{
  "threat_severity" : "Moderate",
  "public_date" : "2020-04-29T00:00:00Z",
  "bugzilla" : {
    "description" : "jquery: Untrusted code execution via <option> tag in HTML passed to DOM manipulation methods",
    "id" : "1850004",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1850004"
  },
  "cvss3" : {
    "cvss3_base_score" : "6.1",
    "cvss3_scoring_vector" : "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
    "status" : "verified"
  },
  "cwe" : "CWE-79",
  "details" : [ "In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.", "A flaw was found in jQuery. HTML containing \\<option\\> elements from untrusted sources are passed, even after sanitizing, to one of jQuery's DOM manipulation methods, which may execute untrusted code. The highest threat from this vulnerability is to data confidentiality and integrity." ],
  "statement" : "Red Hat Enterprise Linux versions 6, 7, and 8 ship a vulnerable version of JQuery in the `pcs` component. As PCS does not accept untrusted input, the vulnerable code cannot be controlled by an attacker.\nMultiple Red Hat offerings use doxygen to build documentation. During this process an affected jquery.js file can be included in the resulting package. The 'gcc' and 'tbb' packages were potentially vulnerable via this method.\nOpenShift Container Platform 4 is not affected because even though it uses the 'gcc' component, vulnerable code is limited within the libstdc++-docs rpm package, which is not shipped.",
  "affected_release" : [ {
    "product_name" : "A-MQ Interconnect 1.y for RHEL 6",
    "release_date" : "2020-10-08T00:00:00Z",
    "advisory" : "RHSA-2020:4211",
    "cpe" : "cpe:/a:redhat:amq_interconnect:1::el6",
    "package" : "qpid-dispatch-0:1.13.0-3.el6_10"
  }, {
    "product_name" : "A-MQ Interconnect 1.y for RHEL 7",
    "release_date" : "2020-10-08T00:00:00Z",
    "advisory" : "RHSA-2020:4211",
    "cpe" : "cpe:/a:redhat:amq_interconnect:1::el7",
    "package" : "qpid-dispatch-0:1.13.0-3.el7"
  }, {
    "product_name" : "A-MQ Interconnect 1.y for RHEL 8",
    "release_date" : "2020-10-08T00:00:00Z",
    "advisory" : "RHSA-2020:4211",
    "cpe" : "cpe:/a:redhat:amq_interconnect:1::el8",
    "package" : "qpid-dispatch-0:1.13.0-3.el8"
  }, {
    "product_name" : "Discovery 1 for RHEL 9",
    "release_date" : "2025-02-10T00:00:00Z",
    "advisory" : "RHSA-2025:1249",
    "cpe" : "cpe:/o:redhat:discovery:1.0::el9",
    "package" : "discovery/discovery-server-rhel9:1.12.0-1"
  }, {
    "product_name" : "Discovery 1 for RHEL 9",
    "release_date" : "2025-02-10T00:00:00Z",
    "advisory" : "RHSA-2025:1249",
    "cpe" : "cpe:/o:redhat:discovery:1.0::el9",
    "package" : "discovery/discovery-ui-rhel9:1.12.0-1"
  }, {
    "product_name" : "Openshift Service Mesh 1.1",
    "release_date" : "2020-08-06T00:00:00Z",
    "advisory" : "RHSA-2020:3369",
    "cpe" : "cpe:/a:redhat:service_mesh:1.1::el7",
    "package" : "kiali-0:v1.12.10.redhat2-1.el7"
  }, {
    "product_name" : "OpenShift Service Mesh 1.1",
    "release_date" : "2020-08-06T00:00:00Z",
    "advisory" : "RHSA-2020:3369",
    "cpe" : "cpe:/a:redhat:service_mesh:1.1::el8",
    "package" : "ior-0:1.1.6-1.el8"
  }, {
    "product_name" : "OpenShift Service Mesh 1.1",
    "release_date" : "2020-08-06T00:00:00Z",
    "advisory" : "RHSA-2020:3369",
    "cpe" : "cpe:/a:redhat:service_mesh:1.1::el8",
    "package" : "servicemesh-0:1.1.6-1.el8"
  }, {
    "product_name" : "OpenShift Service Mesh 1.1",
    "release_date" : "2020-08-06T00:00:00Z",
    "advisory" : "RHSA-2020:3369",
    "cpe" : "cpe:/a:redhat:service_mesh:1.1::el8",
    "package" : "servicemesh-cni-0:1.1.6-1.el8"
  }, {
    "product_name" : "OpenShift Service Mesh 1.1",
    "release_date" : "2020-08-06T00:00:00Z",
    "advisory" : "RHSA-2020:3369",
    "cpe" : "cpe:/a:redhat:service_mesh:1.1::el8",
    "package" : "servicemesh-grafana-0:6.4.3-13.el8"
  }, {
    "product_name" : "OpenShift Service Mesh 1.1",
    "release_date" : "2020-08-06T00:00:00Z",
    "advisory" : "RHSA-2020:3369",
    "cpe" : "cpe:/a:redhat:service_mesh:1.1::el8",
    "package" : "servicemesh-operator-0:1.1.6-2.el8"
  }, {
    "product_name" : "OpenShift Service Mesh 1.1",
    "release_date" : "2020-08-06T00:00:00Z",
    "advisory" : "RHSA-2020:3369",
    "cpe" : "cpe:/a:redhat:service_mesh:1.1::el8",
    "package" : "servicemesh-prometheus-0:2.14.0-14.el8"
  }, {
    "product_name" : "Red Hat Ansible Tower 3.6 for RHEL 7",
    "release_date" : "2021-03-09T00:00:00Z",
    "advisory" : "RHSA-2021:0778",
    "cpe" : "cpe:/a:redhat:ansible_tower:3.6::el7",
    "package" : "ansible-tower-36/ansible-tower:3.6.7-1"
  }, {
    "product_name" : "Red Hat Ansible Tower 3.7 for RHEL 7",
    "release_date" : "2020-11-30T00:00:00Z",
    "advisory" : "RHSA-2020:5249",
    "cpe" : "cpe:/a:redhat:ansible_tower:3.7::el7",
    "package" : "ansible-tower-37/ansible-tower-rhel7:3.7.4-1"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "release_date" : "2021-03-16T00:00:00Z",
    "advisory" : "RHSA-2021:0851",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7",
    "package" : "pki-core-0:10.5.18-12.el7_9"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "release_date" : "2021-03-16T00:00:00Z",
    "advisory" : "RHSA-2021:0860",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7",
    "package" : "ipa-0:4.6.8-5.el7_9.4"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "release_date" : "2022-11-02T00:00:00Z",
    "advisory" : "RHSA-2022:7343",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7",
    "package" : "pcs-0:0.9.169-3.el7_9.3",
    "impact" : "low"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7.7 Advanced Update Support",
    "release_date" : "2025-02-10T00:00:00Z",
    "advisory" : "RHSA-2025:1256",
    "cpe" : "cpe:/o:redhat:rhel_aus:7.7",
    "package" : "doxygen-1:1.8.5-3.el7_7.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7.7 Advanced Update Support",
    "release_date" : "2025-02-17T00:00:00Z",
    "advisory" : "RHSA-2025:1514",
    "cpe" : "cpe:/o:redhat:rhel_aus:7.7",
