[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2012-4929":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T20:53:33.271Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":18,"aliases":19,"duplicate_of":9,"upstream":20,"downstream":21,"duplicates":52,"related":53,"reserved_at":9,"published_at":63,"modified_at":64,"state":65,"summary":66,"references_raw":74,"kevs":229,"epss":230,"epss_history":233,"metrics":499,"affected":504},"CVE-2012-4929","The TLS protocol 1.2 and earlier, as used in Mozilla Firefox, Google Chrome, Qt, and other products, can encrypt compressed data without properly obfuscating the length of the unencrypted data, which allows man-in-the-middle attackers to obtain plaintext HTTP headers by observing length differences during a series of guesses in which a string in an HTTP request potentially matches an unknown string in an HTTP header, aka a \"CRIME\" attack.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":9,"likelihood_of_exploit":9,"capec":17},"CWE-310","Cryptographic Issues","Weaknesses in this category are related to the design and implementation of data confidentiality and integrity. Frequently these deal with the use of encoding techniques, encryption libraries, and hashing algorithms. The weaknesses in this category could lead to a degradation of the quality data if they are not addressed.","category","Draft",[],[],[],[],[22,24,26,28,30,32,34,36,38,40,42,44,46,48,50],{"_key":23},"OPENSUSE-SU-2024:11127-1",{"_key":25},"OPENSUSE-SU-2024:10235-1",{"_key":27},"OPENSUSE-SU-2024:10263-1",{"_key":29},"OPENSUSE-SU-2024:10329-1",{"_key":31},"OPENSUSE-SU-2024:10531-1",{"_key":33},"DLA-0008-1",{"_key":35},"DLA-400-1",{"_key":37},"DSA-2579-1",{"_key":39},"DSA-2626-1",{"_key":41},"DSA-2627-1",{"_key":43},"DSA-3253-1",{"_key":45},"DEBIAN-CVE-2012-4929",{"_key":47},"RHSA-2013:0587",{"_key":49},"RHSA-2013:0636",{"_key":51},"RHSA-2014:0416",[],[54,55,56,57,58,59,61],{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":60},"CGA-3GMG-9RQ9-3VFP",{"_key":62},"CGA-52R6-W4JX-4R32","2012-09-15T18:00:00.000Z","2024-08-06T20:50:18.019Z","Modified",{"cisa_kev":67,"cisa_ransomware":67,"cisa_vendor":9,"epss_severity":68,"epss_score":69,"severity":68,"severity_score":70,"severity_version":71,"severity_source":72,"severity_vector":73,"severity_status":65},false,"low",0.08487,2.6,"v2.0","nvd","AV:N/AC:H/Au:N/C:P/I:N/A:N",[75,82,87,92,97,101,106,111,116,121,125,129,133,137,141,145,149,153,157,162,168,172,176,180,187,191,196,200,204,208,212,216,220,225],{"url":76,"sources":77,"tags":79},"http://marc.info/?l=bugtraq&m=136612293908376&w=2",[78,72],"cve.org",[80,81],"Vendor Advisory","X Refsource HP",{"url":83,"sources":84,"tags":85},"http://rhn.redhat.com/errata/RHSA-2013-0587.html",[78,72],[80,86],"X Refsource REDHAT",{"url":88,"sources":89,"tags":90},"http://www.debian.org/security/2012/dsa-2579",[78,72],[80,91],"X Refsource DEBIAN",{"url":93,"sources":94,"tags":95},"https://gist.github.com/3696912",[78,72],[96],"X Refsource MISC",{"url":98,"sources":99,"tags":100},"http://www.iacr.org/cryptodb/data/paper.php?pubkey=3091",[78,72],[96],{"url":102,"sources":103,"tags":104},"http://lists.fedoraproject.org/pipermail/package-announce/2013-April/101366.html",[78,72],[80,105],"X Refsource FEDORA",{"url":107,"sources":108,"tags":109},"http://www.ubuntu.com/usn/USN-1898-1",[78,72],[80,110],"X Refsource UBUNTU",{"url":112,"sources":113,"tags":114},"https://chromiumcodereview.appspot.com/10825183",[78,72],[115],"X Refsource CONFIRM",{"url":117,"sources":118,"tags":119},"http://lists.opensuse.org/opensuse-updates/2012-10/msg00096.html",[78,72],[80,120],"X Refsource