0001/","reference_id":"ntap-20191017-0001","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:15:32Z/"}],"url":"https://security.netapp.com/advisory/ntap-20191017-0001/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/385369?format=json","purl":"pkg:apk/alpine/openjdk7@7.241.2.6.20-r0?arch=ppc64le&distroversion=v3.13&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk7@7.241.2.6.20-r0%3Farch=ppc64le&distroversion=v3.13&reponame=community"}],"aliases":["CVE-2019-2894"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-avax-gxdr-c3fr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96369?format=json","vulnerability_id":"VCID-ebgs-9bzj-dyas","summary":"Vulnerability in the Java SE product of Oracle Java SE (component: Javadoc). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Java SE, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE accessible data as well as unauthorized read access to a subset of Java SE accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.7 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2999.json","reference_id":"","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2999.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2999","reference_id":"","reference_type":"","scores":[{"value":"0.01308","scoring_system":"epss","scoring_elements":"0.80157","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01308","scoring_system":"epss","scoring_elements":"0.80169","published_at":"2026-06-09T12:55:00Z"},{"value":"0.01308","scoring_system":"epss","scoring_elements":"0.80149","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01308","scoring_system":"epss","scoring_elements":"0.80161","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01308","scoring_system":"epss","scoring_elements":"0.80132","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2999"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2894","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2894"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2949","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2949"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2962","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2962"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2964","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2964"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2973","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2973"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2975","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2975"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2977","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2977"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2978","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2978"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2981","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2981"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2983","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2983"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2987","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2987"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2988","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2988"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2989","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2989"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2992","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2992"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2999","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2999"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1760992","reference_id":"1760992","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1760992"},{"reference_url":"https://seclists.org/bugtraq/2019/Oct/27","reference_id":"27","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:29Z/"}],"url":"https://seclists.org/bugtraq/2019/Oct/27"},{"reference_url":"https://seclists.org/bugtraq/2019/Oct/31","reference_id":"31","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:29Z/"}],"url":"https://seclists.org/bugtraq/2019/Oct/31"},{"reference_url":"https://usn.ubuntu.com/4223-1/","reference_id":"4223-1","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:29Z/"}],"url":"https://usn.ubuntu.com/4223-1/"},{"reference_url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html","reference_id":"cpuoct2019-5072832.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:29Z/"}],"url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"},{"reference_url":"https://www.debian.org/security/2019/dsa-4546","reference_id":"dsa-4546","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:29Z/"}],"url":"https://www.debian.org/security/2019/dsa-4546"},{"reference_url":"https://www.debian.org/security/2019/dsa-4548","reference_id":"dsa-4548","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:29Z/"}],"url":"https://www.debian.org/security/2019/dsa-4548"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html","reference_id":"msg00005.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:29Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html","reference_id":"msg00031.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:29Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html","reference_id":"msg00064.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:29Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html","reference_id":"msg00066.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:29Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20191017-0001/","reference_id":"ntap-20191017-0001","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:29Z/"}],"url":"https://security.netapp.com/advisory/ntap-20191017-0001/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3127","reference_id":"RHSA-2019:3127","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3127"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3128","reference_id":"RHSA-2019:3128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3128"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3134","reference_id":"RHSA-2019:3134","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:29Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3134"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3135","reference_id":"RHSA-2019:3135","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:29Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3135"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3136","reference_id":"RHSA-2019:3136","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:29Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3136"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3157","reference_id":"RHSA-2019:3157","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:29Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3157"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3158","reference_id":"RHSA-2019:3158","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:29Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3158"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4109","reference_id":"RHSA-2019:4109","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:29Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4109"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4110","reference_id":"RHSA-2019:4110","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:29Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4110"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4113","reference_id":"RHSA-2019:4113","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:29Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4113"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4115","reference_id":"RHSA-2019:4115","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:29Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4115"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0006","reference_id":"RHSA-2020:0006","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:29Z/"}],"url":"https://access.redhat.com/errata/RHSA-2020:0006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0046","reference_id":"RHSA-2020:0046","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:29Z/"}],"url":"https://access.redhat.com/errata/RHSA-2020:0046"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/385369?format=json","purl":"pkg:apk/alpine/openjdk7@7.241.2.6.20-r0?arch=ppc64le&distroversion=v3.13&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk7@7.241.2.6.20-r0%3Farch=ppc64le&distroversion=v3.13&reponame=community"}],"aliases":["CVE-2019-2999"],"risk_score":2.1,"exploitability":"0.5","weighted_severity":"4.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ebgs-9bzj-dyas"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96368?format=json","vulnerability_id":"VCID-hw8u-kuhx-27g3","summary":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: 2D). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2992.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2992.