    "package" : "ipa-0:4.6.5-11.el7_7.5"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7.7 Advanced Update Support",
    "release_date" : "2025-02-17T00:00:00Z",
    "advisory" : "RHSA-2025:1580",
    "cpe" : "cpe:/o:redhat:rhel_aus:7.7",
    "package" : "gcc-0:4.8.5-40.el7_7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7.7 Advanced Update Support",
    "release_date" : "2025-03-06T00:00:00Z",
    "advisory" : "RHSA-2025:2426",
    "cpe" : "cpe:/o:redhat:rhel_aus:7.7",
    "package" : "pki-core-0:10.5.16-8.el7_7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7 Extended Lifecycle Support",
    "release_date" : "2025-02-10T00:00:00Z",
    "advisory" : "RHSA-2025:1255",
    "cpe" : "cpe:/o:redhat:rhel_els:7",
    "package" : "doxygen-1:1.8.5-4.el7_9.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7 Extended Lifecycle Support",
    "release_date" : "2025-02-17T00:00:00Z",
    "advisory" : "RHSA-2025:1601",
    "cpe" : "cpe:/o:redhat:rhel_els:7",
    "package" : "gcc-0:4.8.5-45.el7_9"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "release_date" : "2020-11-04T00:00:00Z",
    "advisory" : "RHSA-2020:4847",
    "cpe" : "cpe:/a:redhat:enterprise_linux:8",
    "package" : "pki-core:10.6-8030020200911215836.5ff1562f"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "release_date" : "2020-11-04T00:00:00Z",
    "advisory" : "RHSA-2020:4847",
    "cpe" : "cpe:/a:redhat:enterprise_linux:8",
    "package" : "pki-deps:10.6-8030020200527165326.30b713e6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "release_date" : "2021-05-18T00:00:00Z",
    "advisory" : "RHSA-2021:1846",
    "cpe" : "cpe:/a:redhat:enterprise_linux:8",
    "package" : "idm:client-8040020210319141812.479738cf"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "release_date" : "2021-05-18T00:00:00Z",
    "advisory" : "RHSA-2021:1846",
    "cpe" : "cpe:/a:redhat:enterprise_linux:8",
    "package" : "idm:DL1-8040020210319141752.1f8cbe47"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "release_date" : "2025-02-10T00:00:00Z",
    "advisory" : "RHSA-2025:1215",
    "cpe" : "cpe:/a:redhat:enterprise_linux:8",
    "package" : "tbb-0:2018.2-10.el8_10.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "release_date" : "2025-02-11T00:00:00Z",
    "advisory" : "RHSA-2025:1301",
    "cpe" : "cpe:/a:redhat:enterprise_linux:8",
    "package" : "gcc-0:8.5.0-23.el8_10"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "release_date" : "2025-02-11T00:00:00Z",
    "advisory" : "RHSA-2025:1306",
    "cpe" : "cpe:/a:redhat:enterprise_linux:8",
    "package" : "gcc-toolset-13-gcc-0:13.3.1-2.2.el8_10"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "release_date" : "2025-02-12T00:00:00Z",
    "advisory" : "RHSA-2025:1338",
    "cpe" : "cpe:/a:redhat:enterprise_linux:8",
    "package" : "gcc-toolset-14-gcc-0:14.2.1-7.1.el8_10"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "release_date" : "2025-02-11T00:00:00Z",
    "advisory" : "RHSA-2025:1314",
    "cpe" : "cpe:/a:redhat:enterprise_linux:8::crb",
    "package" : "doxygen-1:1.8.14-13.el8_10"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "release_date" : "2021-11-09T00:00:00Z",
    "advisory" : "RHSA-2021:4142",
    "cpe" : "cpe:/a:redhat:enterprise_linux:8::highavailability",
    "package" : "pcs-0:0.10.10-4.el8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "release_date" : "2025-02-11T00:00:00Z",
    "advisory" : "RHSA-2025:1301",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8",
    "package" : "gcc-0:8.5.0-23.el8_10"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8.2 Advanced Update Support",
    "release_date" : "2025-02-10T00:00:00Z",
    "advisory" : "RHSA-2025:1217",
    "cpe" : "cpe:/a:redhat:rhel_aus:8.2",
    "package" : "tbb-0:2018.2-9.el8_2.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8.2 Advanced Update Support",
    "release_date" : "2025-02-11T00:00:00Z",
    "advisory" : "RHSA-2025:1310",
    "cpe" : "cpe:/a:redhat:rhel_aus:8.2",
    "package" : "gcc-0:8.3.1-8.el8_2"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8.2 Advanced Update Support",
    "release_date" : "2025-02-17T00:00:00Z",
    "advisory" : "RHSA-2025:1515",
    "cpe" : "cpe:/a:redhat:rhel_aus:8.2",
    "package" : "idm:DL1-8020020250212111622.792f4060"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support",
    "release_date" : "2025-02-10T00:00:00Z",
    "advisory" : "RHSA-2025:1212",
    "cpe" : "cpe:/a:redhat:rhel_aus:8.4",
    "package" : "tbb-0:2018.2-10.el8_4.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support",
    "release_date" : "2025-02-11T00:00:00Z",
    "advisory" : "RHSA-2025:1312",
    "cpe" : "cpe:/a:redhat:rhel_aus:8.4",
    "package" : "gcc-0:8.4.1-1.4.el8_4"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8.4 Telecommunications Update Service",
    "release_date" : "2025-02-10T00:00:00Z",
    "advisory" : "RHSA-2025:1212",
    "cpe" : "cpe:/a:redhat:rhel_tus:8.4",
    "package" : "tbb-0:2018.2-10.el8_4.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8.4 Telecommunications Update Service",
    "release_date" : "2025-02-11T00:00:00Z",
    "advisory" : "RHSA-2025:1312",
    "cpe" : "cpe:/a:redhat:rhel_tus:8.4",
    "package" : "gcc-0:8.4.1-1.4.el8_4"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions",
    "release_date" : "2025-02-10T00:00:00Z",
    "advisory" : "RHSA-2025:1212",
    "cpe" : "cpe:/a:redhat:rhel_e4s:8.4",
    "package" : "tbb-0:2018.2-10.el8_4.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions",
    "release_date" : "2025-02-11T00:00:00Z",
    "advisory" : "RHSA-2025:1312",
    "cpe" : "cpe:/a:redhat:rhel_e4s:8.4",
    "package" : "gcc-0:8.4.1-1.4.el8_4"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support",
    "release_date" : "2025-02-10T00:00:00Z",
    "advisory" : "RHSA-2025:1216",
    "cpe" : "cpe:/a:redhat:rhel_aus:8.6",
    "package" : "tbb-0:2018.2-10.el8_6.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support",
    "release_date" : "2025-02-11T00:00:00Z",
    "advisory" : "RHSA-2025:1308",
    "cpe" : "cpe:/a:redhat:rhel_aus:8.6",
