[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2009-1097":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":68,"aliases":69,"duplicate_of":9,"upstream":70,"downstream":71,"duplicates":84,"related":85,"reserved_at":9,"published_at":86,"modified_at":87,"state":88,"summary":89,"references_raw":98,"kevs":279,"epss":280,"epss_history":283,"metrics":536,"affected":541},"CVE-2009-1097","Multiple buffer overflows in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 6 Update 12 and earlier allow remote attackers to access files or execute arbitrary code via (1) a crafted PNG image that triggers an integer overflow during memory allocation for display on the splash screen, aka CR 6804996; and (2) a crafted GIF image from which unspecified values are used in calculation of offsets, leading to object-pointer corruption, aka CR 6804997.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-119","Improper Restriction of Operations within the Bounds of a Memory Buffer","The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.","weakness","Stable","Class","High",[20,24,28,32,36,40,44,48,52,56,60,64],{"id":21,"name":22,"techniques":23},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":25,"name":26,"techniques":27},"CAPEC-100","Overflow Buffers",[],{"id":29,"name":30,"techniques":31},"CAPEC-123","Buffer Manipulation",[],{"id":33,"name":34,"techniques":35},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":37,"name":38,"techniques":39},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":41,"name":42,"techniques":43},"CAPEC-42","MIME Conversion",[],{"id":45,"name":46,"techniques":47},"CAPEC-44","Overflow Binary Resource File",[],{"id":49,"name":50,"techniques":51},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":53,"name":54,"techniques":55},"CAPEC-46","Overflow Variables and Tags",[],{"id":57,"name":58,"techniques":59},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":61,"name":62,"techniques":63},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":65,"name":66,"techniques":67},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],[],[],[],[72,74,76,78,80,82],{"_key":73},"RHSA-2009:0377",{"_key":75},"RHSA-2009:0392",{"_key":77},"RHSA-2009:1038",{"_key":79},"RHSA-2009:1198",{"_key":81},"RHSA-2010:0043",{"_key":83},"DSA-1769-1",[],[],"2009-03-25T23:00:00.000Z","2024-08-07T04:57:17.819Z","Modified",{"cisa_kev":90,"cisa_ransomware":90,"cisa_vendor":9,"epss_severity":91,"epss_score":92,"severity":93,"severity_score":94,"severity_version":95,"severity_source":96,"severity_vector":97,"severity_status":88},false,"low",0.04193,"high",9.3,"v2.0","nvd","AV:N/AC:M/Au:N/C:C/I:C/A:C",[99,106,111,117,122,126,130,134,138,144,148,152,157,162,166,171,175,181,186,190,194,198,204,209,213,218,224,228,232,236,240,245,249,253,258,263,267,271,275],{"url":100,"sources":101,"tags":103},"http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00001.html",[102,96],"cve.org",[104,105],"Vendor Advisory","X Refsource SUSE",{"url":107,"sources":108,"tags":109},"http://www.mandriva.com/security/advisories?name=MDVSA-2009:137",[102,96],[104,110],"X Refsource MANDRIVA",{"url":112,"sources":113,"tags":114},"http://secunia.com/advisories/34632",[102,96],[115,116,104],"Third Party Advisory","X Refsource SECUNIA",{"url":118,"sources":119,"tags":120},"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01745133",[102,96],[104,121],"X Refsource HP",{"url":123,"sources":124,"tags":125},"http://secunia.com/advisories/35156",[102,96],[115,116,104],{"url":127,"sources":128,"tags":129},"http://secunia.com/advisories/34675",[102,96],[115,116,104],{"url":131,"sources":132,"tags":133},"http://lists.opensuse.org/opensuse-security-announce/2009-05/msg00003.html",[102,96],[104,105],{"url":135,"sources":136,"tags":137},"http://secunia.com/advisories/35776",[102,96],[115,116,104],{"url":139,"sources":140,"tags":141},"http://www.securitytracker.com/id?1021913",[102,96],[142,143],"VDB Entry","X Refsource SECTRACK",{"url":145,"sources":146,"tags":147},"http://secunia.com/advisories/37460",[102,96],[115,116,104],{"url":149,"sources":150,"tags":151},"http://secunia.com/advisories/34489",[102,96],[115,116,104],{"url":153,"sources":154,"tags":155},"http://security.gentoo.org/glsa/glsa-200911-02.xml",[102,96],[104,156],"X