{"url":"http://public2.vulnerablecode.io/api/packages/38544?format=json","purl":"pkg:pypi/paddlepaddle@2.6.1","type":"pypi","namespace":"","name":"paddlepaddle","version":"2.6.1","qualifiers":{},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/36673?format=json","vulnerability_id":"VCID-s51x-rhes-73h1","summary":"Nullptr dereference in paddle.crop in PaddlePaddle before 2.6.0. This flaw can cause a runtime crash and a denial of service.","references":[{"reference_url":"https://github.com/PaddlePaddle/Paddle","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/PaddlePaddle/Paddle"},{"reference_url":"https://github.com/PaddlePaddle/Paddle/blob/develop/security/advisory/pdsa-2023-021.md","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://github.com/PaddlePaddle/Paddle/blob/develop/security/advisory/pdsa-2023-021.md"},{"reference_url":"https://github.com/PaddlePaddle/Paddle/commit/488a0ddc322b24659b6b0067fea3030d2f013cf4","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/PaddlePaddle/Paddle/commit/488a0ddc322b24659b6b0067fea3030d2f013cf4"},{"reference_url":"https://github.com/pypa/advisory-database/tree/main/vulns/paddlepaddle/PYSEC-2024-144.yaml","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/pypa/advisory-database/tree/main/vulns/paddlepaddle/PYSEC-2024-144.yaml"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2023-52312","reference_id":"CVE-2023-52312","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2023-52312"},{"reference_url":"https://github.com/advisories/GHSA-qppw-c37g-xwcc","reference_id":"GHSA-qppw-c37g-xwcc","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-qppw-c37g-xwcc"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/38543?format=json","purl":"pkg:pypi/paddlepaddle@2.6.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-17nd-k3cn-4bb4"},{"vulnerability":"VCID-fsej-h74n-6ffs"},{"vulnerability":"VCID-fzzq-2t1q-p7fa"},{"vulnerability":"VCID-mpck-qgnf-vfg5"},{"vulnerability":"VCID-s51x-rhes-73h1"},{"vulnerability":"VCID-wqhd-4yv8-37ea"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/paddlepaddle@2.6.0"},{"url":"http://public2.vulnerablecode.io/api/packages/38544?format=json","purl":"pkg:pypi/paddlepaddle@2.6.1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/paddlepaddle@2.6.1"}],"aliases":["CVE-2023-52312","GHSA-qppw-c37g-xwcc","PYSEC-2024-144"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-s51x-rhes-73h1"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/paddlepaddle@2.6.1"}