    "package" : "gcc-0:8.5.0-10.4.el8_6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8.6 Telecommunications Update Service",
    "release_date" : "2025-02-10T00:00:00Z",
    "advisory" : "RHSA-2025:1216",
    "cpe" : "cpe:/a:redhat:rhel_tus:8.6",
    "package" : "tbb-0:2018.2-10.el8_6.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8.6 Telecommunications Update Service",
    "release_date" : "2025-02-11T00:00:00Z",
    "advisory" : "RHSA-2025:1308",
    "cpe" : "cpe:/a:redhat:rhel_tus:8.6",
    "package" : "gcc-0:8.5.0-10.4.el8_6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions",
    "release_date" : "2025-02-10T00:00:00Z",
    "advisory" : "RHSA-2025:1216",
    "cpe" : "cpe:/a:redhat:rhel_e4s:8.6",
    "package" : "tbb-0:2018.2-10.el8_6.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions",
    "release_date" : "2025-02-11T00:00:00Z",
    "advisory" : "RHSA-2025:1308",
    "cpe" : "cpe:/a:redhat:rhel_e4s:8.6",
    "package" : "gcc-0:8.5.0-10.4.el8_6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8.8 Extended Update Support",
    "release_date" : "2025-02-10T00:00:00Z",
    "advisory" : "RHSA-2025:1214",
    "cpe" : "cpe:/a:redhat:rhel_eus:8.8",
    "package" : "tbb-0:2018.2-10.el8_8.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8.8 Extended Update Support",
    "release_date" : "2025-02-11T00:00:00Z",
    "advisory" : "RHSA-2025:1311",
    "cpe" : "cpe:/a:redhat:rhel_eus:8.8",
    "package" : "gcc-0:8.5.0-18.3.el8_8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8.8 Extended Update Support",
    "release_date" : "2025-02-10T00:00:00Z",
    "advisory" : "RHSA-2025:1247",
    "cpe" : "cpe:/a:redhat:rhel_eus:8.8::crb",
    "package" : "doxygen-1:1.8.14-13.el8_8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "release_date" : "2025-02-10T00:00:00Z",
    "advisory" : "RHSA-2025:1210",
    "cpe" : "cpe:/a:redhat:enterprise_linux:9",
    "package" : "tbb-0:2020.3-8.el9_5.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "release_date" : "2025-02-11T00:00:00Z",
    "advisory" : "RHSA-2025:1300",
    "cpe" : "cpe:/a:redhat:enterprise_linux:9",
    "package" : "gcc-toolset-14-gcc-0:14.2.1-1.3.el9_5"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "release_date" : "2025-02-11T00:00:00Z",
    "advisory" : "RHSA-2025:1309",
    "cpe" : "cpe:/a:redhat:enterprise_linux:9",
    "package" : "gcc-toolset-13-gcc-0:13.3.1-2.2.el9_5"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "release_date" : "2025-02-12T00:00:00Z",
    "advisory" : "RHSA-2025:1346",
    "cpe" : "cpe:/a:redhat:enterprise_linux:9",
    "package" : "gcc-0:11.5.0-5.el9_5"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "release_date" : "2025-02-11T00:00:00Z",
    "advisory" : "RHSA-2025:1329",
    "cpe" : "cpe:/a:redhat:enterprise_linux:9::crb",
    "package" : "doxygen-1:1.9.1-12.el9_5"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "release_date" : "2025-02-12T00:00:00Z",
    "advisory" : "RHSA-2025:1346",
    "cpe" : "cpe:/o:redhat:enterprise_linux:9",
    "package" : "gcc-0:11.5.0-5.el9_5"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions",
    "release_date" : "2025-02-10T00:00:00Z",
    "advisory" : "RHSA-2025:1213",
    "cpe" : "cpe:/a:redhat:rhel_e4s:9.0",
    "package" : "tbb-0:2020.3-8.el9_0.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions",
    "release_date" : "2025-02-11T00:00:00Z",
    "advisory" : "RHSA-2025:1305",
    "cpe" : "cpe:/a:redhat:rhel_e4s:9.0",
    "package" : "gcc-0:11.2.1-9.5.el9_0"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9.2 Extended Update Support",
    "release_date" : "2025-02-10T00:00:00Z",
    "advisory" : "RHSA-2025:1209",
    "cpe" : "cpe:/a:redhat:rhel_eus:9.2",
    "package" : "tbb-0:2020.3-8.el9_2.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9.2 Extended Update Support",
    "release_date" : "2025-02-11T00:00:00Z",
    "advisory" : "RHSA-2025:1303",
    "cpe" : "cpe:/a:redhat:rhel_eus:9.2",
    "package" : "gcc-0:11.3.1-4.4.el9_2"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9.2 Extended Update Support",
    "release_date" : "2025-02-10T00:00:00Z",
    "advisory" : "RHSA-2025:1185",
    "cpe" : "cpe:/a:redhat:rhel_eus:9.2::crb",
    "package" : "doxygen-1:1.9.1-12.el9_2"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9.4 Extended Update Support",
    "release_date" : "2025-02-10T00:00:00Z",
    "advisory" : "RHSA-2025:1211",
    "cpe" : "cpe:/a:redhat:rhel_eus:9.4",
    "package" : "tbb-0:2020.3-8.el9_4.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9.4 Extended Update Support",
    "release_date" : "2025-02-11T00:00:00Z",
    "advisory" : "RHSA-2025:1304",
    "cpe" : "cpe:/a:redhat:rhel_eus:9.4",
    "package" : "gcc-0:11.4.1-4.el9_4"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9.4 Extended Update Support",
    "release_date" : "2025-02-12T00:00:00Z",
    "advisory" : "RHSA-2025:1342",
    "cpe" : "cpe:/a:redhat:rhel_eus:9.4",
    "package" : "gcc-toolset-13-gcc-0:13.3.1-2.2.el9_4"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9.4 Extended Update Support",
    "release_date" : "2025-02-11T00:00:00Z",
    "advisory" : "RHSA-2025:1315",
    "cpe" : "cpe:/a:redhat:rhel_eus:9.4::crb",
    "package" : "doxygen-1:1.9.1-12.el9_4"
  }, {
    "product_name" : "Red Hat JBoss Enterprise Application Platform 7",
    "release_date" : "2023-01-31T00:00:00Z",
    "advisory" : "RHSA-2023:0556",
    "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform:7.4",
    "package" : "jquery",
    "impact" : "low"
  }, {
    "product_name" : "Red Hat JBoss Enterprise Application Platform 7.4 for RHEL 8",
    "release_date" : "2023-01-31T00:00:00Z",
    "advisory" : "RHSA-2023:0553",
    "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8",
    "package" : "eap7-hal-console-0:3.3.16-1.Final_redhat_00001.1.el8eap",
    "impact" : "low"
  }, {
    "product_name" : "Red Hat JBoss Enterprise Application Platform 7.4 for RHEL 9",
    "release_date" : "2023-01-31T00:00:00Z",
    "advisory" : "RHSA-2023:0554",
    "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9",