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2992","reference_id":"","reference_type":"","scores":[{"value":"0.00914","scoring_system":"epss","scoring_elements":"0.76295","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00914","scoring_system":"epss","scoring_elements":"0.76302","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00914","scoring_system":"epss","scoring_elements":"0.76278","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00914","scoring_system":"epss","scoring_elements":"0.76289","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00914","scoring_system":"epss","scoring_elements":"0.76267","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00914","scoring_system":"epss","scoring_elements":"0.76293","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2992"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2894","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2894"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2949","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2949"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2962","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2962"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2964","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2964"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2973","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2973"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2975","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2975"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2977","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2977"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2978","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2978"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2981","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2981"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2983","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2983"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2987","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2987"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2988","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2988"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2989","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2989"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2992","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2992"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2999","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2999"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1761146","reference_id":"1761146","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1761146"},{"reference_url":"https://seclists.org/bugtraq/2019/Oct/27","reference_id":"27","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:38Z/"}],"url":"https://seclists.org/bugtraq/2019/Oct/27"},{"reference_url":"https://seclists.org/bugtraq/2019/Oct/31","reference_id":"31","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:38Z/"}],"url":"https://seclists.org/bugtraq/2019/Oct/31"},{"reference_url":"https://usn.ubuntu.com/4223-1/","reference_id":"4223-1","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:38Z/"}],"url":"https://usn.ubuntu.com/4223-1/"},{"reference_url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html","reference_id":"cpuoct2019-5072832.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:38Z/"}],"url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"},{"reference_url":"https://www.debian.org/security/2019/dsa-4546","reference_id":"dsa-4546","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:38Z/"}],"url":"https://www.debian.org/security/2019/dsa-4546"},{"reference_url":"https://www.debian.org/security/2019/dsa-4548","reference_id":"dsa-4548","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:38Z/"}],"url":"https://www.debian.org/security/2019/dsa-4548"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html","reference_id":"msg00005.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:38Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html","reference_id":"msg00031.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:38Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html","reference_id":"msg00064.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:38Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html","reference_id":"msg00066.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:38Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20191017-0001/","reference_id":"ntap-20191017-0001","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:38Z/"}],"url":"https://security.netapp.com/advisory/ntap-20191017-0001/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3127","reference_id":"RHSA-2019:3127","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3127"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3128","reference_id":"RHSA-2019:3128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3128"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3134","reference_id":"RHSA-2019:3134","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:38Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3134"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3135","reference_id":"RHSA-2019:3135","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:38Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3135"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3136","reference_id":"RHSA-2019:3136","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:38Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3136"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3157","reference_id":"RHSA-2019:3157","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:38Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3157"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3158","reference_id":"RHSA-2019:3158","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:38Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3158"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4109","reference_id":"RHSA-2019:4109","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:38Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4109"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4110","reference_id":"RHSA-2019:4110","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:38Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4110"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4113","reference_id":"RHSA-2019:4113","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:38Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4113"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4115","reference_id":"RHSA-2019:4115","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:38Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4115"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0006","reference_id":"RHSA-2020:0006","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:38Z/"}],"url":"https://access.redhat.com/errata/RHSA-2020:0006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0046","reference_id":"RHSA-2020:0046","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:38Z/"}],"url":"https://access.redhat.com/errata/RHSA-2020:0046"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/385369?format=json","purl":"pkg:apk/alpine/openjdk7@7.241.2.6.20-r0?arch=ppc64le&distroversion=v3.13&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk7@7.241.2.6.20-r0%3Farch=ppc64le&distroversion=v3.13&reponame=community"}],"aliases":["CVE-2019-2992"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hw8u-kuhx-27g3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96362?format=json","vulnerability_id":"VCID-krx4-tj2r-tqf2","summary":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.0 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2978.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2978.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2978","reference_id":"","reference_type":"","scores":[{"value":"0.00527","scoring_system":"epss","scoring_elements":"0.6752","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00527","scoring_system":"epss","scoring_elements":"0.67506","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00527","scoring_system":"epss","scoring_elements":"0.67492","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00527","scoring_system":"epss","scoring_elements":"0.67508","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00527","scoring_system":"epss","scoring_elements":"0.67472","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00527","scoring_system":"epss","scoring_elements":"0.67513","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2978"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2894","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2894"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2949","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2949"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2962","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2962"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2964","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2964"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2973","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2973"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2975","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2975"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2977","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2977"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2978","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2978"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2981","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2981"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2983","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2983"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2987","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2987"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2988","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2988"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2989","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2989"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2992","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2992"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2999","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2999"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1761006","reference_id":"1761006","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1761006"},{"reference_url":"https://seclists.org/bugtraq/2019/Oct/27","reference_id":"27","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:59Z/"}],"url":"https://seclists.org/bugtraq/2019/Oct/27"},{"reference_url":"https://seclists.org/bugtraq/2019/Oct/31","reference_id":"31","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:59Z/"}],"url":"https://seclists.org/bugtraq/2019/Oct/31"},{"reference_url":"https://usn.ubuntu.com/4223-1/","reference_id":"4223-1","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:59Z/"}],"url":"https://usn.ubuntu.com/4223-1/"},{"reference_url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html","reference_id":"cpuoct2019-5072832.