Refsource GENTOO",{"url":158,"sources":159,"tags":160},"http://www.redhat.com/support/errata/RHSA-2009-1038.html",[102,96],[104,161],"X Refsource REDHAT",{"url":163,"sources":164,"tags":165},"https://rhn.redhat.com/errata/RHSA-2009-1198.html",[102,96],[104,161],{"url":167,"sources":168,"tags":169},"http://www.vmware.com/security/advisories/VMSA-2009-0016.html",[102,96],[170],"X Refsource CONFIRM",{"url":172,"sources":173,"tags":174},"http://marc.info/?l=bugtraq&m=124344236532162&w=2",[102,96],[104,121],{"url":176,"sources":177,"tags":178},"http://sunsolve.sun.com/search/document.do?assetkey=1-26-254571-1",[102,96],[104,179,180],"X Refsource SUNALERT","Patch",{"url":182,"sources":183,"tags":184},"https://exchange.xforce.ibmcloud.com/vulnerabilities/49475",[102,96],[142,185],"X Refsource XF",{"url":187,"sources":188,"tags":189},"http://secunia.com/advisories/36185",[102,96],[115,116,104],{"url":191,"sources":192,"tags":193},"https://rhn.redhat.com/errata/RHSA-2009-0377.html",[102,96],[104,161],{"url":195,"sources":196,"tags":197},"http://secunia.com/advisories/35255",[102,96],[115,116,104],{"url":199,"sources":200,"tags":201},"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6288",[102,96],[142,202,203],"Signature","X Refsource OVAL",{"url":205,"sources":206,"tags":207},"http://www.vupen.com/english/advisories/2009/1426",[102,96],[142,208,104],"X Refsource VUPEN",{"url":210,"sources":211,"tags":212},"http://www.mandriva.com/security/advisories?name=MDVSA-2009:162",[102,96],[104,110],{"url":214,"sources":215,"tags":216},"http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=780",[102,96],[115,217],"X Refsource IDEFENSE",{"url":219,"sources":220,"tags":221},"http://www.securityfocus.com/archive/1/507985/100/0/threaded",[102,96],[222,223],"Mailing List","X Refsource BUGTRAQ",{"url":225,"sources":226,"tags":227},"http://www.oracle.com/technetwork/topics/security/cpujul2009-091332.html",[102,96],[170],{"url":229,"sources":230,"tags":231},"http://www.redhat.com/support/errata/RHSA-2009-0392.html",[102,96],[104,161],{"url":233,"sources":234,"tags":235},"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11241",[102,96],[142,202,203],{"url":237,"sources":238,"tags":239},"http://secunia.com/advisories/35223",[102,96],[115,116,104],{"url":241,"sources":242,"tags":243},"http://www.securityfocus.com/bid/34240",[102,96],[142,244],"X Refsource BID",{"url":246,"sources":247,"tags":248},"http://secunia.com/advisories/34496",[102,96],[115,116,104],{"url":250,"sources":251,"tags":252},"http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=779",[102,96],[115,217],{"url":254,"sources":255,"tags":256},"http://www.ubuntu.com/usn/usn-748-1",[102,96],[104,257],"X Refsource UBUNTU",{"url":259,"sources":260,"tags":261},"http://www.debian.org/security/2009/dsa-1769",[102,96],[104,262],"X Refsource DEBIAN",{"url":264,"sources":265,"tags":266},"http://support.avaya.com/elmodocs2/security/ASA-2009-108.htm",[102,96],[170],{"url":268,"sources":269,"tags":270},"http://secunia.com/advisories/37386",[102,96],[115,116,104],{"url":272,"sources":273,"tags":274},"http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00001.html",[102,96],[104,105],{"url":276,"sources":277,"tags":278},"http://www.vupen.com/english/advisories/2009/3316",[102,96],[142,208,104],[],{"date":281,"score":92,"percentile":282},"2026-06-04",0.88916,[284,288,291,294,296,299,302,305,307,310,313,316,319,321,323,326,329,332,335,338,341,343,346,349,351,354,357,360,363,366,369,371,373,376,378,380,383,386,389,392,395,398,401,403,406,409,412,415,418,420,423,425,428,431,434,437,440,443,446,449,452,455,458,460,463,466,469,472,475,477,480,482,485,487,490,493,496,499,502,504,507,510,513,516,518,521,524,527,530,533],{"date":285,"score":286,"percentile":287},"2025-11-04",0.0474,0.88909,{"date":289,"score":286,"percentile":290},"2025-11-05",0.88907,{"date":292,"score":286,"percentile":293},"2025-11-06",0.889,{"date":295,"score":286,"percentile":290},"2025-11-07",{"date":297,"score":286,"percentile":298},"2025-11-08",0.88