SUSE",{"url":122,"sources":123,"tags":124},"http://threatpost.com/en_us/blogs/crime-attack-uses-compression-ratio-tls-requests-side-channel-hijack-secure-sessions-091312",[78,72],[96],{"url":126,"sources":127,"tags":128},"http://www.debian.org/security/2015/dsa-3253",[78,72],[80,91],{"url":130,"sources":131,"tags":132},"http://isecpartners.com/blog/2012/9/14/details-on-the-crime-attack.html",[78,72],[96],{"url":134,"sources":135,"tags":136},"http://lists.opensuse.org/opensuse-updates/2013-01/msg00048.html",[78,72],[80,120],{"url":138,"sources":139,"tags":140},"https://community.qualys.com/blogs/securitylabs/2012/09/14/crime-information-leakage-attack-against-ssltls",[78,72],[96],{"url":142,"sources":143,"tags":144},"https://github.com/mpgn/CRIME-poc",[78,72],[96],{"url":146,"sources":147,"tags":148},"http://news.ycombinator.com/item?id=4510829",[78,72],[96],{"url":150,"sources":151,"tags":152},"http://support.apple.com/kb/HT5784",[78,72],[115],{"url":154,"sources":155,"tags":156},"http://www.theregister.co.uk/2012/09/14/crime_tls_attack/",[78,72],[96],{"url":158,"sources":159,"tags":160},"http://lists.apple.com/archives/security-announce/2013/Jun/msg00000.html",[78,72],[80,161],"X Refsource APPLE",{"url":163,"sources":164,"tags":165},"http://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-000129.html",[78,72],[166,167],"Third Party Advisory","X Refsource JVNDB",{"url":169,"sources":170,"tags":171},"http://www.ubuntu.com/usn/USN-1627-1",[78,72],[80,110],{"url":173,"sources":174,"tags":175},"http://www.debian.org/security/2013/dsa-2627",[78,72],[80,91],{"url":177,"sources":178,"tags":179},"http://code.google.com/p/chromium/issues/detail?id=139744",[78,72],[115],{"url":181,"sources":182,"tags":183},"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18920",[78,72],[184,185,186],"VDB Entry","Signature","X Refsource OVAL",{"url":188,"sources":189,"tags":190},"http://arstechnica.com/security/2012/09/crime-hijacks-https-sessions/",[78,72],[96],{"url":192,"sources":193,"tags":194},"http://www.securityfocus.com/bid/55704",[78,72],[184,195],"X Refsource BID",{"url":197,"sources":198,"tags":199},"http://www.ubuntu.com/usn/USN-1628-1",[78,72],[80,110],{"url":201,"sources":202,"tags":203},"https://threatpost.com/en_us/blogs/demo-crime-tls-attack-091212",[78,72],[96],{"url":205,"sources":206,"tags":207},"http://threatpost.com/en_us/blogs/new-attack-uses-ssltls-information-leak-hijack-https-sessions-090512",[78,72],[96],{"url":209,"sources":210,"tags":211},"http://www.ekoparty.org/2012/thai-duong.php",[78,72],[96],{"url":213,"sources":214,"tags":215},"http://lists.opensuse.org/opensuse-updates/2013-01/msg00034.html",[78,72],[80,120],{"url":217,"sources":218,"tags":219},"http://security.stackexchange.com/questions/19911/crime-how-to-beat-the-beast-successor",[78,72],[96],{"url":221,"sources":222,"tags":223},"http://jvn.jp/en/jp/JVN65273415/index.html",[78,72],[166,224],"X Refsource JVN",{"url":226,"sources":227,"tags":228},"https://bugzilla.redhat.com/show_bug.cgi?id=857051",[78,72],[115],[],{"date":231,"score":69,"percentile":232},"2026-06-04",0.9251,[234,238,241,244,247,250,252,254,257,260,263,266,269,271,274,277,280,284,287,290,293,296,299,302,305,308,310,312,316,319,323,326,329,332,336,339,342,345,348,351,353,356,359,362,365,368,370,373,375,377,379,382,385,388,391,394,397,399,401,404,407,411,413,415,419,422,426,429,432,435,438,440,443,446,449,452,455,458,462,466,469,472,475,477,480,483,486,489,492,495],{"date":235,"score":236,"percentile":237},"2025-11-04",0.13137,0.93812,{"date":239,"score":236,"percentile":240},"2025-11-05",0.93813,{"date":242,"score":236,"percentile":243},"2025-11-06",0.93815,{"date":245,"score":236,"percentile":246},"2025-11-07",0.93819,{"date":248,"score":236,"percentile":249},"2025-11-08",0.9382,{"date":251,"score":236,"percentile":246},"2025-11-09",{"date":253,"score":236,"percentile":246},"2025-11-10",{"date":255,"score":236,"percentile":256},"2025-11-11",0.93821,{"date":258,"score":236,"percentile":259},"2025-11-12",0.93827,{"date":261,"score":236,"percentile":262},"2025-11-13",0.93828,{"date":264,"score":236,"percentile":265},"2025-11-14",0.93832,{"date":267,"score":236,"percentile":268},"2025-11-15",0.93829,{"date":270,"score":236,"percentile":265},"2025-11-16",{"date":272,"score":236,"