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:59Z/"}],"url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"},{"reference_url":"https://www.debian.org/security/2019/dsa-4546","reference_id":"dsa-4546","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:59Z/"}],"url":"https://www.debian.org/security/2019/dsa-4546"},{"reference_url":"https://www.debian.org/security/2019/dsa-4548","reference_id":"dsa-4548","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:59Z/"}],"url":"https://www.debian.org/security/2019/dsa-4548"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html","reference_id":"msg00005.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:59Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html","reference_id":"msg00031.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:59Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html","reference_id":"msg00064.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:59Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html","reference_id":"msg00066.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:59Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20191017-0001/","reference_id":"ntap-20191017-0001","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:59Z/"}],"url":"https://security.netapp.com/advisory/ntap-20191017-0001/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3127","reference_id":"RHSA-2019:3127","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3127"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3128","reference_id":"RHSA-2019:3128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3128"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3134","reference_id":"RHSA-2019:3134","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:59Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3134"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3135","reference_id":"RHSA-2019:3135","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:59Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3135"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3136","reference_id":"RHSA-2019:3136","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:59Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3136"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3157","reference_id":"RHSA-2019:3157","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:59Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3157"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3158","reference_id":"RHSA-2019:3158","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:59Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3158"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4109","reference_id":"RHSA-2019:4109","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:59Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4109"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4110","reference_id":"RHSA-2019:4110","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:59Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4110"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4113","reference_id":"RHSA-2019:4113","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:59Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4113"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4115","reference_id":"RHSA-2019:4115","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:59Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4115"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0006","reference_id":"RHSA-2020:0006","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:59Z/"}],"url":"https://access.redhat.com/errata/RHSA-2020:0006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0046","reference_id":"RHSA-2020:0046","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:59Z/"}],"url":"https://access.redhat.com/errata/RHSA-2020:0046"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/385369?format=json","purl":"pkg:apk/alpine/openjdk7@7.241.2.6.20-r0?arch=ppc64le&distroversion=v3.13&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk7@7.241.2.6.20-r0%3Farch=ppc64le&distroversion=v3.13&reponame=community"}],"aliases":["CVE-2019-2978"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-krx4-tj2r-tqf2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96353?format=json","vulnerability_id":"VCID-mbu3-esu7-v3gt","summary":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.0 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2933.json","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2933.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2933","reference_id":"","reference_type":"","scores":[{"value":"0.00752","scoring_system":"epss","scoring_elements":"0.7359","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00752","scoring_system":"epss","scoring_elements":"0.73551","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00752","scoring_system":"epss","scoring_elements":"0.73587","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00752","scoring_system":"epss","scoring_elements":"0.73591","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00752","scoring_system":"epss","scoring_elements":"0.73578","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00752","scoring_system":"epss","scoring_elements":"0.73564","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2933"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1777981","reference_id":"1777981","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1777981"},{"reference_url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html","reference_id":"cpuoct2019-5072832.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:15:00Z/"}],"url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"},{"reference_url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10315","reference_id":"index?page=content&id=SB10315","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:15:00Z/"}],"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10315"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html","reference_id":"msg00005.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:15:00Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html","reference_id":"msg00031.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:15:00Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html","reference_id":"msg00064.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:15:00Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html","reference_id":"msg00066.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:15:00Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20191017-0001/","reference_id":"ntap-20191017-0001","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:15:00Z/"}],"url":"https://security.netapp.com/advisory/ntap-20191017-0001/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/385369?format=json","purl":"pkg:apk/alpine/openjdk7@7.241.2.6.20-r0?arch=ppc64le&distroversion=v3.13&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk7@7.241.2.6.20-r0%3Farch=ppc64le&distroversion=v3.13&reponame=community"}],"aliases":["CVE-2019-2933"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mbu3-esu7-v3gt"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96364?format=json","vulnerability_id":"VCID-nuju-mztx-t3cf","summary":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.0 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2983.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2983.