Fluid Attacks Database

Description

A vulnerability was found in Performance Co-Pilot (PCP). This flaw allows an attacker to send specially crafted data to the system, which could cause the program to misbehave or crash.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 12	pcp	=6.0.3-1.1 \|\| =6.0.5-1 \|\| =6.1.0-1 \|\| =6.1.1-1 \|\| =6.2.0-1 \|\| =6.2.0-1.1 \|\| =6.2.0-1.1~exp1 \|\| =6.2.1-1 \|\| =6.2.2-1 \|\| =6.3.0-1 \|\| =6.3.1-1 \|\| =6.3.3-1 \|\| =6.3.4-1 \|\| =6.3.5-1 \|\| =6.3.6-1 \|\| =6.3.7-1 \|\| =6.3.8-1 \|\| =7.0.0-1 \|\| =7.0.1-1 \|\| =7.0.2-1 \|\| =7.0.3-1 \|\| =7.0.4-1 \|\| =7.0.5-1 \|\| =7.1.0-1 \|\| =7.1.1-1 \|\| =7.1.2-1	-
debian 13	pcp	>=0 <6.3.1-1	6.3.1-1
rpm rhel7	pcp	-	-
debian 14	pcp	>=0 <6.3.1-1	6.3.1-1
rpm rhel8	pcp	<0:5.3.7-22.el8_10	0:5.3.7-22.el8_10
rpm rhel9	pcp	<0:6.2.0-5.el9_4 \|\| >=0:6.2.2, <0:6.2.2-7.el9_5	0:6.2.2-7.el9_5
rpm rhel6	pcp	-	-
rpm rhel8.8	pcp	<0:5.3.7-19.el8_8	0:5.3.7-19.el8_8
rpm rhel9.2	pcp	<0:6.0.1-8.el9_2	0:6.0.1-8.el9_2

Aliases

1. CVE-2024-457692. NVD-2024-457693. OSV-DEBIAN-2024-457694. OSV-2024-457695. SECURITY-TRACKER-CVE-2024-45769

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.