Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-daqf-e6g1-w7hu
Vulnerability ID VCID-daqf-e6g1-w7hu
Aliases CVE-2023-29418
Summary Out-of-bounds Read An issue was discovered in libbzip3.a in bzip3 before 1.2.3. There is an xwrite out-of-bounds read.
Status Published
Exploitability None
Weighted Severity None
Risk None
Affected and Fixed Packages Package Details
Weaknesses (3)
CWE-1035 OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
CWE-125 Out-of-bounds Read
CWE-937 OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
System Score Found at
epss 0.00611 https://api.first.org/data/v1/epss?cve=CVE-2023-29418
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2023-29418
https://github.com/kspalaiologos/bzip3/commit/aae16d107f804f69000c09cd92027a140968cc9d
https://github.com/kspalaiologos/bzip3/compare/1.2.2...1.2.3
https://github.com/kspalaiologos/bzip3/issues/92
CVE-2023-29418 https://nvd.nist.gov/vuln/detail/CVE-2023-29418
No exploits are available.
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.7013
EPSS Score 0.00611
Published At May 30, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-05-30T21:00:15.514277+00:00 GitLab Importer Import https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/bzip3/CVE-2023-29418.yml 38.6.0