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2983","reference_id":"","reference_type":"","scores":[{"value":"0.00476","scoring_system":"epss","scoring_elements":"0.6526","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00476","scoring_system":"epss","scoring_elements":"0.65256","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00476","scoring_system":"epss","scoring_elements":"0.65237","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00476","scoring_system":"epss","scoring_elements":"0.65248","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00476","scoring_system":"epss","scoring_elements":"0.65207","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00476","scoring_system":"epss","scoring_elements":"0.6525","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2983"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2894","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2894"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2949","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2949"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2962","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2962"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2964","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2964"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2973","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2973"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2975","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2975"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2977","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2977"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2978","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2978"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2981","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2981"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2983","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2983"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2987","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2987"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2988","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2988"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2989","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2989"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2992","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2992"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2999","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2999"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1761262","reference_id":"1761262","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1761262"},{"reference_url":"https://seclists.org/bugtraq/2019/Oct/27","reference_id":"27","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:51Z/"}],"url":"https://seclists.org/bugtraq/2019/Oct/27"},{"reference_url":"https://seclists.org/bugtraq/2019/Oct/31","reference_id":"31","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:51Z/"}],"url":"https://seclists.org/bugtraq/2019/Oct/31"},{"reference_url":"https://usn.ubuntu.com/4223-1/","reference_id":"4223-1","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:51Z/"}],"url":"https://usn.ubuntu.com/4223-1/"},{"reference_url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html","reference_id":"cpuoct2019-5072832.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:51Z/"}],"url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"},{"reference_url":"https://www.debian.org/security/2019/dsa-4546","reference_id":"dsa-4546","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:51Z/"}],"url":"https://www.debian.org/security/2019/dsa-4546"},{"reference_url":"https://www.debian.org/security/2019/dsa-4548","reference_id":"dsa-4548","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:51Z/"}],"url":"https://www.debian.org/security/2019/dsa-4548"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html","reference_id":"msg00005.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:51Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html","reference_id":"msg00031.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:51Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html","reference_id":"msg00064.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:51Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html","reference_id":"msg00066.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:51Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20191017-0001/","reference_id":"ntap-20191017-0001","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:51Z/"}],"url":"https://security.netapp.com/advisory/ntap-20191017-0001/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3127","reference_id":"RHSA-2019:3127","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3127"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3128","reference_id":"RHSA-2019:3128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3128"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3134","reference_id":"RHSA-2019:3134","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:51Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3134"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3135","reference_id":"RHSA-2019:3135","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:51Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3135"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3136","reference_id":"RHSA-2019:3136","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:51Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3136"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3157","reference_id":"RHSA-2019:3157","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:51Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3157"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3158","reference_id":"RHSA-2019:3158","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:51Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3158"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4109","reference_id":"RHSA-2019:4109","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:51Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4109"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4110","reference_id":"RHSA-2019:4110","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:51Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4110"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4113","reference_id":"RHSA-2019:4113","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:51Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4113"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4115","reference_id":"RHSA-2019:4115","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:51Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4115"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0006","reference_id":"RHSA-2020:0006","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:51Z/"}],"url":"https://access.redhat.com/errata/RHSA-2020:0006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0046","reference_id":"RHSA-2020:0046","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:51Z/"}],"url":"https://access.redhat.com/errata/RHSA-2020:0046"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/385369?format=json","purl":"pkg:apk/alpine/openjdk7@7.241.2.6.20-r0?arch=ppc64le&distroversion=v3.13&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk7@7.241.2.6.20-r0%3Farch=ppc64le&distroversion=v3.13&reponame=community"}],"aliases":["CVE-2019-2983"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nuju-mztx-t3cf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96367?format=json","vulnerability_id":"VCID-nyvk-3quh-c7g9","summary":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. While the vulnerability is in Java SE, Java SE Embedded, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS v3.0 Base Score 6.8 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2989.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2989.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2989","reference_id":"","reference_type":"","scores":[{"value":"0.02946","scoring_system":"epss","scoring_elements":"0.86724","published_at":"2026-06-07T12:55:00Z"},{"value":"0.02946","scoring_system":"epss","scoring_elements":"0.86729","published_at":"2026-06-05T12:55:00Z"},{"value":"0.02946","scoring_system":"epss","scoring_elements":"0.86707","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02946","scoring_system":"epss","scoring_elements":"0.86714","published_at":"2026-06-08T12:55:00Z"},{"value":"0.02946","scoring_system":"epss","scoring_elements":"0.86727","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2989"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2894","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2894"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2949","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2949"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2962","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2962"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2964","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2964"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2973","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2973"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2975","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2975"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2977","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2977"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2978","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2978"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2981","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2981"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2983","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2983"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2987","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2987"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2988","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2988"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2989","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2989"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2992","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2992"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2999","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2999"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1761601","reference_id":"1761601","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1761601"},{"reference_url":"https://seclists.org/bugtraq/2019/Oct/27","reference_id":"27","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:42Z/"}],"url":"https://seclists.org/bugtraq/2019/Oct/27"},{"reference_url":"https://seclists.org/bugtraq/2019/Oct/31","reference_id":"31","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:42Z/"}],"url":"https://seclists.org/bugtraq/2019/Oct/31"},{"reference_url":"https://usn.ubuntu.com/4223-1/","reference_id":"4223-1","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:42Z/"}],"url":"https://usn.ubuntu.com/4223-1/"},{"reference_url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html","reference_id":"cpuoct2019-5072832.