[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2009-3302":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":62,"aliases":63,"duplicate_of":9,"upstream":64,"downstream":65,"duplicates":72,"related":73,"reserved_at":9,"published_at":74,"modified_at":75,"state":76,"summary":77,"references_raw":85,"kevs":205,"epss":206,"epss_history":209,"metrics":435,"affected":440},"CVE-2009-3302","filter/ww8/ww8par2.cxx in OpenOffice.org (OOo) before 3.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted sprmTSetBrc table property modifier in a Word document, related to a \"boundary error flaw.\"",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-94","Improper Control of Generation of Code ('Code Injection')","The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.","weakness","Draft","Base","Medium",[20,24,58],{"id":21,"name":22,"techniques":23},"CAPEC-242","Code Injection",[],{"id":25,"name":26,"techniques":27},"CAPEC-35","Leverage Executable Code in Non-Executable Files",[28,39,46],{"id":29,"name":30,"tactics":31,"countermeasures":38},"T1027.006","HTML Smuggling",[32,35],{"id":33,"name":34},"TA0030","Defense Evasion",{"id":36,"name":37},"TA0005","Stealth",[],{"id":40,"name":41,"tactics":42,"countermeasures":45},"T1027.009","Embedded Payloads",[43,44],{"id":33,"name":34},{"id":36,"name":37},[],{"id":47,"name":48,"tactics":49,"countermeasures":52},"T1564.009","Resource Forking",[50,51],{"id":33,"name":34},{"id":36,"name":37},[53],{"id":54,"name":55,"tactic":56},"D3-FFV","File Format Verification",{"name":57},"Isolate",{"id":59,"name":60,"techniques":61},"CAPEC-77","Manipulating User-Controlled Variables",[],[],[],[],[66,68,70],{"_key":67},"RHSA-2010:0101",{"_key":69},"DSA-1995-1",{"_key":71},"DTSA-205-1",[],[],"2010-02-16T19:00:00.000Z","2024-08-07T06:22:24.239Z","Modified",{"cisa_kev":78,"cisa_ransomware":78,"cisa_vendor":9,"epss_severity":79,"epss_score":80,"severity":79,"severity_score":81,"severity_version":82,"severity_source":83,"severity_vector":84,"severity_status":76},false,"high",0.42759,9.3,"v2.0","nvd","AV:N/AC:M/Au:N/C:C/I:C/A:C",[86,94,100,105,109,114,120,125,131,136,140,144,148,153,157,161,166,170,174,180,185,190,194,198],{"url":87,"sources":88,"tags":90},"http://www.mandriva.com/security/advisories?name=MDVSA-2010:221",[89,83],"cve.org",[91,92,93],"Vendor Advisory","X Refsource MANDRIVA","Broken Link",{"url":95,"sources":96,"tags":97},"http://secunia.com/advisories/60799",[89,83],[98,99,93],"Third Party Advisory","X Refsource SECUNIA",{"url":101,"sources":102,"tags":103},"http://www.gentoo.org/security/en/glsa/glsa-201408-19.xml",[89,83],[91,104,98],"X Refsource GENTOO",{"url":106,"sources":107,"tags":108},"http://secunia.com/advisories/38695",[89,83],[98,99,93],{"url":110,"sources":111,"tags":112},"http://www.debian.org/security/2010/dsa-1995",[89,83],[91,113,98],"X Refsource DEBIAN",{"url":115,"sources":116,"tags":117},"https://bugzilla.redhat.com/show_bug.cgi?id=533043",[89,83],[118,119,98],"X Refsource CONFIRM","Issue Tracking",{"url":121,"sources":122,"tags":123},"http://www.ubuntu.com/usn/USN-903-1",[89,83],[91,124,98],"X Refsource UBUNTU",{"url":126,"sources":127,"tags":128},"http://www.vupen.com/english/advisories/2010/0366",[89,83],[129,130,93],"VDB Entry","X Refsource VUPEN",{"url":132,"sources":133,"tags":134},"http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00005.html",[89,83],[91,135,98],"X Refsource SUSE",{"url":137,"sources":138,"tags":139},"http://secunia.com/advisories/38567",[89,83],[98,99,93],{"url":141,"sources":142,"tags":143},"http://www.openoffice.org/security/cves/CVE-2009-3301-3302.html",[89,83],[118,91],{"url":145,"sources":146,"tags":147},"http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html",[89,83],[118,98],{"url":149,"sources":150,"tags":151},"http://www.securityfocus.com/bid/38218",[89,83],[129,152,93,98],"X Refsource BID",{"url":154,"sources":155,"tags":156},"http://www.vupen.com/english/advisories/2010/0635",[89,83],[129,130,93],{"url":158,"sources":159,"tags":160},"http://secunia.com/advisories/38568",[89,83],[98,99,93],{"url":162,"sources":163,"tags":164},"http://securitytracker.com/id?1023591",[89,83],[129,165,93,98],"X