[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2009-1886":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T14:55:33.319Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":28,"aliases":44,"duplicate_of":9,"upstream":45,"downstream":46,"duplicates":55,"related":56,"reserved_at":9,"published_at":59,"modified_at":60,"state":61,"summary":62,"references_raw":70,"kevs":146,"epss":147,"epss_history":150,"metrics":392,"affected":397},"CVE-2009-1886","Multiple format string vulnerabilities in client/client.c in smbclient in Samba 3.2.0 through 3.2.12 might allow context-dependent attackers to execute arbitrary code via format string specifiers in a filename.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-134","Use of Externally-Controlled Format String","The product uses a function that accepts a format string as an argument, but the format string originates from an external source.","weakness","Draft","Base","High",[20,24],{"id":21,"name":22,"techniques":23},"CAPEC-135","Format String Injection",[],{"id":25,"name":26,"techniques":27},"CAPEC-67","String Format Overflow in syslog()",[],[29],{"_key":30,"name":31,"source":32,"url":33,"maturity":34,"reliability_score":35,"verified":36,"type":37,"platforms":38,"requires_auth":9,"exploitdb":40,"metasploit":9},"33053","Samba 3.3.5 - Format String / Security Bypass","exploit-database","https://www.exploit-db.com/exploits/33053","weaponized",0.8,true,"remote",[39],"linux",{"verified":36,"type":37,"platform":39,"file":41,"codes":42},"exploits/linux/remote/33053.txt",[7,43],"OSVDB-55412",[],[],[47,49,51,53],{"_key":48},"OPENSUSE-SU-2024:10069-1",{"_key":50},"OPENSUSE-SU-2024:10334-1",{"_key":52},"DSA-1823-1",{"_key":54},"DEBIAN-CVE-2009-1886",[],[57,58],{"_key":48},{"_key":50},"2009-06-24T22:00:00.000Z","2024-08-07T05:27:54.829Z","Modified",{"cisa_kev":63,"cisa_ransomware":63,"cisa_vendor":9,"epss_severity":64,"epss_score":65,"severity":64,"severity_score":66,"severity_version":67,"severity_source":68,"severity_vector":69,"severity_status":61},false,"high",0.24809,9.3,"v2.0","nvd","AV:N/AC:M/Au:N/C:C/I:C/A:C",[71,80,85,90,96,100,105,110,115,119,124,128,132,136,141],{"url":72,"sources":73,"tags":75},"http://www.vupen.com/english/advisories/2009/1664",[74,68],"cve.org",[76,77,78,79],"VDB Entry","X Refsource VUPEN","Patch","Vendor Advisory",{"url":81,"sources":82,"tags":83},"http://www.debian.org/security/2009/dsa-1823",[74,68],[79,84],"X Refsource DEBIAN",{"url":86,"sources":87,"tags":88},"http://www.samba.org/samba/security/CVE-2009-1886.html",[74,68],[89,78,79],"X Refsource CONFIRM",{"url":91,"sources":92,"tags":93},"http://secunia.com/advisories/35573",[74,68],[94,95],"Third Party Advisory","X Refsource SECUNIA",{"url":97,"sources":98,"tags":99},"http://secunia.com/advisories/35606",[74,68],[94,95],{"url":101,"sources":102,"tags":103},"http://www.slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.521591",[74,68],[79,104],"X Refsource SLACKWARE",{"url":106,"sources":107,"tags":108},"http://www.securityfocus.com/bid/35472",[74,68],[76,109,78],"X Refsource BID",{"url":111,"sources":112,"tags":113},"http://www.ubuntu.com/usn/USN-839-1",[74,68],[79,114],"X Refsource UBUNTU",{"url":116,"sources":117,"tags":118},"http://secunia.com/advisories/35539",[74,68],[94,95,79],{"url":120,"sources":121,"tags":122},"http://www.securitytracker.com/id?1022441",[74,68],[76,123],"X Refsource SECTRACK",{"url":125,"sources":126,"tags":127},"https://bugzilla.samba.org/show_bug.cgi?id=6478",[74,68],[89],{"url":129,"sources":130,"tags":131},"http://secunia.com/advisories/36918",[74,68],[94,95],{"url":133,"sources":134,"tags":135},"http://www.samba.org/samba/ftp/patches/security/samba-3.2.12-CVE-2009-1886.patch",[74,68],[89,78,79],{"url":137,"sources":138,"tags":139},"http://www.mandriva.com/security/advisories?name=MDVSA-2009:196",[74,68],[79,140],"X