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:42Z/"}],"url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"},{"reference_url":"https://www.debian.org/security/2019/dsa-4546","reference_id":"dsa-4546","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:42Z/"}],"url":"https://www.debian.org/security/2019/dsa-4546"},{"reference_url":"https://www.debian.org/security/2019/dsa-4548","reference_id":"dsa-4548","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:42Z/"}],"url":"https://www.debian.org/security/2019/dsa-4548"},{"reference_url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10315","reference_id":"index?page=content&id=SB10315","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:42Z/"}],"url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10315"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html","reference_id":"msg00005.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:42Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html","reference_id":"msg00031.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:42Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html","reference_id":"msg00064.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:42Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html","reference_id":"msg00066.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:42Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20191017-0001/","reference_id":"ntap-20191017-0001","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:42Z/"}],"url":"https://security.netapp.com/advisory/ntap-20191017-0001/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3127","reference_id":"RHSA-2019:3127","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3127"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3128","reference_id":"RHSA-2019:3128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3128"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3134","reference_id":"RHSA-2019:3134","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:42Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3134"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3135","reference_id":"RHSA-2019:3135","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:42Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3135"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3136","reference_id":"RHSA-2019:3136","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:42Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3136"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3157","reference_id":"RHSA-2019:3157","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:42Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3157"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3158","reference_id":"RHSA-2019:3158","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:42Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3158"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4109","reference_id":"RHSA-2019:4109","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:42Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4109"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4110","reference_id":"RHSA-2019:4110","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:42Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4110"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4113","reference_id":"RHSA-2019:4113","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:42Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4113"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4115","reference_id":"RHSA-2019:4115","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:42Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4115"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0006","reference_id":"RHSA-2020:0006","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:42Z/"}],"url":"https://access.redhat.com/errata/RHSA-2020:0006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0046","reference_id":"RHSA-2020:0046","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:42Z/"}],"url":"https://access.redhat.com/errata/RHSA-2020:0046"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/385369?format=json","purl":"pkg:apk/alpine/openjdk7@7.241.2.6.20-r0?arch=ppc64le&distroversion=v3.13&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk7@7.241.2.6.20-r0%3Farch=ppc64le&distroversion=v3.13&reponame=community"}],"aliases":["CVE-2019-2989"],"risk_score":2.8,"exploitability":"0.5","weighted_severity":"5.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nyvk-3quh-c7g9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96365?format=json","vulnerability_id":"VCID-p1f9-4hdn-afb7","summary":"Vulnerability in the Java SE product of Oracle Java SE (component: 2D). Supported versions that are affected are Java SE: 11.0.4 and 13. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.0 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2987.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2987.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2987","reference_id":"","reference_type":"","scores":[{"value":"0.00503","scoring_system":"epss","scoring_elements":"0.66466","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00503","scoring_system":"epss","scoring_elements":"0.66502","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00503","scoring_system":"epss","scoring_elements":"0.66485","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00503","scoring_system":"epss","scoring_elements":"0.66499","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00503","scoring_system":"epss","scoring_elements":"0.66515","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00503","scoring_system":"epss","scoring_elements":"0.66507","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2987"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2894","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2894"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2949","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2949"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2962","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2962"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2964","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2964"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2973","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2973"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2975","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2975"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2977","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2977"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2978","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2978"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2981","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2981"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2983","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2983"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2987","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2987"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2988","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2988"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2989","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2989"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2992","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2992"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2999","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2999"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1761149","reference_id":"1761149","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1761149"},{"reference_url":"https://seclists.org/bugtraq/2019/Oct/27","reference_id":"27","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:45Z/"}],"url":"https://seclists.org/bugtraq/2019/Oct/27"},{"reference_url":"https://seclists.org/bugtraq/2019/Oct/31","reference_id":"31","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:45Z/"}],"url":"https://seclists.org/bugtraq/2019/Oct/31"},{"reference_url":"https://usn.ubuntu.com/4223-1/","reference_id":"4223-1","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:45Z/"}],"url":"https://usn.ubuntu.com/4223-1/"},{"reference_url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html","reference_id":"cpuoct2019-5072832.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:45Z/"}],"url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"},{"reference_url":"https://www.debian.org/security/2019/dsa-4546","reference_id":"dsa-4546","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:45Z/"}],"url":"https://www.debian.org/security/2019/dsa-4546"},{"reference_url":"https://www.debian.org/security/2019/dsa-4548","reference_id":"dsa-4548","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:45Z/"}],"url":"https://www.debian.org/security/2019/dsa-4548"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html","reference_id":"msg00005.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:45Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html","reference_id":"msg00031.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:45Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html","reference_id":"msg00064.