Refsource SECTRACK",{"url":167,"sources":168,"tags":169},"http://www.openoffice.org/security/bulletin.html",[89,83],[118,91],{"url":171,"sources":172,"tags":173},"http://secunia.com/advisories/41818",[89,83],[98,99,93],{"url":175,"sources":176,"tags":177},"http://www.us-cert.gov/cas/techalerts/TA10-287A.html",[89,83],[98,178,179],"X Refsource CERT","US Government Resource",{"url":181,"sources":182,"tags":183},"https://exchange.xforce.ibmcloud.com/vulnerabilities/56241",[89,83],[129,184,98],"X Refsource XF",{"url":186,"sources":187,"tags":188},"http://www.redhat.com/support/errata/RHSA-2010-0101.html",[89,83],[91,189,93],"X Refsource REDHAT",{"url":191,"sources":192,"tags":193},"http://secunia.com/advisories/38921",[89,83],[98,99,93],{"url":195,"sources":196,"tags":197},"http://www.vupen.com/english/advisories/2010/2905",[89,83],[129,130,93],{"url":199,"sources":200,"tags":201},"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10022",[89,83],[129,202,203,204],"Signature","X Refsource OVAL","Tool Signature",[],{"date":207,"score":80,"percentile":208},"2026-06-04",0.97545,[210,213,216,218,221,223,225,227,229,232,235,237,239,241,243,246,249,252,254,256,258,260,262,264,266,268,270,272,275,278,280,282,284,286,288,290,292,295,298,301,304,306,308,311,314,317,320,322,324,326,328,331,334,337,340,342,344,346,349,352,354,357,360,363,366,368,371,374,376,379,382,385,387,390,393,395,397,400,402,405,408,410,413,416,419,422,424,427,429,432],{"date":211,"score":80,"percentile":212},"2025-11-04",0.97314,{"date":214,"score":80,"percentile":215},"2025-11-05",0.97315,{"date":217,"score":80,"percentile":212},"2025-11-06",{"date":219,"score":80,"percentile":220},"2025-11-07",0.97316,{"date":222,"score":80,"percentile":215},"2025-11-08",{"date":224,"score":80,"percentile":215},"2025-11-09",{"date":226,"score":80,"percentile":215},"2025-11-10",{"date":228,"score":80,"percentile":215},"2025-11-11",{"date":230,"score":80,"percentile":231},"2025-11-12",0.97317,{"date":233,"score":80,"percentile":234},"2025-11-13",0.97318,{"date":236,"score":80,"percentile":234},"2025-11-14",{"date":238,"score":80,"percentile":215},"2025-11-15",{"date":240,"score":80,"percentile":215},"2025-11-16",{"date":242,"score":80,"percentile":220},"2025-11-17",{"date":244,"score":80,"percentile":245},"2025-11-18",0.97319,{"date":247,"score":80,"percentile":248},"2025-11-19",0.9732,{"date":250,"score":80,"percentile":251},"2025-11-20",0.97321,{"date":253,"score":80,"percentile":231},"2025-11-21",{"date":255,"score":80,"percentile":231},"2025-11-22",{"date":257,"score":80,"percentile":231},"2025-11-23",{"date":259,"score":80,"percentile":248},"2025-11-24",{"date":261,"score":80,"percentile":245},"2025-11-25",{"date":263,"score":80,"percentile":245},"2025-11-26",{"date":265,"score":80,"percentile":251},"2025-11-27",{"date":267,"score":80,"percentile":251},"2025-11-28",{"date":269,"score":80,"percentile":234},"2025-11-29",{"date":271,"score":80,"percentile":220},"2025-11-30",{"date":273,"score":80,"percentile":274},"2025-12-01",0.97339,{"date":276,"score":80,"percentile":277},"2025-12-02",0.9734,{"date":279,"score":80,"percentile":277},"2025-12-03",{"date":281,"score":80,"percentile":234},"2025-12-04",{"date":283,"score":80,"percentile":231},"2025-12-05",{"date":285,"score":80,"percentile":234},"2025-12-06",{"date":287,"score":80,"percentile":245},"2025-12-07",{"date":289,"score":80,"percentile":248},"2025-12-08",{"date":291,"score":80,"percentile":245},"2025-12-09",{"date":293,"score":80,"percentile":294},"2025-12-10",0.97324,{"date":296,"score":80,"percentile":297},"2025-12-11",0.97326,{"date":299,"score":80,"percentile":300},"2025-12-12",0.97327,{"date":302,"score":80,"percentile":303},"2025-12-13",0.97328,{"date":305,"score":80,"percentile":294},"2025-12-14",{"date":307,"score":80,"percentile":300},"2025-12-15",{"date":309,"score":80,"percentile":310},"2025-12-16",0.9733,{"date":312,"score":80,"percentile":313},"2025-12-17",0.97332,{"date":315,"score":80,"percentile":316},"2025-12-18