911,{"date":300,"score":286,"percentile":301},"2025-11-09",0.88908,{"date":303,"score":286,"percentile":304},"2025-11-10",0.88904,{"date":306,"score":286,"percentile":290},"2025-11-11",{"date":308,"score":286,"percentile":309},"2025-11-12",0.88914,{"date":311,"score":286,"percentile":312},"2025-11-13",0.88919,{"date":314,"score":286,"percentile":315},"2025-11-14",0.88921,{"date":317,"score":286,"percentile":318},"2025-11-15",0.88917,{"date":320,"score":286,"percentile":315},"2025-11-16",{"date":322,"score":286,"percentile":318},"2025-11-17",{"date":324,"score":286,"percentile":325},"2025-11-18",0.88333,{"date":327,"score":286,"percentile":328},"2025-11-19",0.88336,{"date":330,"score":286,"percentile":331},"2025-11-20",0.88339,{"date":333,"score":286,"percentile":334},"2025-11-21",0.88932,{"date":336,"score":286,"percentile":337},"2025-11-22",0.88933,{"date":339,"score":286,"percentile":340},"2025-11-23",0.88931,{"date":342,"score":286,"percentile":337},"2025-11-24",{"date":344,"score":286,"percentile":345},"2025-11-25",0.88937,{"date":347,"score":286,"percentile":348},"2025-11-26",0.88935,{"date":350,"score":286,"percentile":345},"2025-11-27",{"date":352,"score":286,"percentile":353},"2025-11-28",0.8893,{"date":355,"score":286,"percentile":356},"2025-11-29",0.89,{"date":358,"score":286,"percentile":359},"2025-11-30",0.88996,{"date":361,"score":286,"percentile":362},"2025-12-01",0.89052,{"date":364,"score":286,"percentile":365},"2025-12-02",0.89054,{"date":367,"score":286,"percentile":368},"2025-12-03",0.89053,{"date":370,"score":286,"percentile":359},"2025-12-04",{"date":372,"score":286,"percentile":359},"2025-12-05",{"date":374,"score":286,"percentile":375},"2025-12-06",0.88995,{"date":377,"score":286,"percentile":375},"2025-12-07",{"date":379,"score":286,"percentile":375},"2025-12-08",{"date":381,"score":286,"percentile":382},"2025-12-09",0.89002,{"date":384,"score":286,"percentile":385},"2025-12-10",0.89017,{"date":387,"score":286,"percentile":388},"2025-12-11",0.89019,{"date":390,"score":286,"percentile":391},"2025-12-12",0.89022,{"date":393,"score":286,"percentile":394},"2025-12-13",0.89024,{"date":396,"score":286,"percentile":397},"2025-12-14",0.89023,{"date":399,"score":286,"percentile":400},"2025-12-15",0.89025,{"date":402,"score":286,"percentile":400},"2025-12-16",{"date":404,"score":286,"percentile":405},"2025-12-17",0.8903,{"date":407,"score":286,"percentile":408},"2025-12-18",0.89037,{"date":410,"score":286,"percentile":411},"2025-12-19",0.8904,{"date":413,"score":286,"percentile":414},"2025-12-20",0.89038,{"date":416,"score":286,"percentile":417},"2025-12-21",0.89045,{"date":419,"score":286,"percentile":417},"2025-12-22",{"date":421,"score":286,"percentile":422},"2025-12-23",0.89046,{"date":424,"score":286,"percentile":365},"2025-12-24",{"date":426,"score":286,"percentile":427},"2025-12-25",0.89065,{"date":429,"score":286,"percentile":430},"2025-12-26",0.89064,{"date":432,"score":286,"percentile":433},"2025-12-27",0.89114,{"date":435,"score":286,"percentile":436},"2025-12-28",0.89059,{"date":438,"score":286,"percentile":439},"2025-12-29",0.89055,{"date":441,"score":286,"percentile":442},"2025-12-30",0.89061,{"date":444,"score":286,"percentile":445},"2025-12-31",0.89069,{"date":447,"score":286,"percentile":448},"2026-01-01",0.89135,{"date":450,"score":286,"percentile":451},"2026-01-02",0.8913,{"date":453,"score":286,"percentile":454},"2026-01-03",0.89127,{"date":456,"score":286,"percentile":457},"2026-01-04",0.89068,{"date":459,"score":286,"percentile":427},"2026-01-05",{"date":461,"score":286,"percentile":462},"2026-01-06",0.8907,{"date":464,"score":286,"percentile":465},"2026-01-07",0.89072,{"date":467,"score":286,"percentile":468},"2026-01-08",0.89078,{"date":470,"score":286,"percentile":471},"2026-01-09",0.89084,{"date":473,"score":286,"percentile":474},"2026-01-10",0.89086,{"date":476,"score":286,"percentile":468},"2026-01-11",{"date":478,"score":286,"percentile":479},"2026-01-12",0.89075,{"date":481,"score":286,"percentile":465},"2026-01-13",{"date":483,"score":286,"percentile":484},"2026-01-14",0.89085,{"date":486,"score":286,"percentile":484},"2026