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:45Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html","reference_id":"msg00066.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:45Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20191017-0001/","reference_id":"ntap-20191017-0001","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:45Z/"}],"url":"https://security.netapp.com/advisory/ntap-20191017-0001/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3127","reference_id":"RHSA-2019:3127","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3127"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3128","reference_id":"RHSA-2019:3128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3128"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3134","reference_id":"RHSA-2019:3134","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:45Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3134"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3135","reference_id":"RHSA-2019:3135","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:45Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3135"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3136","reference_id":"RHSA-2019:3136","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:45Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3136"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3157","reference_id":"RHSA-2019:3157","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:45Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3157"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3158","reference_id":"RHSA-2019:3158","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:45Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3158"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/385369?format=json","purl":"pkg:apk/alpine/openjdk7@7.241.2.6.20-r0?arch=ppc64le&distroversion=v3.13&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk7@7.241.2.6.20-r0%3Farch=ppc64le&distroversion=v3.13&reponame=community"}],"aliases":["CVE-2019-2987"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-p1f9-4hdn-afb7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96363?format=json","vulnerability_id":"VCID-qdht-dsxr-8qhy","summary":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JAXP). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.0 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2981.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2981.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2981","reference_id":"","reference_type":"","scores":[{"value":"0.0046","scoring_system":"epss","scoring_elements":"0.64512","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0046","scoring_system":"epss","scoring_elements":"0.64509","published_at":"2026-06-09T12:55:00Z"},{"value":"0.0046","scoring_system":"epss","scoring_elements":"0.6449","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0046","scoring_system":"epss","scoring_elements":"0.64501","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0046","scoring_system":"epss","scoring_elements":"0.6446","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0046","scoring_system":"epss","scoring_elements":"0.64504","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2981"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2894","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2894"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2949","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2949"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2962","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2962"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2964","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2964"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2973","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2973"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2975","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2975"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2977","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2977"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2978","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2978"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2981","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2981"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2983","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2983"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2987","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2987"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2988","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2988"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2989","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2989"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2992","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2992"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2999","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2999"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1760980","reference_id":"1760980","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1760980"},{"reference_url":"https://seclists.org/bugtraq/2019/Oct/27","reference_id":"27","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:55Z/"}],"url":"https://seclists.org/bugtraq/2019/Oct/27"},{"reference_url":"https://seclists.org/bugtraq/2019/Oct/31","reference_id":"31","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:55Z/"}],"url":"https://seclists.org/bugtraq/2019/Oct/31"},{"reference_url":"https://usn.ubuntu.com/4223-1/","reference_id":"4223-1","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:55Z/"}],"url":"https://usn.ubuntu.com/4223-1/"},{"reference_url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html","reference_id":"cpuoct2019-5072832.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:55Z/"}],"url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"},{"reference_url":"https://www.debian.org/security/2019/dsa-4546","reference_id":"dsa-4546","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:55Z/"}],"url":"https://www.debian.org/security/2019/dsa-4546"},{"reference_url":"https://www.debian.org/security/2019/dsa-4548","reference_id":"dsa-4548","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:55Z/"}],"url":"https://www.debian.org/security/2019/dsa-4548"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html","reference_id":"msg00005.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:55Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html","reference_id":"msg00031.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:55Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html","reference_id":"msg00064.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:55Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html","reference_id":"msg00066.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:55Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20191017-0001/","reference_id":"ntap-20191017-0001","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:55Z/"}],"url":"https://security.netapp.com/advisory/ntap-20191017-0001/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3127","reference_id":"RHSA-2019:3127","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3127"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3128","reference_id":"RHSA-2019:3128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3128"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3134","reference_id":"RHSA-2019:3134","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:55Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3134"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3135","reference_id":"RHSA-2019:3135","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:55Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3135"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3136","reference_id":"RHSA-2019:3136","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:55Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3136"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3157","reference_id":"RHSA-2019:3157","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:55Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3157"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3158","reference_id":"RHSA-2019:3158","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:55Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3158"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4109","reference_id":"RHSA-2019:4109","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:55Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4109"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4110","reference_id":"RHSA-2019:4110","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:55Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4110"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4113","reference_id":"RHSA-2019:4113","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:55Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4113"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4115","reference_id":"RHSA-2019:4115","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:55Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4115"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0006","reference_id":"RHSA-2020:0006","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:55Z/"}],"url":"https://access.redhat.com/errata/RHSA-2020:0006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0046","reference_id":"RHSA-2020:0046","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:55Z/"}],"url":"https://access.redhat.com/errata/RHSA-2020:0046"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/385369?format=json","purl":"pkg:apk/alpine/openjdk7@7.241.2.6.20-r0?arch=ppc64le&distroversion=v3.13&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk7@7.241.2.6.20-r0%3Farch=ppc64le&distroversion=v3.13&reponame=community"}],"aliases":["CVE-2019-2981"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qdht-dsxr-8qhy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96356?format=json","vulnerability_id":"VCID-qfw6-f82q-5ucv","summary":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.0 Base Score 5.9 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2958.json","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2958.