Lucene search

MitreCVE-2020-12647

HistoryMay 21, 2020 - 3:15 a.m.

CVE-2020-12647

2020-05-2103:15:12

mitre

web.nvd.nist.gov

cve-2020-12647

unisys

algol compiler

code sequences

system faults

security impact

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

8.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

AI Score

8.6

Confidence

High

EPSS

Percentile

12.6%

JSON

Unisys ALGOL Compiler 58.1 before 58.1a.15, 59.1 before 59.1a.9, and 60.0 before 60.0a.5 can emit invalid code sequences under rare circumstances related to syntax. The resulting code could, for example, trigger a system fault or adversely affect confidentiality, integrity, and availability.

Affected configurations

Nvd

Node

unisysalgol_compilerRange58.1–58.1a.15

unisysalgol_compilerRange59.1–59.1a.9

unisysalgol_compilerRange60.0–60.0a.5

VendorProductVersionCPE
unisysalgol_compiler*cpe:2.3:a:unisys:algol_compiler:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
unisys	algol_compiler	*	cpe:2.3:a:unisys:algol_compiler::::::::

References

public.support.unisys.com/common/public/vulnerability/NVD_Detail_Rpt.aspx?ID=55

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

8.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

AI Score

8.6

Confidence

High

EPSS

Percentile

12.6%

JSON

Related for CVE-2020-12647