CVE-2010-3846

Array index error in the apply_rcs_change function in rcs.c in CVS 1.11.23 allows local users to gain privileges via an RCS file containing crafted delta fragment changes that trigger a heap-based buffer overflow.

Published: 2010-11-05 Last update: 2026-06-16 Assigner: [email protected] Source: [email protected]

NVD Status：Modified，CVE State: published

View at NVD, CVE.org, EUVD

Threat Intelligence & Risk Assessment for CVE-2010-3846

EPSS CVSS CWE Affected OS Tracker

Conclusion & alert: CVE-2010-3846 is rated Low Risk (38.6/100): CVSS Medium severity, with low exploitation likelihood (EPSS 0.39%). Mandatory action: Monitor for updates and reassess as exploit intelligence or EPSS changes.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

Exploit prediction scoring system (EPSS) score for CVE-2010-3846

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

#	Date	Old EPSS score	New EPSS score	Delta (New - Old)
1	2026-06-15	0.13%	0.39%	+0.26%
2	2025-03-30	0.18%	0.13%	-0.05%
3	2025-03-29	—	0.18%	—

Full EPSS history (6 records total)

Common vulnerability scoring system (CVSS) metrics for CVE-2010-3846

CVSS metrics for this CVE.

Base score	Version	Severity	Vector	Exploitability	Impact	Score source
6.9	2.0	MEDIUM	`AV:L/AC:M/Au:N/C:C/I:C/A:C` Click to expand Access vector (AV:L) Requires local access to the target system. Access complexity (AC:M) Exploitation needs some favorable conditions, but not exceptional ones. Authentication (AU:N) No authentication is required. Confidentiality impact (C:C) Complete confidentiality impact. Integrity impact (I:C) Complete integrity impact. Availability impact (A:C) Complete availability impact.	3.4	10.0	[email protected]

Weakness enumeration for CVE-2010-3846

CWE-119 MITRE ↗

OS Trackers for CVE-2010-3846

vendor	priority	summary	link
`alpine`	—	CVE-2010-3846: 1 source package rows (cvs); 11 state rows across 11 repos (3.10-main, 3.11-main, 3.12-main, 3.17-main, 3.18-community, 3.19-community, 3.20-community, 3.21-community, 3.22-main, edge-community, edge-main); fixed 11, open 0.	https://security.alpinelinux.org/vuln/CVE-2010-3846
`debian`	unimportant	CVE-2010-3846 unimportant priority: Debian including 1 source packages (cvs), 5 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 5.	https://security-tracker.debian.org/tracker/CVE-2010-3846
`redhat`	medium	—	https://access.redhat.com/security/cve/CVE-2010-3846
`ubuntu`	medium	CVE-2010-3846 medium priority: Ubuntu including 1 source packages (cvs), 6 status rows across 6 suites (dapper, hardy, karmic, lucid, maverick, upstream): not-affected 5, needs-triage 1.	https://ubuntu.com/security/CVE-2010-3846

Affected software / configurations for CVE-2010-3846

Vendor	Product	Version	Raw CPE
nongnu	cvs	1.11.23	cpe:2.3:a:nongnu:cvs:1.11.23:::::::*

References for CVE-2010-3846

URL	Tags
http://cvs.savannah.gnu.org/viewvc/cvs/ccvs/src/rcs.c?r1=1.262.4.65&r2=1.262.4.66&sortby=rev	Patch
http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050212.html
http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050287.html
http://lists.fedoraproject.org/pipermail/package-announce/2010-October/050090.html
http://secunia.com/advisories/41079	Vendor Advisory
http://secunia.com/advisories/42041
http://secunia.com/advisories/42409
http://www.osvdb.org/68952
http://www.redhat.com/support/errata/RHSA-2010-0918.html
http://www.securityfocus.com/bid/44528
http://www.securitytracker.com/id?1024795
http://www.vupen.com/english/advisories/2010/2845	Patch Vendor Advisory
http://www.vupen.com/english/advisories/2010/2846
http://www.vupen.com/english/advisories/2010/2869
http://www.vupen.com/english/advisories/2010/2899
http://www.vupen.com/english/advisories/2010/3080
https://bugzilla.redhat.com/show_bug.cgi?id=642146	Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/62858

cvelogic Threat Intelligence