Fluid Attacks Database

Description

Performance Co-Pilot (PCP) before 3.6.5 exports some of the /proc file system, which allows attackers to obtain sensitive information such as proc/pid/maps and command line arguments.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 11	pcp	>=0 <3.6.5	3.6.5
debian 13	pcp	>=0 <3.6.5	3.6.5
debian 12	pcp	>=0 <3.6.5	3.6.5
debian 14	pcp	>=0 <3.6.5	3.6.5

Aliases

1. CVE-2012-34192. NVD-2012-34193. OSV-DEBIAN-2012-34194. OSV-2012-34195. SECURITY-TRACKER-CVE-2012-3419

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.