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2958","reference_id":"","reference_type":"","scores":[{"value":"0.01599","scoring_system":"epss","scoring_elements":"0.82071","published_at":"2026-06-09T12:55:00Z"},{"value":"0.01599","scoring_system":"epss","scoring_elements":"0.82027","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01599","scoring_system":"epss","scoring_elements":"0.82061","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01599","scoring_system":"epss","scoring_elements":"0.82063","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01599","scoring_system":"epss","scoring_elements":"0.82056","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2958"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1777929","reference_id":"1777929","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1777929"},{"reference_url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html","reference_id":"cpuoct2019-5072832.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:26Z/"}],"url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html","reference_id":"msg00005.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:26Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html","reference_id":"msg00031.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:26Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html","reference_id":"msg00064.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:26Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html","reference_id":"msg00066.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:26Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20191017-0001/","reference_id":"ntap-20191017-0001","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:26Z/"}],"url":"https://security.netapp.com/advisory/ntap-20191017-0001/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/385369?format=json","purl":"pkg:apk/alpine/openjdk7@7.241.2.6.20-r0?arch=ppc64le&distroversion=v3.13&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk7@7.241.2.6.20-r0%3Farch=ppc64le&distroversion=v3.13&reponame=community"}],"aliases":["CVE-2019-2958"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qfw6-f82q-5ucv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96354?format=json","vulnerability_id":"VCID-xa1d-hrgb-gyd4","summary":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 3.1 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2945.json","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2945.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2945","reference_id":"","reference_type":"","scores":[{"value":"0.00409","scoring_system":"epss","scoring_elements":"0.61617","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00409","scoring_system":"epss","scoring_elements":"0.61609","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00409","scoring_system":"epss","scoring_elements":"0.6159","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00409","scoring_system":"epss","scoring_elements":"0.61606","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00409","scoring_system":"epss","scoring_elements":"0.61562","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00409","scoring_system":"epss","scoring_elements":"0.6161","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2894","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2894"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2949","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2949"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2962","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2962"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2964","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2964"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2973","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2973"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2975","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2975"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2977","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2977"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2978","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2978"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2981","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2981"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2983","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2983"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2987","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2987"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2988","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2988"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2989","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2989"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2992","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2992"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2999","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2999"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1761596","reference_id":"1761596","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1761596"},{"reference_url":"https://seclists.org/bugtraq/2019/Oct/27","reference_id":"27","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:48Z/"}],"url":"https://seclists.org/bugtraq/2019/Oct/27"},{"reference_url":"https://seclists.org/bugtraq/2019/Oct/31","reference_id":"31","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:48Z/"}],"url":"https://seclists.org/bugtraq/2019/Oct/31"},{"reference_url":"https://usn.ubuntu.com/4223-1/","reference_id":"4223-1","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:48Z/"}],"url":"https://usn.ubuntu.com/4223-1/"},{"reference_url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html","reference_id":"cpuoct2019-5072832.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:48Z/"}],"url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"},{"reference_url":"https://www.debian.org/security/2019/dsa-4546","reference_id":"dsa-4546","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:48Z/"}],"url":"https://www.debian.org/security/2019/dsa-4546"},{"reference_url":"https://www.debian.org/security/2019/dsa-4548","reference_id":"dsa-4548","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:48Z/"}],"url":"https://www.debian.org/security/2019/dsa-4548"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html","reference_id":"msg00005.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:48Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html","reference_id":"msg00031.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:48Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html","reference_id":"msg00064.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:48Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html","reference_id":"msg00066.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:48Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20191017-0001/","reference_id":"ntap-20191017-0001","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:48Z/"}],"url":"https://security.netapp.com/advisory/ntap-20191017-0001/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3127","reference_id":"RHSA-2019:3127","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3127"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3128","reference_id":"RHSA-2019:3128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3128"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3134","reference_id":"RHSA-2019:3134","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:48Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3134"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3135","reference_id":"RHSA-2019:3135","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:48Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3135"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3136","reference_id":"RHSA-2019:3136","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:48Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3136"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3157","reference_id":"RHSA-2019:3157","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:48Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3157"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3158","reference_id":"RHSA-2019:3158","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:48Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3158"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4109","reference_id":"RHSA-2019:4109","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:48Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4109"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4110","reference_id":"RHSA-2019:4110","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:48Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4110"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4113","reference_id":"RHSA-2019:4113","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:48Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4113"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4115","reference_id":"RHSA-2019:4115","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:48Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4115"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0006","reference_id":"RHSA-2020:0006","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:48Z/"}],"url":"https://access.redhat.com/errata/RHSA-2020:0006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0046","reference_id":"RHSA-2020:0046","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:48Z/"}],"url":"https://access.redhat.com/errata/RHSA-2020:0046"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/385369?format=json","purl":"pkg:apk/alpine/openjdk7@7.241.2.6.20-r0?arch=ppc64le&distroversion=v3.13&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk7@7.241.2.6.20-r0%3Farch=ppc64le&distroversion=v3.13&reponame=community"}],"aliases":["CVE-2019-2945"],"risk_score":1.4,"exploitability":"0.5","weighted_severity":"2.