{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-19T20:08:43.315","vulnerabilities":[{"cve":{"id":"CVE-2023-3297","sourceIdentifier":"security@ubuntu.com","published":"2023-09-01T21:15:07.977","lastModified":"2024-11-21T08:16:57.257","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"In Ubuntu's accountsservice an unprivileged local attacker can trigger a use-after-free vulnerability in accountsservice by sending a D-Bus message to the accounts-daemon process."},{"lang":"es","value":"en Ubuntu AccountsService un atacante local no privilegiado puede desencadenar una vulnerabilidad de uso de memoria previamente liberada en accountsservice enviando mensajes D-Bus al accounts-daemon process."}],"metrics":{"cvssMetricV31":[{"source":"security@ubuntu.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.4,"impactScore":6.0},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}]},"weaknesses":[{"source":"security@ubuntu.com","type":"Secondary","description":[{"lang":"en","value":"CWE-416"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-416"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:canonical:accountsservice:*:*:*:*:*:*:*:*","versionEndExcluding":"23.13.9-2ubuntu2","matchCriteriaId":"6CD8D70C-FFD4-4F0A-A51C-6C95630AA4A5"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:canonical:accountsservice:*:*:*:*:*:*:*:*","versionEndExcluding":"22.08.8-1ubuntu7.1","matchCriteriaId":"39846023-221F-4FAE-8CEE-0729CBA5102E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:23.04:*:*:*:*:*:*:*","matchCriteriaId":"B2E702D7-F8C0-49BF-9FFB-883017076E98"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:canonical:accountsservice:*:*:*:*:*:*:*:*","versionEndExcluding":"22.08.8-1ubuntu7.1","matchCriteriaId":"39846023-221F-4FAE-8CEE-0729CBA5102E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:22.10:*:*:*:-:*:*:*","matchCriteriaId":"47842532-D2B6-44CB-ADE2-4AC8630A4D8C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:canonical:accountsservice:*:*:*:*:*:*:*:*","versionEndExcluding":"22.07.5-2ubuntu1.4","matchCriteriaId":"F70B47A4-5FFF-4260-99D1-C8BFF1027C34"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:22.04:*:*:*:lts:*:*:*","matchCriteriaId":"359012F1-2C63-415A-88B8-6726A87830DE"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:canonical:accountsservice:*:*:*:*:*:*:*:*","versionEndExcluding":"0.6.55-0ubuntu12\\~20.04.6","matchCriteriaId":"98D9AA5D-7CF4-4EEE-9AD4-7548E408414C"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*","matchCriteriaId":"902B8056-9E37-443B-8905-8AA93E2447FB"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*","matchCriteriaId":"902B8056-9E37-443B-8905-8AA93E2447FB"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:22.04:*:*:*:lts:*:*:*","matchCriteriaId":"359012F1-2C63-415A-88B8-6726A87830DE"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:22.10:*:*:*:-:*:*:*","matchCriteriaId":"47842532-D2B6-44CB-ADE2-4AC8630A4D8C"},{"vulnerable":true,"criteria":"cpe:2.3:o:canonical:ubuntu_linux:23.04:*:*:*:*:*:*:*","matchCriteriaId":"B2E702D7-F8C0-49BF-9FFB-883017076E98"}]}]}],"references":[{"url":"https://bugs.launchpad.net/ubuntu/+source/accountsservice/+bug/2024182","source":"security@ubuntu.com","tags":["Exploit","Issue Tracking","Vendor Advisory"]},{"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3297","source":"security@ubuntu.com","tags":["Third Party Advisory"]},{"url":"https://securitylab.github.com/advisories/GHSL-2023-139_accountsservice/","source":"security@ubuntu.com","tags":["Exploit","Third Party Advisory"]},{"url":"https://ubuntu.com/security/notices/USN-6190-1","source":"security@ubuntu.com","tags":["Vendor Advisory"]},{"url":"https://bugs.launchpad.net/ubuntu/+source/accountsservice/+bug/2024182","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Issue Tracking","Vendor Advisory"]},{"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3297","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://securitylab.github.com/advisories/GHSL-2023-139_accountsservice/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]},{"url":"https://ubuntu.com/security/notices/USN-6190-1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}