CVE-2020-12647

{"id": "CVE-2020-12647", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.2, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 6.0, "exploitabilityScore": 2.0}]}, "published": "2020-05-21T03:15:12.853", "references": [{"url": "https://public.support.unisys.com/common/public/vulnerability/NVD_Detail_Rpt.aspx?ID=55", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Unisys ALGOL Compiler 58.1 before 58.1a.15, 59.1 before 59.1a.9, and 60.0 before 60.0a.5 can emit invalid code sequences under rare circumstances related to syntax. The resulting code could, for example, trigger a system fault or adversely affect confidentiality, integrity, and availability."}, {"lang": "es", "value": "Unisys ALGOL Compiler versiones 58.1 anteriores a 58.1a.15, versiones 59.1 anteriores a 59.1a.9, y versiones 60.0 anteriores a 60.0a.5, permite a usuarios locales desencadenar un fallo del sistema al ejecutar un c\u00f3digo compilado, o afectar negativamente a la confidencialidad, integridad y disponibilidad, por medio de una sintaxis dise\u00f1ada."}], "lastModified": "2020-06-01T16:08:20.353", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:unisys:algol_compiler:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D1138B08-AE17-435E-9CD1-7F9ED07914FB", "versionEndExcluding": "58.1a.15", "versionStartIncluding": "58.1"}, {"criteria": "cpe:2.3:a:unisys:algol_compiler:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "654B0A49-8679-427A-B721-81F187FE7020", "versionEndExcluding": "59.1a.9", "versionStartIncluding": "59.1"}, {"criteria": "cpe:2.3:a:unisys:algol_compiler:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "30E9F7BE-0A00-49EC-80DF-94D5FAECFCAA", "versionEndExcluding": "60.0a.5", "versionStartIncluding": "60.0"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}