",0.97334,{"date":318,"score":80,"percentile":319},"2025-12-19",0.97336,{"date":321,"score":80,"percentile":316},"2025-12-20",{"date":323,"score":80,"percentile":313},"2025-12-21",{"date":325,"score":80,"percentile":313},"2025-12-22",{"date":327,"score":80,"percentile":313},"2025-12-23",{"date":329,"score":80,"percentile":330},"2025-12-24",0.97333,{"date":332,"score":80,"percentile":333},"2025-12-25",0.97335,{"date":335,"score":80,"percentile":336},"2025-12-26",0.97337,{"date":338,"score":80,"percentile":339},"2025-12-27",0.97358,{"date":341,"score":80,"percentile":336},"2025-12-28",{"date":343,"score":80,"percentile":274},"2025-12-29",{"date":345,"score":80,"percentile":274},"2025-12-30",{"date":347,"score":80,"percentile":348},"2025-12-31",0.97342,{"date":350,"score":80,"percentile":351},"2026-01-01",0.97366,{"date":353,"score":80,"percentile":351},"2026-01-02",{"date":355,"score":80,"percentile":356},"2026-01-03",0.97365,{"date":358,"score":80,"percentile":359},"2026-01-04",0.97345,{"date":361,"score":80,"percentile":362},"2026-01-05",0.97344,{"date":364,"score":80,"percentile":365},"2026-01-06",0.97347,{"date":367,"score":80,"percentile":365},"2026-01-07",{"date":369,"score":80,"percentile":370},"2026-01-08",0.97349,{"date":372,"score":80,"percentile":373},"2026-01-09",0.97352,{"date":375,"score":80,"percentile":373},"2026-01-10",{"date":377,"score":80,"percentile":378},"2026-01-11",0.9735,{"date":380,"score":80,"percentile":381},"2026-01-12",0.97351,{"date":383,"score":80,"percentile":384},"2026-01-13",0.97353,{"date":386,"score":80,"percentile":339},"2026-01-14",{"date":388,"score":80,"percentile":389},"2026-01-15",0.97359,{"date":391,"score":80,"percentile":392},"2026-01-16",0.97361,{"date":394,"score":80,"percentile":392},"2026-01-17",{"date":396,"score":80,"percentile":339},"2026-01-18",{"date":398,"score":80,"percentile":399},"2026-01-19",0.9736,{"date":401,"score":80,"percentile":392},"2026-01-20",{"date":403,"score":80,"percentile":404},"2026-01-21",0.97362,{"date":406,"score":80,"percentile":407},"2026-01-22",0.97363,{"date":409,"score":80,"percentile":351},"2026-01-23",{"date":411,"score":80,"percentile":412},"2026-01-24",0.97367,{"date":414,"score":80,"percentile":415},"2026-01-25",0.97368,{"date":417,"score":80,"percentile":418},"2026-01-26",0.97369,{"date":420,"score":80,"percentile":421},"2026-01-27",0.9737,{"date":423,"score":80,"percentile":421},"2026-01-28",{"date":425,"score":80,"percentile":426},"2026-01-29",0.97371,{"date":428,"score":80,"percentile":421},"2026-01-30",{"date":430,"score":80,"percentile":431},"2026-01-31",0.97372,{"date":433,"score":80,"percentile":434},"2026-02-01",0.97394,[436],{"source":83,"cvss_v2_0":437,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":81,"baseSeverity":9,"vectorString":84,"impactScore":438,"exploitabilityScore":439},10,8.6,[441,452,466],{"ecosystem":9,"name":442,"vendor":443,"product":442,"cpe_part":444,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":445},"openoffice","apache","a",[446],{"version":447,"is_range":448,"range_type":449,"version_start":9,"version_start_type":9,"version_end":450,"version_end_type":451,"fixed_in":9},"lt3.2.0",true,"cpe","3.2.0","excluding",{"ecosystem":9,"name":453,"vendor":454,"product":455,"cpe_part":456,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":457},"ubuntu linux","canonical","ubuntu_linux","o",[458,460,462,464],{"version":459,"is_range":78,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.04",{"version":461,"is_range":78,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.10",{"version":463,"is_range":78,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.04",{"version":465,"is_range":78,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.10",{"ecosystem":9,"name":467,"vendor":468,"product":469,"cpe_part":456,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":470},"debian linux","debian","debian_linux",[471,473],{"version":472,"is_range":78,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0",{"version":474,"is_range":78,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.0"]