[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2009-1888":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T14:55:33.319Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":18,"aliases":33,"duplicate_of":9,"upstream":34,"downstream":35,"duplicates":48,"related":49,"reserved_at":9,"published_at":52,"modified_at":53,"state":54,"summary":55,"references_raw":63,"kevs":163,"epss":164,"epss_history":167,"metrics":415,"affected":420},"CVE-2009-1888","The acl_group_override function in smbd/posix_acls.c in smbd in Samba 3.0.x before 3.0.35, 3.1.x and 3.2.x before 3.2.13, and 3.3.x before 3.3.6, when dos filemode is enabled, allows remote attackers to modify access control lists for files via vectors related to read access to uninitialized memory.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":9,"likelihood_of_exploit":9,"capec":17},"CWE-264","Permissions, Privileges, and Access Controls","Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control.","category","Obsolete",[],[19,28],{"_key":20,"name":21,"source":22,"url":23,"maturity":24,"reliability_score":25,"verified":26,"type":9,"platforms":27,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_FA52B478CB799F6C","Exploit Reference (samba.org)","reference","http://www.samba.org/samba/ftp/patches/security/samba-3.0.34-CVE-2009-1888.patch","unknown",0.2,false,[],{"_key":29,"name":30,"source":22,"url":31,"maturity":24,"reliability_score":25,"verified":26,"type":9,"platforms":32,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_9D8C2D99BEEDA227","Exploit Reference (securityfocus.com)","http://www.securityfocus.com/bid/35472",[],[],[],[36,38,40,42,44,46],{"_key":37},"RHSA-2009:1529",{"_key":39},"RHSA-2009:1585",{"_key":41},"OPENSUSE-SU-2024:10069-1",{"_key":43},"OPENSUSE-SU-2024:10334-1",{"_key":45},"DSA-1823-1",{"_key":47},"DEBIAN-CVE-2009-1888",[],[50,51],{"_key":41},{"_key":43},"2009-06-24T22:00:00.000Z","2024-08-07T05:27:54.782Z","Modified",{"cisa_kev":26,"cisa_ransomware":26,"cisa_vendor":9,"epss_severity":56,"epss_score":57,"severity":58,"severity_score":59,"severity_version":60,"severity_source":61,"severity_vector":62,"severity_status":54},"low",0.05392,"medium",5.8,"v2.0","nvd","AV:N/AC:M/Au:N/C:P/I:P/A:N",[64,73,79,85,89,95,100,105,109,113,118,122,128,132,137,141,145,149,154,158],{"url":65,"sources":66,"tags":68},"http://www.vupen.com/english/advisories/2009/1664",[67,61],"cve.org",[69,70,71,72],"VDB Entry","X Refsource VUPEN","Permissions Required","Third Party Advisory",{"url":74,"sources":75,"tags":76},"http://www.debian.org/security/2009/dsa-1823",[67,61],[77,78,72],"Vendor Advisory","X Refsource DEBIAN",{"url":80,"sources":81,"tags":82},"http://www.samba.org/samba/ftp/patches/security/samba-3.2.12-CVE-2009-1888.patch",[67,61],[83,84,77],"X Refsource CONFIRM","Patch",{"url":86,"sources":87,"tags":88},"http://www.samba.org/samba/security/CVE-2009-1888.html",[67,61],[83,84,77],{"url":90,"sources":91,"tags":92},"http://www.securityfocus.com/archive/1/507856/100/0/threaded",[67,61],[93,94,72,69],"Mailing List","X Refsource BUGTRAQ",{"url":96,"sources":97,"tags":98},"https://exchange.xforce.ibmcloud.com/vulnerabilities/51327",[67,61],[69,99,72],"X Refsource XF",{"url":101,"sources":102,"tags":103},"http://secunia.com/advisories/35573",[67,61],[72,104],"X Refsource SECUNIA",{"url":23,"sources":106,"tags":107},[67,61],[83,108,84,77],"Exploit",{"url":110,"sources":111,"tags":112},"http://secunia.com/advisories/35606",[67,61],[72,104],{"url":114,"sources":115,"tags":116},"http://www.slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.521591",[67,61],[77,117,72],"X Refsource SLACKWARE",{"url":31,"sources":119,"tags":120},[67,61],[69,121,108,72],"X Refsource BID",{"url":123,"sources":124,"tags":125},"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7292",[67,61],[69,126,127,72],"Signature","X Refsource OVAL",{"url":129,"sources":130,"tags":131},"http://www.samba.org/samba/ftp/patches/security/samba-3.3.5-CVE-2009-1888.patch",[67,61],[83,84,77],{"url":133,"sources":134,"tags":135},"http://www.ubuntu.com/usn/USN-839-1",[67,61],[77,136,72],"X Refsource