[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2012-3406":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T20:53:33.271Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":18,"aliases":19,"duplicate_of":9,"upstream":20,"downstream":21,"duplicates":38,"related":39,"reserved_at":9,"published_at":42,"modified_at":43,"state":44,"summary":45,"references_raw":54,"kevs":99,"epss":100,"epss_history":103,"metrics":366,"affected":371},"CVE-2012-3406","The vfprintf function in stdio-common/vfprintf.c in GNU C Library (aka glibc) 2.5, 2.12, and probably other versions does not \"properly restrict the use of\" the alloca function when allocating the SPECS array, which allows context-dependent attackers to bypass the FORTIFY_SOURCE format-string protection mechanism and cause a denial of service (crash) or possibly execute arbitrary code via a crafted format string using positional parameters and a large number of format specifiers, a different vulnerability than CVE-2012-3404 and CVE-2012-3405.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":9,"likelihood_of_exploit":9,"capec":17},"CWE-264","Permissions, Privileges, and Access Controls","Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control.","category","Obsolete",[],[],[],[],[22,24,26,28,30,32,34,36],{"_key":23},"RHSA-2012:1097",{"_key":25},"RHSA-2012:1098",{"_key":27},"RHSA-2012:1200",{"_key":29},"OPENSUSE-SU-2024:10154-1",{"_key":31},"DLA-165-1",{"_key":33},"DSA-3169-1",{"_key":35},"MGASA-2015-0013",{"_key":37},"DEBIAN-CVE-2012-3406",[],[40,41],{"_key":29},{"_key":35},"2014-02-10T17:00:00.000Z","2024-08-06T20:05:12.465Z","Modified",{"cisa_kev":46,"cisa_ransomware":46,"cisa_vendor":9,"epss_severity":47,"epss_score":48,"severity":49,"severity_score":50,"severity_version":51,"severity_source":52,"severity_vector":53,"severity_status":44},false,"low",0.00869,"medium",6.8,"v2.0","nvd","AV:N/AC:M/Au:N/C:P/I:P/A:P",[55,62,67,71,76,80,85,89,95],{"url":56,"sources":57,"tags":59},"http://rhn.redhat.com/errata/RHSA-2012-1200.html",[58,52],"cve.org",[60,61],"Vendor Advisory","X Refsource REDHAT",{"url":63,"sources":64,"tags":65},"https://bugzilla.redhat.com/show_bug.cgi?id=826943",[58,52],[66],"X Refsource CONFIRM",{"url":68,"sources":69,"tags":70},"http://rhn.redhat.com/errata/RHSA-2012-1097.html",[58,52],[60,61],{"url":72,"sources":73,"tags":74},"https://security.gentoo.org/glsa/201503-04",[58,52],[60,75],"X Refsource GENTOO",{"url":77,"sources":78,"tags":79},"http://rhn.redhat.com/errata/RHSA-2012-1098.html",[58,52],[60,61],{"url":81,"sources":82,"tags":83},"http://www.ubuntu.com/usn/USN-1589-1",[58,52],[60,84],"X Refsource UBUNTU",{"url":86,"sources":87,"tags":88},"http://rhn.redhat.com/errata/RHSA-2012-1185.html",[58,52],[60,61],{"url":90,"sources":91,"tags":92},"http://www.openwall.com/lists/oss-security/2012/07/11/17",[58,52],[93,94],"Mailing List","X Refsource MLIST",{"url":96,"sources":97,"tags":98},"https://bugzilla.redhat.com/attachment.cgi?id=594722",[58,52],[66],[],{"date":101,"score":48,"percentile":102},"2026-06-04",0.75534,[104,107,110,113,116,119,122,125,128,130,133,136,139,142,145,148,151,154,157,160,163,166,169,171,173,176,179,181,184,187,190,193,195,197,199,201,204,207,210,213,216,219,222,225,228,231,234,237,240,243,246,248,251,254,258,261,264,267,270,273,276,279,282,285,288,291,294,297,300,303,306,309,312,315,318,321,324,327,330,333,336,339,342,345,348,351,354,357,360,363],{"date":105,"score":48,"percentile":106},"2025-11-04",0.74432,{"date":108,"score":48,"percentile":109},"2025-11-05",0.74422,{"date":111,"score":48,"percentile":112},"2025-11-06",0.74421,{"date":114,"score":48,"percentile