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xa1d-hrgb-gyd4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/96359?format=json","vulnerability_id":"VCID-ys5v-prjz-ruar","summary":"Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JAXP). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.0 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2973.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2973.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2973","reference_id":"","reference_type":"","scores":[{"value":"0.00576","scoring_system":"epss","scoring_elements":"0.69207","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00576","scoring_system":"epss","scoring_elements":"0.69203","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00576","scoring_system":"epss","scoring_elements":"0.69184","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00576","scoring_system":"epss","scoring_elements":"0.69199","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00576","scoring_system":"epss","scoring_elements":"0.69159","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00576","scoring_system":"epss","scoring_elements":"0.69198","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-2973"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2894","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2894"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2949","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2949"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2962","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2962"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2964","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2964"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2973","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2973"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2975","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2975"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2977","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2977"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2978","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2978"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2981","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2981"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2983","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2983"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2987","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2987"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2988","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2988"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2989","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2989"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2992","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2992"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2999","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2999"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1760978","reference_id":"1760978","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1760978"},{"reference_url":"https://seclists.org/bugtraq/2019/Oct/27","reference_id":"27","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:07Z/"}],"url":"https://seclists.org/bugtraq/2019/Oct/27"},{"reference_url":"https://seclists.org/bugtraq/2019/Oct/31","reference_id":"31","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:07Z/"}],"url":"https://seclists.org/bugtraq/2019/Oct/31"},{"reference_url":"https://usn.ubuntu.com/4223-1/","reference_id":"4223-1","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:07Z/"}],"url":"https://usn.ubuntu.com/4223-1/"},{"reference_url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html","reference_id":"cpuoct2019-5072832.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:07Z/"}],"url":"http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"},{"reference_url":"https://www.debian.org/security/2019/dsa-4546","reference_id":"dsa-4546","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:07Z/"}],"url":"https://www.debian.org/security/2019/dsa-4546"},{"reference_url":"https://www.debian.org/security/2019/dsa-4548","reference_id":"dsa-4548","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:07Z/"}],"url":"https://www.debian.org/security/2019/dsa-4548"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html","reference_id":"msg00005.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:07Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2019/12/msg00005.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html","reference_id":"msg00031.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:07Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00031.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html","reference_id":"msg00064.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:07Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00064.html"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html","reference_id":"msg00066.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:07Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00066.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20191017-0001/","reference_id":"ntap-20191017-0001","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:07Z/"}],"url":"https://security.netapp.com/advisory/ntap-20191017-0001/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3127","reference_id":"RHSA-2019:3127","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3127"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3128","reference_id":"RHSA-2019:3128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2019:3128"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3134","reference_id":"RHSA-2019:3134","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:07Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3134"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3135","reference_id":"RHSA-2019:3135","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:07Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3135"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3136","reference_id":"RHSA-2019:3136","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:07Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3136"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3157","reference_id":"RHSA-2019:3157","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:07Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3157"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:3158","reference_id":"RHSA-2019:3158","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:07Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:3158"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4109","reference_id":"RHSA-2019:4109","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:07Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4109"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4110","reference_id":"RHSA-2019:4110","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:07Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4110"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4113","reference_id":"RHSA-2019:4113","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:07Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4113"},{"reference_url":"https://access.redhat.com/errata/RHSA-2019:4115","reference_id":"RHSA-2019:4115","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:07Z/"}],"url":"https://access.redhat.com/errata/RHSA-2019:4115"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0006","reference_id":"RHSA-2020:0006","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:07Z/"}],"url":"https://access.redhat.com/errata/RHSA-2020:0006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0046","reference_id":"RHSA-2020:0046","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:07Z/"}],"url":"https://access.redhat.com/errata/RHSA-2020:0046"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/385369?format=json","purl":"pkg:apk/alpine/openjdk7@7.241.2.6.20-r0?arch=ppc64le&distroversion=v3.13&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk7@7.241.2.6.20-r0%3Farch=ppc64le&distroversion=v3.13&reponame=community"}],"aliases":["CVE-2019-2973"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ys5v-prjz-ruar"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openjdk7@7.241.2.6.20-r0%3Farch=ppc64le&distroversion=v3.13&reponame=community"}