UBUNTU",{"url":138,"sources":139,"tags":140},"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10790",[67,61],[69,126,127,72],{"url":142,"sources":143,"tags":144},"http://secunia.com/advisories/35539",[67,61],[72,104],{"url":146,"sources":147,"tags":148},"http://secunia.com/advisories/36918",[67,61],[72,104],{"url":150,"sources":151,"tags":152},"http://www.mandriva.com/security/advisories?name=MDVSA-2009:196",[67,61],[77,153,72],"X Refsource MANDRIVA",{"url":155,"sources":156,"tags":157},"http://wiki.rpath.com/Advisories:rPSA-2009-0145",[67,61],[83,72],{"url":159,"sources":160,"tags":161},"http://www.securitytracker.com/id?1022442",[67,61],[69,162,72],"X Refsource SECTRACK",[],{"date":165,"score":57,"percentile":166},"2026-06-04",0.90286,[168,171,174,177,180,183,186,189,191,194,197,200,203,206,208,211,214,217,220,223,225,228,231,234,236,238,241,243,246,249,251,254,257,260,262,264,267,270,273,276,279,282,284,286,289,292,295,298,301,304,307,310,313,316,319,322,325,328,331,334,337,339,342,345,347,349,352,355,358,360,362,364,367,370,373,376,378,381,383,386,389,392,395,397,399,402,405,407,410,412],{"date":169,"score":57,"percentile":170},"2025-11-04",0.89662,{"date":172,"score":57,"percentile":173},"2025-11-05",0.89661,{"date":175,"score":57,"percentile":176},"2025-11-06",0.89658,{"date":178,"score":57,"percentile":179},"2025-11-07",0.89664,{"date":181,"score":57,"percentile":182},"2025-11-08",0.89667,{"date":184,"score":57,"percentile":185},"2025-11-09",0.89665,{"date":187,"score":57,"percentile":188},"2025-11-10",0.89663,{"date":190,"score":57,"percentile":173},"2025-11-11",{"date":192,"score":57,"percentile":193},"2025-11-12",0.8967,{"date":195,"score":57,"percentile":196},"2025-11-13",0.89672,{"date":198,"score":57,"percentile":199},"2025-11-14",0.89675,{"date":201,"score":57,"percentile":202},"2025-11-15",0.89673,{"date":204,"score":57,"percentile":205},"2025-11-16",0.89676,{"date":207,"score":57,"percentile":202},"2025-11-17",{"date":209,"score":57,"percentile":210},"2025-11-18",0.89134,{"date":212,"score":57,"percentile":213},"2025-11-19",0.89138,{"date":215,"score":57,"percentile":216},"2025-11-20",0.8914,{"date":218,"score":57,"percentile":219},"2025-11-21",0.89683,{"date":221,"score":57,"percentile":222},"2025-11-22",0.89685,{"date":224,"score":57,"percentile":219},"2025-11-23",{"date":226,"score":57,"percentile":227},"2025-11-24",0.89686,{"date":229,"score":57,"percentile":230},"2025-11-25",0.89692,{"date":232,"score":57,"percentile":233},"2025-11-26",0.89693,{"date":235,"score":57,"percentile":233},"2025-11-27",{"date":237,"score":57,"percentile":222},"2025-11-28",{"date":239,"score":57,"percentile":240},"2025-11-29",0.89748,{"date":242,"score":57,"percentile":240},"2025-11-30",{"date":244,"score":57,"percentile":245},"2025-12-01",0.89806,{"date":247,"score":57,"percentile":248},"2025-12-02",0.89809,{"date":250,"score":57,"percentile":248},"2025-12-03",{"date":252,"score":57,"percentile":253},"2025-12-04",0.8975,{"date":255,"score":57,"percentile":256},"2025-12-05",0.89752,{"date":258,"score":57,"percentile":259},"2025-12-06",0.89751,{"date":261,"score":57,"percentile":240},"2025-12-07",{"date":263,"score":57,"percentile":240},"2025-12-08",{"date":265,"score":57,"percentile":266},"2025-12-09",0.89753,{"date":268,"score":57,"percentile":269},"2025-12-10",0.89764,{"date":271,"score":57,"percentile":272},"2025-12-11",0.89767,{"date":274,"score":57,"percentile":275},"2025-12-12",0.89773,{"date":277,"score":57,"percentile":278},"2025-12-13",0.89777,{"date":280,"score":57,"percentile":281},"2025-12-14",0.89778,{"date":283,"score":57,"percentile":281},"2025-12-15",{"date":285,"score":57,"percentile":275},"2025-12-16",{"date":287,"score":57,"percentile":288},"2025-12-17",0.89779,{"date":290,"score":57,"percentile":291},"2025-12-18",0.89786,{"date":293,"score":57,"percentile":294},"2025-12-19",0.89788,{"date":296,"score":57,"percentile":297},"2025-12-20",0.89787,{"date":299,"score":57,"percentile":300},"2025-12-21",0.89794,{"date":302,"score":57,"percentile":303},"2025-12-22",0.89795,{"date":305,"score":57,"percentile":306},"2025-12-23",0.89799,{"date":308,"score":57,"percentile":309},"2025-12-24",0.89804,{"date":311,