":115},"2025-11-07",0.74438,{"date":117,"score":48,"percentile":118},"2025-11-08",0.74435,{"date":120,"score":48,"percentile":121},"2025-11-09",0.74431,{"date":123,"score":48,"percentile":124},"2025-11-10",0.74416,{"date":126,"score":48,"percentile":127},"2025-11-11",0.74419,{"date":129,"score":48,"percentile":115},"2025-11-12",{"date":131,"score":48,"percentile":132},"2025-11-13",0.74445,{"date":134,"score":48,"percentile":135},"2025-11-14",0.7445,{"date":137,"score":48,"percentile":138},"2025-11-15",0.74447,{"date":140,"score":48,"percentile":141},"2025-11-16",0.74446,{"date":143,"score":48,"percentile":144},"2025-11-17",0.7444,{"date":146,"score":48,"percentile":147},"2025-11-18",0.73183,{"date":149,"score":48,"percentile":150},"2025-11-19",0.73191,{"date":152,"score":48,"percentile":153},"2025-11-20",0.73199,{"date":155,"score":48,"percentile":156},"2025-11-21",0.74463,{"date":158,"score":48,"percentile":159},"2025-11-22",0.74454,{"date":161,"score":48,"percentile":162},"2025-11-23",0.74441,{"date":164,"score":48,"percentile":165},"2025-11-24",0.74437,{"date":167,"score":48,"percentile":168},"2025-11-25",0.74439,{"date":170,"score":48,"percentile":132},"2025-11-26",{"date":172,"score":48,"percentile":138},"2025-11-27",{"date":174,"score":48,"percentile":175},"2025-11-28",0.74436,{"date":177,"score":48,"percentile":178},"2025-11-29",0.74433,{"date":180,"score":48,"percentile":121},"2025-11-30",{"date":182,"score":48,"percentile":183},"2025-12-01",0.74561,{"date":185,"score":48,"percentile":186},"2025-12-02",0.74567,{"date":188,"score":48,"percentile":189},"2025-12-03",0.74557,{"date":191,"score":48,"percentile":192},"2025-12-04",0.74426,{"date":194,"score":48,"percentile":118},"2025-12-05",{"date":196,"score":48,"percentile":115},"2025-12-06",{"date":198,"score":48,"percentile":175},"2025-12-07",{"date":200,"score":48,"percentile":144},"2025-12-08",{"date":202,"score":48,"percentile":203},"2025-12-09",0.74467,{"date":205,"score":48,"percentile":206},"2025-12-10",0.74496,{"date":208,"score":48,"percentile":209},"2025-12-11",0.74511,{"date":211,"score":48,"percentile":212},"2025-12-12",0.74534,{"date":214,"score":48,"percentile":215},"2025-12-13",0.74541,{"date":217,"score":48,"percentile":218},"2025-12-14",0.7454,{"date":220,"score":48,"percentile":221},"2025-12-15",0.74544,{"date":223,"score":48,"percentile":224},"2025-12-16",0.74555,{"date":226,"score":48,"percentile":227},"2025-12-17",0.74565,{"date":229,"score":48,"percentile":230},"2025-12-18",0.74588,{"date":232,"score":48,"percentile":233},"2025-12-19",0.74604,{"date":235,"score":48,"percentile":236},"2025-12-20",0.74601,{"date":238,"score":48,"percentile":239},"2025-12-21",0.74595,{"date":241,"score":48,"percentile":242},"2025-12-22",0.74594,{"date":244,"score":48,"percentile":245},"2025-12-23",0.7459,{"date":247,"score":48,"percentile":236},"2025-12-24",{"date":249,"score":48,"percentile":250},"2025-12-25",0.74628,{"date":252,"score":48,"percentile":253},"2025-12-26",0.74624,{"date":255,"score":256,"percentile":257},"2025-12-27",0.01133,0.77912,{"date":259,"score":48,"percentile":260},"2025-12-28",0.74606,{"date":262,"score":48,"percentile":263},"2025-12-29",0.74603,{"date":265,"score":48,"percentile":266},"2025-12-30",0.74617,{"date":268,"score":48,"percentile":269},"2025-12-31",0.74644,{"date":271,"score":48,"percentile":272},"2026-01-01",0.74786,{"date":274,"score":48,"percentile":275},"2026-01-02",0.74787,{"date":277,"score":48,"percentile":278},"2026-01-03",0.74788,{"date":280,"score":48,"percentile":281},"2026-01-04",0.74654,{"date":283,"score":48,"percentile":284},"2026-01-05",0.74646,{"date":286