{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2023-2961", "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "dateUpdated": "2024-08-02T06:41:04.103Z", "dateReserved": "2023-05-29T00:00:00", "datePublished": "2023-06-06T00:00:00"}, "containers": {"cna": {"providerMetadata": {"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat", "dateUpdated": "2023-06-06T00:00:00"}, "descriptions": [{"lang": "en", "value": "A segmentation fault flaw was found in the Advancecomp package. This may lead to decreased availability."}], "affected": [{"vendor": "n/a", "product": "advancecomp", "versions": [{"version": "advancecomp 2.5", "status": "affected"}]}], "references": [{"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2210768"}], "problemTypes": [{"descriptions": [{"type": "CWE", "lang": "en", "description": "CWE-20", "cweId": "CWE-20"}]}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T06:41:04.103Z"}, "title": "CVE Program Container", "references": [{"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2210768", "tags": ["x_transferred"]}]}]}}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:advancemame:advancecomp:*:*:*:*:*:*:*:*", "matchCriteriaId": "47D8DD6E-FD04-417F-B9A3-849408FB5E25", "versionEndExcluding": "2.5", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A segmentation fault flaw was found in the Advancecomp package. This may lead to decreased availability."}], "id": "CVE-2023-2961", "lastModified": "2023-06-21T17:56:21.677", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "LOW", "baseScore": 3.3, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 1.4, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-06-06T20:15:13.523", "references": [{"source": "secalert@redhat.com", "tags": ["Issue Tracking", "Third Party Advisory"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2210768"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-20"}], "source": "secalert@redhat.com", "type": "Secondary"}]}

{"bugzilla": {"description": "advancecomp: SEGV via invalid read address", "id": "2210768", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2210768"}, "csaw": false, "cvss3": {"cvss3_base_score": "3.3", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", "status": "draft"}, "cwe": "CWE-20", "details": ["A segmentation fault flaw was found in the Advancecomp package. This may lead to decreased availability.", "A segmentation fault flaw was found in the Advancecomp package which may lead to decreased availability."], "name": "CVE-2023-2961", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "advancecomp", "product_name": "Red Hat Enterprise Linux 7"}], "public_date": "2023-01-18T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2023-2961\nhttps://nvd.nist.gov/vuln/detail/CVE-2023-2961"], "threat_severity": "Low", "upstream_fix": "advancecomp 2.5"}