-01-15",{"date":488,"score":286,"percentile":489},"2026-01-16",0.89091,{"date":491,"score":286,"percentile":492},"2026-01-17",0.89095,{"date":494,"score":286,"percentile":495},"2026-01-18",0.89092,{"date":497,"score":286,"percentile":498},"2026-01-19",0.89087,{"date":500,"score":286,"percentile":501},"2026-01-20",0.8909,{"date":503,"score":286,"percentile":492},"2026-01-21",{"date":505,"score":286,"percentile":506},"2026-01-22",0.89099,{"date":508,"score":286,"percentile":509},"2026-01-23",0.89112,{"date":511,"score":286,"percentile":512},"2026-01-24",0.8912,{"date":514,"score":286,"percentile":515},"2026-01-25",0.89122,{"date":517,"score":286,"percentile":515},"2026-01-26",{"date":519,"score":286,"percentile":520},"2026-01-27",0.89121,{"date":522,"score":286,"percentile":523},"2026-01-28",0.89124,{"date":525,"score":286,"percentile":526},"2026-01-29",0.89126,{"date":528,"score":286,"percentile":529},"2026-01-30",0.89128,{"date":531,"score":286,"percentile":532},"2026-01-31",0.89125,{"date":534,"score":286,"percentile":535},"2026-02-01",0.89189,[537],{"source":96,"cvss_v2_0":538,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":94,"baseSeverity":9,"vectorString":97,"impactScore":539,"exploitabilityScore":540},10,8.6,[542,574],{"ecosystem":9,"name":543,"vendor":544,"product":543,"cpe_part":545,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":546},"jdk","sun","a",[547,553,554,556,558,560,562,564,566,568,570,572],{"version":548,"is_range":549,"range_type":550,"version_start":9,"version_start_type":9,"version_end":551,"version_end_type":552,"fixed_in":9},"lte1.6.0",true,"cpe","1.6.0","including",{"version":551,"is_range":90,"range_type":550,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":555,"is_range":90,"range_type":550,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.6.0:update_10",{"version":557,"is_range":90,"range_type":550,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.6.0:update_11",{"version":559,"is_range":90,"range_type":550,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.6.0:update_3",{"version":561,"is_range":90,"range_type":550,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.6.0:update_4",{"version":563,"is_range":90,"range_type":550,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.6.0:update_5",{"version":565,"is_range":90,"range_type":550,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.6.0:update_6",{"version":567,"is_range":90,"range_type":550,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.6.0:update_7",{"version":569,"is_range":90,"range_type":550,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.6.0:update1",{"version":571,"is_range":90,"range_type":550,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.6.0:update1_b06",{"version":573,"is_range":90,"range_type":550,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.6.0:update2",{"ecosystem":9,"name":575,"vendor":544,"product":575,"cpe_part":545,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":576},"jre",[577,578,579,581,582,583,585,586,587,588,589],{"version":548,"is_range":549,"range_type":550,"version_start":9,"version_start_type":9,"version_end":551,"version_end_type":552,"fixed_in":9},{"version":551,"is_range":90,"range_type":550,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":580,"is_range":90,"range_type":550,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.6.0:update_1",{"version":555,"is_range":90,"range_type":550,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":557,"is_range":90,"range_type":550,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":584,"is_range":90,"range_type":550,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.6.0:update_2",{"version":559,"is_range":90,"range_type":550,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":561,"is_range":90,"range_type":550,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":563,"is_range":90,"range_type":550,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":565,"is_range":90,"range_type":550,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":567,"is_range":90,"range_type":550,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9}]