    "package" : "eap7-hal-console-0:3.3.16-1.Final_redhat_00001.1.el9eap",
    "impact" : "low"
  }, {
    "product_name" : "Red Hat JBoss Enterprise Application Platform 7.4 on RHEL 7",
    "release_date" : "2023-01-31T00:00:00Z",
    "advisory" : "RHSA-2023:0552",
    "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7",
    "package" : "eap7-hal-console-0:3.3.16-1.Final_redhat_00001.1.el7eap",
    "impact" : "low"
  }, {
    "product_name" : "Red Hat OpenShift Container Platform 4.5",
    "release_date" : "2020-07-13T00:00:00Z",
    "advisory" : "RHSA-2020:2412",
    "cpe" : "cpe:/a:redhat:openshift:4.5::el7",
    "package" : "openshift4/ose-console:v4.5.0-202007012112.p0"
  }, {
    "product_name" : "Red Hat OpenShift Container Platform 4.6",
    "release_date" : "2020-10-27T00:00:00Z",
    "advisory" : "RHSA-2020:4298",
    "cpe" : "cpe:/a:redhat:openshift:4.6::el8",
    "package" : "openshift4/ose-grafana:v4.6.0-202010061132.p0"
  }, {
    "product_name" : "Red Hat OpenShift Container Platform 4.6",
    "release_date" : "2020-10-27T00:00:00Z",
    "advisory" : "RHSA-2020:4298",
    "cpe" : "cpe:/a:redhat:openshift:4.6::el8",
    "package" : "openshift4/ose-prometheus:v4.6.0-202009290409.p0"
  }, {
    "product_name" : "Red Hat OpenStack Platform 16.1",
    "release_date" : "2020-12-15T00:00:00Z",
    "advisory" : "RHSA-2020:5412",
    "cpe" : "cpe:/a:redhat:openstack:16.1::el8",
    "package" : "python-XStatic-jQuery224-0:2.2.4.1-3.el8ost"
  }, {
    "product_name" : "Red Hat OpenStack Platform 16.2",
    "release_date" : "2025-02-05T00:00:00Z",
    "advisory" : "RHSA-2025:1070",
    "cpe" : "cpe:/a:redhat:openstack:16.2::el8",
    "package" : "python-django20-0:2.0.13-19.el8ost"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1079",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/clair-rhel8:v3.13.4-2"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1079",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-bridge-operator-bundle:v3.13.4-2"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1079",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-bridge-operator-rhel8:v3.13.4-1"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1079",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-builder-qemu-rhcos-rhel8:v3.13.4-1"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1079",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-builder-rhel8:v3.13.4-2"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1079",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-container-security-operator-bundle:v3.13.4-1"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1079",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-container-security-operator-rhel8:v3.13.4-1"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1079",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-operator-bundle:v3.13.4-9"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1079",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-operator-rhel8:v3.13.4-3"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1079",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-rhel8:v3.13.4-6"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1597",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/clair-rhel8:v3.9.10-3"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1597",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-bridge-operator-bundle:v3.9.10-7"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1597",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-bridge-operator-rhel8:v3.9.10-3"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1597",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-builder-qemu-rhcos-rhel8:v3.9.10-4"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1597",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-builder-rhel8:v3.9.10-7"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1597",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-container-security-operator-bundle:v3.9.10-2"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1597",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-container-security-operator-rhel8:v3.9.10-2"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1597",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-operator-bundle:v3.9.10-16"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1597",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-operator-rhel8:v3.9.10-2"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1597",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-rhel8:v3.9.10-7"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1598",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/clair-rhel8:v3.12.8-1"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1598",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-bridge-operator-bundle:v3.12.8-3"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1598",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-bridge-operator-rhel8:v3.12.8-1"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1598",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-builder-qemu-rhcos-rhel8:v3.12.8-1"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1598",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-builder-rhel8:v3.12.8-2"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1598",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-container-security-operator-bundle:v3.12.8-1"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1598",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-container-security-operator-rhel8:v3.12.8-1"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1598",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-operator-bundle:v3.12.8-4"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1598",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-operator-rhel8:v3.12.8-2"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1598",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-rhel8:v3.12.8-2"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1599