CVE-2011-4922 — Vulnetix

CVE-2011-4922 PUBLISHED CVSS 2.0999999046325684 LOW

cipher.c in the Cipher API in libpurple in Pidgin before 2.7.10 retains encryption-key data in process memory, which might allow local users to obtain sensitive information by reading a core file or other representation of memory contents.

EPSS 0.11% · 28.8th percentile

Risk Scores

CVSS v2.0

2.0999999046325684

EPSS Score

0.11%

28.8th percentile

Affected Products

Vendor	Product	Versions
pidgin	pidgin	2.7.6, 0, 2.0.1
n/a	n/a	n/a

Timeline

Aug 8, 2012 CVE Published
Feb 4, 2022 EPSS Score
Mar 29, 2022 EPSS Score
May 20, 2022 EPSS Score
Jul 12, 2022 EPSS Score
Sep 3, 2022 EPSS Score
Oct 26, 2022 EPSS Score
Dec 17, 2022 EPSS Score
Feb 8, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Apr 1, 2023 EPSS Score
May 24, 2023 EPSS Score

References

[oss-security] 20120104 Re: CVE request: Pidgin mailing-list
oval:org.mitre.oval:def:18223 vdb
http://www.pidgin.im/news/security/?id=50 url
http://hg.pidgin.im/pidgin/main/rev/8c850977cb42 url
https://nvd.nist.gov/vuln/detail/CVE-2011-4922 advisory

Open in Interactive Console →