Refsource MANDRIVA",{"url":142,"sources":143,"tags":144},"https://exchange.xforce.ibmcloud.com/vulnerabilities/51328",[74,68],[76,145],"X Refsource XF",[],{"date":148,"score":65,"percentile":149},"2026-06-04",0.96255,[151,154,157,159,162,164,166,169,171,174,177,180,182,184,186,189,192,195,198,201,204,206,209,212,215,217,220,223,226,228,231,234,237,239,241,244,247,250,253,256,259,261,264,267,270,273,276,278,280,282,284,287,290,292,295,298,301,303,306,309,312,315,317,320,323,325,327,329,332,334,336,338,341,344,347,350,353,356,358,361,364,367,370,373,376,378,381,384,386,389],{"date":152,"score":65,"percentile":153},"2025-11-04",0.95906,{"date":155,"score":65,"percentile":156},"2025-11-05",0.95904,{"date":158,"score":65,"percentile":153},"2025-11-06",{"date":160,"score":65,"percentile":161},"2025-11-07",0.95908,{"date":163,"score":65,"percentile":153},"2025-11-08",{"date":165,"score":65,"percentile":156},"2025-11-09",{"date":167,"score":65,"percentile":168},"2025-11-10",0.95905,{"date":170,"score":65,"percentile":153},"2025-11-11",{"date":172,"score":65,"percentile":173},"2025-11-12",0.95909,{"date":175,"score":65,"percentile":176},"2025-11-13",0.95911,{"date":178,"score":65,"percentile":179},"2025-11-14",0.95912,{"date":181,"score":65,"percentile":179},"2025-11-15",{"date":183,"score":65,"percentile":179},"2025-11-16",{"date":185,"score":65,"percentile":176},"2025-11-17",{"date":187,"score":65,"percentile":188},"2025-11-18",0.95804,{"date":190,"score":65,"percentile":191},"2025-11-19",0.95805,{"date":193,"score":65,"percentile":194},"2025-11-20",0.95807,{"date":196,"score":65,"percentile":197},"2025-11-21",0.95921,{"date":199,"score":65,"percentile":200},"2025-11-22",0.9592,{"date":202,"score":65,"percentile":203},"2025-11-23",0.95919,{"date":205,"score":65,"percentile":200},"2025-11-24",{"date":207,"score":65,"percentile":208},"2025-11-25",0.95923,{"date":210,"score":65,"percentile":211},"2025-11-26",0.95924,{"date":213,"score":65,"percentile":214},"2025-11-27",0.95926,{"date":216,"score":65,"percentile":208},"2025-11-28",{"date":218,"score":65,"percentile":219},"2025-11-29",0.95925,{"date":221,"score":65,"percentile":222},"2025-11-30",0.95927,{"date":224,"score":65,"percentile":225},"2025-12-01",0.9596,{"date":227,"score":65,"percentile":225},"2025-12-02",{"date":229,"score":65,"percentile":230},"2025-12-03",0.95963,{"date":232,"score":65,"percentile":233},"2025-12-04",0.9593,{"date":235,"score":65,"percentile":236},"2025-12-05",0.95931,{"date":238,"score":65,"percentile":236},"2025-12-06",{"date":240,"score":65,"percentile":236},"2025-12-07",{"date":242,"score":65,"percentile":243},"2025-12-08",0.95932,{"date":245,"score":65,"percentile":246},"2025-12-09",0.95934,{"date":248,"score":65,"percentile":249},"2025-12-10",0.95939,{"date":251,"score":65,"percentile":252},"2025-12-11",0.95941,{"date":254,"score":65,"percentile":255},"2025-12-12",0.95942,{"date":257,"score":65,"percentile":258},"2025-12-13",0.95944,{"date":260,"score":65,"percentile":252},"2025-12-14",{"date":262,"score":65,"percentile":263},"2025-12-15",0.95945,{"date":265,"score":65,"percentile":266},"2025-12-16",0.95948,{"date":268,"score":65,"percentile":269},"2025-12-17",0.9595,{"date":271,"score":65,"percentile":272},"2025-12-18",0.95952,{"date":274,"score":65,"percentile":275},"2025-12-19",0.95951,{"date":277,"score":65,"percentile":275},"2025-12-20",{"date":279,"score":65,"percentile":275},"2025-12-21",{"date":281,"score":65,"percentile":272},"2025-12-22",{"date":283,"score":65,"percentile":275},"2025-12-23",{"date":285,"score":65,"percentile":286},"2025-12-24",0.95956,{"date":288,"score":65,"percentile":289},"2025-12-25",0.95961,{"date":291,"score":65,"percentile":225},"2025-12-26",{"date":293,"score":65,"percentile":294},"2025-12-27",0.95981,{"date":296,"score":65,"percentile":297},"2025-12-28",0