{
  "threat_severity" : "Moderate",
  "public_date" : "2022-05-18T00:00:00Z",
  "bugzilla" : {
    "description" : "inkscape: Inkscape can access an uninitialized pointer that allowes to unauthorized information.",
    "id" : "2088224",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2088224"
  },
  "cvss3" : {
    "cvss3_base_score" : "7.7",
    "cvss3_scoring_vector" : "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
    "status" : "draft"
  },
  "cwe" : "CWE-824",
  "details" : [ "Inkscape version 0.91 can access an uninitialized pointer, which may allow an attacker to have access to unauthorized information.", "A flaw was found in Inkscape, which is vulnerable to accessing an uninitialized pointer. This flaw allows an attacker to have access to unauthorized information." ],
  "package_state" : [ {
    "product_name" : "Red Hat Enterprise Linux 6",
    "fix_state" : "Out of support scope",
    "package_name" : "inkscape",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "fix_state" : "Out of support scope",
    "package_name" : "inkscape",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "inkscape:0.92.3/inkscape",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "inkscape:flatpak/inkscape",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "fix_state" : "Not affected",
    "package_name" : "inkscape",
    "cpe" : "cpe:/o:redhat:enterprise_linux:9"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "fix_state" : "Not affected",
    "package_name" : "inkscape:flatpak/inkscape",
    "cpe" : "cpe:/o:redhat:enterprise_linux:9"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2021-42702\nhttps://nvd.nist.gov/vuln/detail/CVE-2021-42702\nhttps://www.cisa.gov/uscert/ics/advisories/icsa-22-132-03" ],
  "name" : "CVE-2021-42702",
  "csaw" : false
}