",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/clair-rhel8:v3.11.9-1"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1599",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-bridge-operator-bundle:v3.11.9-2"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1599",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-bridge-operator-rhel8:v3.11.9-1"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1599",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-builder-qemu-rhcos-rhel8:v3.11.9-1"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1599",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-builder-rhel8:v3.11.9-3"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1599",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-container-security-operator-bundle:v3.11.9-1"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1599",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-container-security-operator-rhel8:v3.11.9-1"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1599",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-operator-bundle:v3.11.9-8"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1599",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-operator-rhel8:v3.11.9-1"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1599",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-rhel8:v3.11.9-5"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1600",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/clair-rhel8:v3.10.9-1"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1600",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-bridge-operator-bundle:v3.10.9-1"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1600",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-bridge-operator-rhel8:v3.10.9-1"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1600",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-builder-qemu-rhcos-rhel8:v3.10.9-1"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1600",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-builder-rhel8:v3.10.9-2"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1600",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-container-security-operator-bundle:v3.10.9-1"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1600",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-container-security-operator-rhel8:v3.10.9-1"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1600",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-operator-bundle:v3.10.9-4"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1600",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-operator-rhel8:v3.10.9-1"
  }, {
    "product_name" : "Red Hat Quay 3",
    "release_date" : "2025-02-24T00:00:00Z",
    "advisory" : "RHBA-2025:1600",
    "cpe" : "cpe:/a:redhat:quay:3::el8",
    "package" : "quay/quay-rhel8:v3.10.9-2"
  }, {
    "product_name" : "Red Hat Single Sign-On 7",
    "release_date" : "2023-03-01T00:00:00Z",
    "advisory" : "RHSA-2023:1049",
    "cpe" : "cpe:/a:redhat:red_hat_single_sign_on:7.6",
    "package" : "keycloak-idp-jquery"
  }, {
    "product_name" : "Red Hat Single Sign-On 7.4.1",
    "release_date" : "2020-07-02T00:00:00Z",
    "advisory" : "RHSA-2020:2813",
    "cpe" : "cpe:/a:redhat:jboss_single_sign_on:7.4",
    "package" : "rh-sso7-keycloak"
  }, {
    "product_name" : "Red Hat Single Sign-On 7.6 for RHEL 7",
    "release_date" : "2023-03-01T00:00:00Z",
    "advisory" : "RHSA-2023:1043",
    "cpe" : "cpe:/a:redhat:red_hat_single_sign_on:7.6::el7",
    "package" : "rh-sso7-keycloak-0:18.0.6-1.redhat_00001.1.el7sso"
  }, {
    "product_name" : "Red Hat Single Sign-On 7.6 for RHEL 8",
    "release_date" : "2023-03-01T00:00:00Z",
    "advisory" : "RHSA-2023:1044",
    "cpe" : "cpe:/a:redhat:red_hat_single_sign_on:7.6::el8",
    "package" : "rh-sso7-keycloak-0:18.0.6-1.redhat_00001.1.el8sso"
  }, {
    "product_name" : "Red Hat Single Sign-On 7.6 for RHEL 9",
    "release_date" : "2023-03-01T00:00:00Z",
    "advisory" : "RHSA-2023:1045",
    "cpe" : "cpe:/a:redhat:red_hat_single_sign_on:7.6::el9",
    "package" : "rh-sso7-keycloak-0:18.0.6-1.redhat_00001.1.el9sso"
  }, {
    "product_name" : "Red Hat Virtualization Engine 4.4",
    "release_date" : "2020-08-04T00:00:00Z",
    "advisory" : "RHSA-2020:3247",
    "cpe" : "cpe:/a:redhat:rhev_manager:4.4:el8",
    "package" : "ovirt-engine-ui-extensions-0:1.2.2-1.el8ev"
  }, {
    "product_name" : "Red Hat Virtualization Engine 4.4",
    "release_date" : "2020-09-23T00:00:00Z",
    "advisory" : "RHSA-2020:3807",
    "cpe" : "cpe:/a:redhat:rhev_manager:4.4:el8",
    "package" : "ovirt-web-ui-0:1.6.4-1.el8ev"
  }, {
    "product_name" : "Red Hat Virtualization Engine 4.4",
    "release_date" : "2022-09-08T00:00:00Z",
    "advisory" : "RHSA-2022:6393",
    "cpe" : "cpe:/a:redhat:rhev_manager:4.4:el8",
    "package" : "org.ovirt.engine-root-0:4.5.2.4-1"
  }, {
    "product_name" : "RHOL-5.8-RHEL-8",
    "release_date" : "2025-03-05T00:00:00Z",
    "advisory" : "RHSA-2025:1983",
    "cpe" : "cpe:/a:redhat:logging:5.8::el8",
    "package" : "openshift-logging/kibana6-rhel8:v6.8.1-479"
  } ],
  "package_state" : [ {
    "product_name" : "CloudForms Management Engine 5",
    "fix_state" : "Out of support scope",
    "package_name" : "cfme-gemset",
    "cpe" : "cpe:/a:redhat:cloudforms_managementengine:5"
  }, {
    "product_name" : "Red Hat 3scale API Management Platform 2",
    "fix_state" : "Not affected",
    "package_name" : "jquery",
    "cpe" : "cpe:/a:redhat:red_hat_3scale_amp:2"
  }, {
    "product_name" : "Red Hat build of Apache Camel for Spring Boot 4",
    "fix_state" : "Not affected",
    "package_name" : "org.webjars/jquery",
    "cpe" : "cpe:/a:redhat:camel_spring_boot:4"
  }, {
    "product_name" : "Red Hat build of Apache Camel - HawtIO 4",
    "fix_state" : "Not affected",
    "package_name" : "io.hawt-project",
    "cpe" : "cpe:/a:redhat:apache_camel_hawtio:4"
  }, {
    "product_name" : "Red Hat Build of Keycloak",
    "fix_state" : "Not affected",