.95958,{"date":299,"score":65,"percentile":300},"2025-12-29",0.95959,{"date":302,"score":65,"percentile":225},"2025-12-30",{"date":304,"score":65,"percentile":305},"2025-12-31",0.95965,{"date":307,"score":65,"percentile":308},"2026-01-01",0.95999,{"date":310,"score":65,"percentile":311},"2026-01-02",0.95994,{"date":313,"score":65,"percentile":314},"2026-01-03",0.95991,{"date":316,"score":65,"percentile":286},"2026-01-04",{"date":318,"score":65,"percentile":319},"2026-01-05",0.95953,{"date":321,"score":65,"percentile":322},"2026-01-06",0.95954,{"date":324,"score":65,"percentile":322},"2026-01-07",{"date":326,"score":65,"percentile":286},"2026-01-08",{"date":328,"score":65,"percentile":300},"2026-01-09",{"date":330,"score":65,"percentile":331},"2026-01-10",0.95964,{"date":333,"score":65,"percentile":289},"2026-01-11",{"date":335,"score":65,"percentile":289},"2026-01-12",{"date":337,"score":65,"percentile":300},"2026-01-13",{"date":339,"score":65,"percentile":340},"2026-01-14",0.95966,{"date":342,"score":65,"percentile":343},"2026-01-15",0.95967,{"date":345,"score":65,"percentile":346},"2026-01-16",0.95969,{"date":348,"score":65,"percentile":349},"2026-01-17",0.95972,{"date":351,"score":65,"percentile":352},"2026-01-18",0.95975,{"date":354,"score":65,"percentile":355},"2026-01-19",0.95974,{"date":357,"score":65,"percentile":352},"2026-01-20",{"date":359,"score":65,"percentile":360},"2026-01-21",0.95976,{"date":362,"score":65,"percentile":363},"2026-01-22",0.95978,{"date":365,"score":65,"percentile":366},"2026-01-23",0.95982,{"date":368,"score":65,"percentile":369},"2026-01-24",0.95984,{"date":371,"score":65,"percentile":372},"2026-01-25",0.95987,{"date":374,"score":65,"percentile":375},"2026-01-26",0.95989,{"date":377,"score":65,"percentile":372},"2026-01-27",{"date":379,"score":65,"percentile":380},"2026-01-28",0.95988,{"date":382,"score":65,"percentile":383},"2026-01-29",0.9599,{"date":385,"score":65,"percentile":314},"2026-01-30",{"date":387,"score":65,"percentile":388},"2026-01-31",0.95993,{"date":390,"score":65,"percentile":391},"2026-02-01",0.96024,[393],{"source":68,"cvss_v2_0":394,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":66,"baseSeverity":9,"vectorString":69,"impactScore":395,"exploitabilityScore":396},10,8.6,[398],{"ecosystem":9,"name":399,"vendor":399,"product":399,"cpe_part":400,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":401},"samba","a",[402,405,407,409,411,413,415,417,419,421,423,425,427],{"version":403,"is_range":63,"range_type":404,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.2.0","cpe",{"version":406,"is_range":63,"range_type":404,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.2.1",{"version":408,"is_range":63,"range_type":404,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.2.2",{"version":410,"is_range":63,"range_type":404,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.2.3",{"version":412,"is_range":63,"range_type":404,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.2.4",{"version":414,"is_range":63,"range_type":404,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.2.5",{"version":416,"is_range":63,"range_type":404,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.2.6",{"version":418,"is_range":63,"range_type":404,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.2.7",{"version":420,"is_range":63,"range_type":404,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.2.8",{"version":422,"is_range":63,"range_type":404,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.2.9",{"version":424,"is_range":63,"range_type":404,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.2.10",{"version":426,"is_range":63,"range_type":404,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.2.11",{"version":428,"is_range":63,"range_type":404,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.2.12"]