,"score":48,"percentile":287},"2026-01-06",0.74662,{"date":289,"score":48,"percentile":290},"2026-01-07",0.74671,{"date":292,"score":48,"percentile":293},"2026-01-08",0.74686,{"date":295,"score":48,"percentile":296},"2026-01-09",0.74691,{"date":298,"score":48,"percentile":299},"2026-01-10",0.7469,{"date":301,"score":48,"percentile":302},"2026-01-11",0.74677,{"date":304,"score":48,"percentile":305},"2026-01-12",0.74664,{"date":307,"score":48,"percentile":308},"2026-01-13",0.74663,{"date":310,"score":48,"percentile":311},"2026-01-14",0.74688,{"date":313,"score":48,"percentile":314},"2026-01-15",0.74695,{"date":316,"score":48,"percentile":317},"2026-01-16",0.7471,{"date":319,"score":48,"percentile":320},"2026-01-17",0.74709,{"date":322,"score":48,"percentile":323},"2026-01-18",0.74692,{"date":325,"score":48,"percentile":326},"2026-01-19",0.74682,{"date":328,"score":48,"percentile":329},"2026-01-20",0.74687,{"date":331,"score":48,"percentile":332},"2026-01-21",0.74693,{"date":334,"score":48,"percentile":335},"2026-01-22",0.74698,{"date":337,"score":48,"percentile":338},"2026-01-23",0.74726,{"date":340,"score":48,"percentile":341},"2026-01-24",0.74734,{"date":343,"score":48,"percentile":344},"2026-01-25",0.74717,{"date":346,"score":48,"percentile":347},"2026-01-26",0.74715,{"date":349,"score":48,"percentile":350},"2026-01-27",0.74725,{"date":352,"score":48,"percentile":353},"2026-01-28",0.74732,{"date":355,"score":48,"percentile":356},"2026-01-29",0.74729,{"date":358,"score":48,"percentile":359},"2026-01-30",0.74731,{"date":361,"score":48,"percentile":362},"2026-01-31",0.74735,{"date":364,"score":48,"percentile":365},"2026-02-01",0.74852,[367],{"source":52,"cvss_v2_0":368,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":50,"baseSeverity":9,"vectorString":53,"impactScore":369,"exploitabilityScore":370},6.4,8.6,[372,389,398,407],{"ecosystem":9,"name":373,"vendor":374,"product":375,"cpe_part":376,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":377},"ubuntu linux","canonical","ubuntu_linux","o",[378,381,383,385,387],{"version":379,"is_range":46,"range_type":380,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.04","cpe",{"version":382,"is_range":46,"range_type":380,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.04",{"version":384,"is_range":46,"range_type":380,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.04",{"version":386,"is_range":46,"range_type":380,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.10",{"version":388,"is_range":46,"range_type":380,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"12.04",{"ecosystem":9,"name":390,"vendor":391,"product":390,"cpe_part":392,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":393},"glibc","gnu","a",[394,396],{"version":395,"is_range":46,"range_type":380,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.5",{"version":397,"is_range":46,"range_type":380,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.12",{"ecosystem":9,"name":399,"vendor":400,"product":401,"cpe_part":376,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":402},"enterprise linux","redhat","enterprise_linux",[403,405],{"version":404,"is_range":46,"range_type":380,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5",{"version":406,"is_range":46,"range_type":380,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0",{"ecosystem":9,"name":408,"vendor":400,"product":409,"cpe_part":392,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":410},"enterprise virtualization","enterprise_virtualization",[411],{"version":412,"is_range":46,"range_type":380,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.0"]