    "package_name" : "org.keycloak-keycloak-parent",
    "cpe" : "cpe:/a:redhat:build_keycloak:"
  }, {
    "product_name" : "Red Hat build of OptaPlanner 8",
    "fix_state" : "Not affected",
    "package_name" : "org.webjars/jquery",
    "cpe" : "cpe:/a:redhat:optaplanner:::el6"
  }, {
    "product_name" : "Red Hat Ceph Storage 3",
    "fix_state" : "Out of support scope",
    "package_name" : "grafana",
    "cpe" : "cpe:/a:redhat:ceph_storage:3"
  }, {
    "product_name" : "Red Hat Ceph Storage 3",
    "fix_state" : "Out of support scope",
    "package_name" : "grafana-container",
    "cpe" : "cpe:/a:redhat:ceph_storage:3"
  }, {
    "product_name" : "Red Hat Ceph Storage 4",
    "fix_state" : "Out of support scope",
    "package_name" : "rhceph/rhceph-4-dashboard-rhel8",
    "cpe" : "cpe:/a:redhat:ceph_storage:4"
  }, {
    "product_name" : "Red Hat Certificate System 10",
    "fix_state" : "Not affected",
    "package_name" : "redhat-pki:10/redhat-pki",
    "cpe" : "cpe:/a:redhat:certificate_system:10"
  }, {
    "product_name" : "Red Hat Certification for Red Hat Enterprise Linux 7",
    "fix_state" : "Not affected",
    "package_name" : "python-testtools",
    "cpe" : "cpe:/a:redhat:certifications:1::el7"
  }, {
    "product_name" : "Red Hat Certification for Red Hat Enterprise Linux 7",
    "fix_state" : "Not affected",
    "package_name" : "redhat-certification",
    "cpe" : "cpe:/a:redhat:certifications:1::el7"
  }, {
    "product_name" : "Red Hat Data Grid 8",
    "fix_state" : "Not affected",
    "package_name" : "org.webjars/jquery",
    "cpe" : "cpe:/a:redhat:jboss_data_grid:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 10",
    "fix_state" : "Not affected",
    "package_name" : "cockpit-session-recording",
    "cpe" : "cpe:/o:redhat:enterprise_linux:10"
  }, {
    "product_name" : "Red Hat Enterprise Linux 10",
    "fix_state" : "Not affected",
    "package_name" : "dogtag-pki",
    "cpe" : "cpe:/o:redhat:enterprise_linux:10"
  }, {
    "product_name" : "Red Hat Enterprise Linux 10",
    "fix_state" : "Not affected",
    "package_name" : "doxygen",
    "cpe" : "cpe:/o:redhat:enterprise_linux:10"
  }, {
    "product_name" : "Red Hat Enterprise Linux 10",
    "fix_state" : "Not affected",
    "package_name" : "gcc",
    "cpe" : "cpe:/o:redhat:enterprise_linux:10"
  }, {
    "product_name" : "Red Hat Enterprise Linux 10",
    "fix_state" : "Not affected",
    "package_name" : "gjs",
    "cpe" : "cpe:/o:redhat:enterprise_linux:10"
  }, {
    "product_name" : "Red Hat Enterprise Linux 10",
    "fix_state" : "Not affected",
    "package_name" : "grafana",
    "cpe" : "cpe:/o:redhat:enterprise_linux:10"
  }, {
    "product_name" : "Red Hat Enterprise Linux 10",
    "fix_state" : "Not affected",
    "package_name" : "mingw-gcc",
    "cpe" : "cpe:/o:redhat:enterprise_linux:10"
  }, {
    "product_name" : "Red Hat Enterprise Linux 10",
    "fix_state" : "Not affected",
    "package_name" : "mpdecimal",
    "cpe" : "cpe:/o:redhat:enterprise_linux:10"
  }, {
    "product_name" : "Red Hat Enterprise Linux 6",
    "fix_state" : "Out of support scope",
    "package_name" : "compat-gcc-295",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 6",
    "fix_state" : "Out of support scope",
    "package_name" : "compat-gcc-296",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 6",
    "fix_state" : "Out of support scope",
    "package_name" : "compat-gcc-32",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 6",
    "fix_state" : "Out of support scope",
    "package_name" : "compat-gcc-34",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 6",
    "fix_state" : "Not affected",
    "package_name" : "doxygen",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 6",
    "fix_state" : "Out of support scope",
    "package_name" : "gcc",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 6",
    "fix_state" : "Out of support scope",
    "package_name" : "ipa",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 6",
    "fix_state" : "Out of support scope",
    "package_name" : "pcp",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 6",
    "fix_state" : "Out of support scope",
    "package_name" : "pcs",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 6",
    "fix_state" : "Out of support scope",
    "package_name" : "python-coverage",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 6",
    "fix_state" : "Out of support scope",
    "package_name" : "python-weberror",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "fix_state" : "Not affected",
    "package_name" : "cockpit",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "fix_state" : "Not affected",
    "package_name" : "compat-gcc-32",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "fix_state" : "Not affected",
    "package_name" : "compat-gcc-34",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "fix_state" : "Not affected",
    "package_name" : "compat-gcc-44",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "fix_state" : "Not affected",
    "package_name" : "pcp",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "fix_state" : "Out of support scope",
    "package_name" : "publican",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "fix_state" : "Not affected",
    "package_name" : "python-coverage",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "cmake",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "cockpit",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "cockpit-appstream",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "cockpit-composer",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "cockpit-session-recording",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "grafana",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "llvm",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "mingw-gcc",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "mozjs60",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "mpdecimal",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "python-coverage",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "python-docs",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "python-jinja2",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "python-pygments",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "python-sphinx",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "python-sqlalchemy",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "python-virtualenv",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "fix_state" : "Not affected",