"score":57,"percentile":312},"2025-12-25",0.89818,{"date":314,"score":57,"percentile":315},"2025-12-26",0.89815,{"date":317,"score":57,"percentile":318},"2025-12-27",0.89862,{"date":320,"score":57,"percentile":321},"2025-12-28",0.8981,{"date":323,"score":57,"percentile":324},"2025-12-29",0.89807,{"date":326,"score":57,"percentile":327},"2025-12-30",0.89814,{"date":329,"score":57,"percentile":330},"2025-12-31",0.89821,{"date":332,"score":57,"percentile":333},"2026-01-01",0.89889,{"date":335,"score":57,"percentile":336},"2026-01-02",0.89883,{"date":338,"score":57,"percentile":336},"2026-01-03",{"date":340,"score":57,"percentile":341},"2026-01-04",0.89819,{"date":343,"score":57,"percentile":344},"2026-01-05",0.89816,{"date":346,"score":57,"percentile":312},"2026-01-06",{"date":348,"score":57,"percentile":330},"2026-01-07",{"date":350,"score":57,"percentile":351},"2026-01-08",0.89825,{"date":353,"score":57,"percentile":354},"2026-01-09",0.89827,{"date":356,"score":57,"percentile":357},"2026-01-10",0.89828,{"date":359,"score":57,"percentile":341},"2026-01-11",{"date":361,"score":57,"percentile":312},"2026-01-12",{"date":363,"score":57,"percentile":344},"2026-01-13",{"date":365,"score":57,"percentile":366},"2026-01-14",0.8983,{"date":368,"score":57,"percentile":369},"2026-01-15",0.89834,{"date":371,"score":57,"percentile":372},"2026-01-16",0.89838,{"date":374,"score":57,"percentile":375},"2026-01-17",0.89837,{"date":377,"score":57,"percentile":369},"2026-01-18",{"date":379,"score":57,"percentile":380},"2026-01-19",0.89833,{"date":382,"score":57,"percentile":369},"2026-01-20",{"date":384,"score":57,"percentile":385},"2026-01-21",0.89836,{"date":387,"score":57,"percentile":388},"2026-01-22",0.89839,{"date":390,"score":57,"percentile":391},"2026-01-23",0.89848,{"date":393,"score":57,"percentile":394},"2026-01-24",0.89853,{"date":396,"score":57,"percentile":394},"2026-01-25",{"date":398,"score":57,"percentile":394},"2026-01-26",{"date":400,"score":57,"percentile":401},"2026-01-27",0.89857,{"date":403,"score":57,"percentile":404},"2026-01-28",0.89864,{"date":406,"score":57,"percentile":404},"2026-01-29",{"date":408,"score":57,"percentile":409},"2026-01-30",0.89863,{"date":411,"score":57,"percentile":409},"2026-01-31",{"date":413,"score":57,"percentile":414},"2026-02-01",0.89927,[416],{"source":61,"cvss_v2_0":417,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":59,"baseSeverity":9,"vectorString":62,"impactScore":418,"exploitabilityScore":419},4.9,8.6,[421,436,445],{"ecosystem":9,"name":422,"vendor":423,"product":424,"cpe_part":425,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":426},"ubuntu linux","canonical","ubuntu_linux","o",[427,430,432,434],{"version":428,"is_range":26,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.06","cpe",{"version":431,"is_range":26,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.04",{"version":433,"is_range":26,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.10",{"version":435,"is_range":26,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.04",{"ecosystem":9,"name":437,"vendor":438,"product":439,"cpe_part":425,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":440},"debian linux","debian","debian_linux",[441,443],{"version":442,"is_range":26,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0",{"version":444,"is_range":26,"range_type":429,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.0",{"ecosystem":9,"name":446,"vendor":446,"product":446,"cpe_part":447,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":448},"samba","a",[449,455,460],{"version":450,"is_range":451,"range_type":429,"version_start":452,"version_start_type":453,"version_end":454,"version_end_type":453,"fixed_in":9},"gte3.0.31_lte3.0.35",true,"3.0.31","including","3.0.35",{"version":456,"is_range":451,"range_type":429,"version_start":457,"version_start_type":453,"version_end":458,"version_end_type":459,"fixed_in":9},"gte3.2.0_lt3.2.13","3.2.0","3.2.13","excluding",{"version":461,"is_range":451,"range_type":429,"version_start":462,"version_start_type":453,"version_end":463,"version_end_type":459,"fixed_in":9},"gte3.3.0_lt3.3.6","3.3.0","3.3.6"]