Lucene search
HistoryAug 08, 2012 - 10:26 a.m.
CVE-2011-4922
cve-2011-4922
encryption-key
libpurple
pidgin
information security
sensitive information
memory contents
nvd
5.5 Medium
AI Score
Confidence
Low
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
0.0004 Low
EPSS
Percentile
5.3%
cipher.c in the Cipher API in libpurple in Pidgin before 2.7.10 retains encryption-key data in process memory, which might allow local users to obtain sensitive information by reading a core file or other representation of memory contents.
Related
debiancve
debiancve
CVE-2011-4922
2012-08-08 10:26:00
ubuntucve
ubuntucve
CVE-2011-4922
2012-01-04 00:00:00
openvas
openvas
Pidgin 'Libpurple' Cipher API Information Disclosure Vulnerability (Windows)
2012-08-17 00:00:00
Pidgin 'Libpurple' Cipher API Information Disclosure Vulnerability - Windows
2012-08-17 00:00:00
Oracle: Security Advisory (ELSA-2011-0616)
2015-10-06 00:00:00
prion
prion
Design/Logic Flaw
2012-08-08 10:26:00
nessus
nessus
Pidgin < 2.7.10 Information Disclosure
2011-02-21 00:00:00
RHEL 6 : pidgin (RHSA-2011:0616)
2011-05-20 00:00:00
Oracle Linux 6 : pidgin (ELSA-2011-0616)
2023-09-07 00:00:00
redhat
redhat
(RHSA-2011:0616) Low: pidgin security and bug fix update
2011-05-19 00:00:00
oraclelinux
oraclelinux
pidgin security and bug fix update
2011-05-28 00:00:00
ubuntu
ubuntu
Pidgin vulnerabilities
2012-07-09 00:00:00
5.5 Medium
AI Score
Confidence
Low
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
0.0004 Low
EPSS
Percentile
5.3%
Related for CVE-2011-4922