    "package_name" : "cockpit-composer",
    "cpe" : "cpe:/o:redhat:enterprise_linux:9"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "fix_state" : "Not affected",
    "package_name" : "cockpit-session-recording",
    "cpe" : "cpe:/o:redhat:enterprise_linux:9"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "fix_state" : "Not affected",
    "package_name" : "gjs",
    "cpe" : "cpe:/o:redhat:enterprise_linux:9"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "fix_state" : "Not affected",
    "package_name" : "grafana",
    "cpe" : "cpe:/o:redhat:enterprise_linux:9"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "fix_state" : "Not affected",
    "package_name" : "mingw-gcc",
    "cpe" : "cpe:/o:redhat:enterprise_linux:9"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "fix_state" : "Not affected",
    "package_name" : "mpdecimal",
    "cpe" : "cpe:/o:redhat:enterprise_linux:9"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "fix_state" : "Not affected",
    "package_name" : "pcs",
    "cpe" : "cpe:/o:redhat:enterprise_linux:9"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "fix_state" : "Not affected",
    "package_name" : "pki-core",
    "cpe" : "cpe:/o:redhat:enterprise_linux:9"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "fix_state" : "Not affected",
    "package_name" : "polkit",
    "cpe" : "cpe:/o:redhat:enterprise_linux:9"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "fix_state" : "Not affected",
    "package_name" : "python-sphinx",
    "cpe" : "cpe:/o:redhat:enterprise_linux:9"
  }, {
    "product_name" : "Red Hat Fuse 7",
    "fix_state" : "Out of support scope",
    "package_name" : "io.apicurio-apicurito",
    "cpe" : "cpe:/a:redhat:jboss_fuse:7"
  }, {
    "product_name" : "Red Hat Fuse 7",
    "fix_state" : "Out of support scope",
    "package_name" : "io.hawt-hawtio-integration",
    "cpe" : "cpe:/a:redhat:jboss_fuse:7"
  }, {
    "product_name" : "Red Hat Fuse 7",
    "fix_state" : "Out of support scope",
    "package_name" : "io.hawt-hawtio-online",
    "cpe" : "cpe:/a:redhat:jboss_fuse:7"
  }, {
    "product_name" : "Red Hat Fuse 7",
    "fix_state" : "Out of support scope",
    "package_name" : "io.hawt-project",
    "cpe" : "cpe:/a:redhat:jboss_fuse:7"
  }, {
    "product_name" : "Red Hat Fuse 7",
    "fix_state" : "Out of support scope",
    "package_name" : "io.syndesis-syndesis-parent",
    "cpe" : "cpe:/a:redhat:jboss_fuse:7"
  }, {
    "product_name" : "Red Hat Fuse 7",
    "fix_state" : "Out of support scope",
    "package_name" : "io.syndesis-syndesis-ui",
    "cpe" : "cpe:/a:redhat:jboss_fuse:7"
  }, {
    "product_name" : "Red Hat Fuse 7",
    "fix_state" : "Out of support scope",
    "package_name" : "jquery",
    "cpe" : "cpe:/a:redhat:jboss_fuse:7"
  }, {
    "product_name" : "Red Hat JBoss Data Grid 7",
    "fix_state" : "Out of support scope",
    "package_name" : "org.infinispan-infinispan-management-console",
    "cpe" : "cpe:/a:redhat:jboss_data_grid:7"
  }, {
    "product_name" : "Red Hat JBoss Data Grid 7",
    "fix_state" : "Out of support scope",
    "package_name" : "org.jboss.hal-hal-parent",
    "cpe" : "cpe:/a:redhat:jboss_data_grid:7"
  }, {
    "product_name" : "Red Hat JBoss Data Grid 7",
    "fix_state" : "Out of support scope",
    "package_name" : "org.webjars/jquery",
    "cpe" : "cpe:/a:redhat:jboss_data_grid:7"
  }, {
    "product_name" : "Red Hat JBoss Enterprise Application Platform 7",
    "fix_state" : "Not affected",
    "package_name" : "io.hawt-project",
    "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform:7"
  }, {
    "product_name" : "Red Hat JBoss Enterprise Application Platform 7",
    "fix_state" : "Not affected",
    "package_name" : "org.jboss.hal-hal-parent",
    "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform:7"
  }, {
    "product_name" : "Red Hat JBoss Enterprise Application Platform 7",
    "fix_state" : "Not affected",
    "package_name" : "org.webjars/jquery",
    "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform:7"
  }, {
    "product_name" : "Red Hat JBoss Enterprise Application Platform 8",
    "fix_state" : "Not affected",
    "package_name" : "io.hawt-project",
    "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform:8"
  }, {
    "product_name" : "Red Hat JBoss Enterprise Application Platform 8",
    "fix_state" : "Not affected",
    "package_name" : "org.jboss.hal-hal-parent",
    "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform:8"
  }, {
    "product_name" : "Red Hat JBoss Enterprise Application Platform 8",
    "fix_state" : "Not affected",
    "package_name" : "org.keycloak-keycloak-parent",
    "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform:8"
  }, {
    "product_name" : "Red Hat JBoss Enterprise Application Platform 8",
    "fix_state" : "Not affected",
    "package_name" : "org.webjars/jquery",
    "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform:8"
  }, {
    "product_name" : "Red Hat JBoss Enterprise Application Platform Expansion Pack",
    "fix_state" : "Not affected",
    "package_name" : "io.hawt-project",
    "cpe" : "cpe:/a:redhat:jbosseapxp"
  }, {
    "product_name" : "Red Hat JBoss Enterprise Application Platform Expansion Pack",
    "fix_state" : "Not affected",
    "package_name" : "org.jboss.hal-hal-parent",
    "cpe" : "cpe:/a:redhat:jbosseapxp"
  }, {
    "product_name" : "Red Hat JBoss Enterprise Application Platform Expansion Pack",
    "fix_state" : "Not affected",
    "package_name" : "org.keycloak-keycloak-parent",
    "cpe" : "cpe:/a:redhat:jbosseapxp"
  }, {
    "product_name" : "Red Hat JBoss Enterprise Application Platform Expansion Pack",
    "fix_state" : "Not affected",
    "package_name" : "org.webjars/jquery",
    "cpe" : "cpe:/a:redhat:jbosseapxp"
  }, {
    "product_name" : "Red Hat OpenShift Container Platform 3.11",
    "fix_state" : "Not affected",
    "package_name" : "atomic-openshift-web-console",
    "cpe" : "cpe:/a:redhat:openshift:3.11"
  }, {
    "product_name" : "Red Hat OpenShift Container Platform 3.11",
    "fix_state" : "Out of support scope",
    "package_name" : "openshift3/grafana",
    "cpe" : "cpe:/a:redhat:openshift:3.11"
  }, {
    "product_name" : "Red Hat OpenShift Container Platform 4",
    "fix_state" : "Not affected",
    "package_name" : "python-coverage",
    "cpe" : "cpe:/a:redhat:openshift:4"
  }, {
    "product_name" : "Red Hat OpenShift Container Platform 4",
    "fix_state" : "Not affected",
    "package_name" : "python-testtools",
    "cpe" : "cpe:/a:redhat:openshift:4"
  }, {
    "product_name" : "Red Hat OpenShift Container Platform 4",
    "fix_state" : "Not affected",
    "package_name" : "rhcos",
    "cpe" : "cpe:/a:redhat:openshift:4"
  }, {
    "product_name" : "Red Hat OpenStack Platform 10 (Newton)",
    "fix_state" : "Not affected",
    "package_name" : "python-XStatic-jQuery",
    "cpe" : "cpe:/a:redhat:openstack:10"
  }, {
    "product_name" : "Red Hat OpenStack Platform 13 (Queens)",
    "fix_state" : "Not affected",
    "package_name" : "python-XStatic-jQuery",
    "cpe" : "cpe:/a:redhat:openstack:13"
  }, {
    "product_name" : "Red Hat OpenStack Platform 15 (Stein)",
    "fix_state" : "Out of support scope",
    "package_name" : "python-XStatic-jQuery",
    "cpe" : "cpe:/a:redhat:openstack:15"
  }, {
    "product_name" : "Red Hat OpenStack Platform 16.2",
    "fix_state" : "Not affected",
    "package_name" : "qpid-dispatch",
    "cpe" : "cpe:/a:redhat:openstack:16.2"
  }, {
    "product_name" : "Red Hat OpenStack Platform 17.1",
    "fix_state" : "Not affected",
    "package_name" : "python-django",
    "cpe" : "cpe:/a:redhat:openstack:17.1"
  }, {
    "product_name" : "Red Hat OpenStack Platform 17.1",
    "fix_state" : "Not affected",
    "package_name" : "python-pygraphviz",
    "cpe" : "cpe:/a:redhat:openstack:17.1"
  }, {
    "product_name" : "Red Hat OpenStack Platform 17.1",
    "fix_state" : "Not affected",
    "package_name" : "python-testtools",
    "cpe" : "cpe:/a:redhat:openstack:17.1"
  }, {
    "product_name" : "Red Hat OpenStack Platform 18.0",
    "fix_state" : "Not affected",
    "package_name" : "python-django",
    "cpe" : "cpe:/a:redhat:openstack:18.0"
  }, {
    "product_name" : "Red Hat OpenStack Platform 18.0",
    "fix_state" : "Not affected",
    "package_name" : "python-testtools",
    "cpe" : "cpe:/a:redhat:openstack:18.0"
  }, {
    "product_name" : "Red Hat Process Automation 7",
    "fix_state" : "Not affected",
    "package_name" : "org.kie-process-migration-service",
    "cpe" : "cpe:/a:redhat:jboss_enterprise_bpms_platform:7"
  }, {
    "product_name" : "Red Hat Process Automation 7",
    "fix_state" : "Not affected",
    "package_name" : "org.webjars/jquery",
    "cpe" : "cpe:/a:redhat:jboss_enterprise_bpms_platform:7"
  }, {
    "product_name" : "Red Hat Single Sign-On 7",
    "fix_state" : "Not affected",
    "package_name" : "org.keycloak-keycloak-parent",
    "cpe" : "cpe:/a:redhat:red_hat_single_sign_on:7"
  }, {
    "product_name" : "Red Hat Software Collections",
    "fix_state" : "Out of support scope",
    "package_name" : "python27-python-coverage",
    "cpe" : "cpe:/a:redhat:rhel_software_collections:3"
  }, {
    "product_name" : "Red Hat Software Collections",
    "fix_state" : "Out of support scope",
    "package_name" : "python27-python-werkzeug",
    "cpe" : "cpe:/a:redhat:rhel_software_collections:3"
  }, {
    "product_name" : "Red Hat Software Collections",
    "fix_state" : "Out of support scope",
    "package_name" : "rh-python35-python-coverage",
    "cpe" : "cpe:/a:redhat:rhel_software_collections:3"
  }, {
    "product_name" : "Red Hat Software Collections",
    "fix_state" : "Out of support scope",
    "package_name" : "rh-python36-python-coverage",
    "cpe" : "cpe:/a:redhat:rhel_software_collections:3"
  }, {
    "product_name" : "Red Hat Software Collections",
    "fix_state" : "Out of support scope",
    "package_name" : "rh-ror42-rubygem-jquery-rails",
    "cpe" : "cpe:/a:redhat:rhel_software_collections:3"
  }, {
    "product_name" : "Red Hat Software Collections",
    "fix_state" : "Out of support scope",
    "package_name" : "rh-ror50-rubygem-jquery-rails",
    "cpe" : "cpe:/a:redhat:rhel_software_collections:3"
  }, {
    "product_name" : "Red Hat Storage 3",
    "fix_state" : "Out of support scope",
    "package_name" : "grafana",
    "cpe" : "cpe:/a:redhat:storage:3"
  }, {
    "product_name" : "Red Hat Storage 3",
    "fix_state" : "Out of support scope",
    "package_name" : "pcs",
    "cpe" : "cpe:/a:redhat:storage:3"
  }, {
    "product_name" : "Red Hat Storage 3",
    "fix_state" : "Out of support scope",
    "package_name" : "python-django",
    "cpe" : "cpe:/a:redhat:storage:3"
  }, {
    "product_name" : "Red Hat Storage 3",
    "fix_state" : "Out of support scope",
    "package_name" : "python-testtools",
    "cpe" : "cpe:/a:redhat:storage:3"
  }, {
    "product_name" : "Red Hat Virtualization 4",
    "fix_state" : "Out of support scope",
    "package_name" : "ovirt-engine",
    "cpe" : "cpe:/o:redhat:rhev_hypervisor:4"
  }, {
    "product_name" : "Red Hat Virtualization 4",
    "fix_state" : "Out of support scope",
    "package_name" : "ovirt-engine-api-explorer",
    "cpe" : "cpe:/o:redhat:rhev_hypervisor:4"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2020-11023\nhttps://nvd.nist.gov/vuln/detail/CVE-2020-11023\nhttps://blog.jquery.com/2020/04/10/jquery-3-5-0-released/\nhttps://www.cisa.gov/known-exploited-vulnerabilities-catalog" ],
  "csaw" : true,
  "name" : "CVE-2020-11023",
  "mitigation" : {
    "value" : "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
    "lang" : "en:us"
  }
}