percentile":273},"2025-11-17",0.9383,{"date":275,"score":236,"percentile":276},"2025-11-18",0.93464,{"date":278,"score":236,"percentile":279},"2025-11-19",0.93467,{"date":281,"score":282,"percentile":283},"2025-11-20",0.13442,0.93564,{"date":285,"score":282,"percentile":286},"2025-11-21",0.93917,{"date":288,"score":282,"percentile":289},"2025-11-22",0.93916,{"date":291,"score":282,"percentile":292},"2025-11-23",0.93921,{"date":294,"score":282,"percentile":295},"2025-11-24",0.93922,{"date":297,"score":282,"percentile":298},"2025-11-25",0.93924,{"date":300,"score":282,"percentile":301},"2025-11-26",0.93923,{"date":303,"score":282,"percentile":304},"2025-11-27",0.93925,{"date":306,"score":282,"percentile":307},"2025-11-28",0.93919,{"date":309,"score":282,"percentile":301},"2025-11-29",{"date":311,"score":282,"percentile":292},"2025-11-30",{"date":313,"score":314,"percentile":315},"2025-12-01",0.2395,0.95839,{"date":317,"score":314,"percentile":318},"2025-12-02",0.95838,{"date":320,"score":321,"percentile":322},"2025-12-03",0.23484,0.95789,{"date":324,"score":236,"percentile":325},"2025-12-04",0.93844,{"date":327,"score":236,"percentile":328},"2025-12-05",0.93848,{"date":330,"score":236,"percentile":331},"2025-12-06",0.93847,{"date":333,"score":334,"percentile":335},"2025-12-07",0.12977,0.93795,{"date":337,"score":334,"percentile":338},"2025-12-08",0.93797,{"date":340,"score":334,"percentile":341},"2025-12-09",0.93803,{"date":343,"score":334,"percentile":344},"2025-12-10",0.93809,{"date":346,"score":236,"percentile":347},"2025-12-11",0.93863,{"date":349,"score":236,"percentile":350},"2025-12-12",0.93864,{"date":352,"score":236,"percentile":347},"2025-12-13",{"date":354,"score":236,"percentile":355},"2025-12-14",0.93862,{"date":357,"score":236,"percentile":358},"2025-12-15",0.93865,{"date":360,"score":236,"percentile":361},"2025-12-16",0.93868,{"date":363,"score":236,"percentile":364},"2025-12-17",0.93872,{"date":366,"score":236,"percentile":367},"2025-12-18",0.93876,{"date":369,"score":236,"percentile":367},"2025-12-19",{"date":371,"score":236,"percentile":372},"2025-12-20",0.93875,{"date":374,"score":236,"percentile":372},"2025-12-21",{"date":376,"score":236,"percentile":372},"2025-12-22",{"date":378,"score":236,"percentile":372},"2025-12-23",{"date":380,"score":236,"percentile":381},"2025-12-24",0.93878,{"date":383,"score":236,"percentile":384},"2025-12-25",0.93886,{"date":386,"score":236,"percentile":387},"2025-12-26",0.93884,{"date":389,"score":236,"percentile":390},"2025-12-27",0.9393,{"date":392,"score":236,"percentile":393},"2025-12-28",0.93881,{"date":395,"score":236,"percentile":396},"2025-12-29",0.9388,{"date":398,"score":236,"percentile":393},"2025-12-30",{"date":400,"score":236,"percentile":384},"2025-12-31",{"date":402,"score":321,"percentile":403},"2026-01-01",0.95831,{"date":405,"score":321,"percentile":406},"2026-01-02",0.95824,{"date":408,"score":409,"percentile":410},"2026-01-03",0.18877,0.95126,{"date":412,"score":236,"percentile":393},"2026-01-04",{"date":414,"score":236,"percentile":381},"2026-01-05",{"date":416,"score":417,"percentile":418},"2026-01-06",0.13867,0.94076,{"date":420,"score":417,"percentile":421},"2026-01-07",0.94075,{"date":423,"score":424,"percentile":425},"2026-01-08",0.14186,0.94158,{"date":427,"score":424,"percentile":428},"2026-01-09",0.9416,{"date":430,"score":424,"percentile":431},"2026-01-10",0.94161,{"date":433,"score":424,"percentile":434},"2026-01-11",0.94159,{"date":436,"score":424,"percentile":437},"2026-01-12",0.94156,{"date":439,"score":424,"percentile":425},"2026-01-13",{"date":441,"score":424,"percentile":442},"2026-01-14",0.94165,{"date":444,"score":424,"percentile":445},"2026-01-15",0.94166,{"date":447,"score":424,"percentile":448},"2026-01-16",0.94169,{"date":450,"score":424,"percentile":451},"2026-01-17",0.94173,{"date":453,"score":424,"percentile":454},"2026-01-18",0.94168,{"date":456,"score":424,"percentile":457},"2026-01-19",0.94167,{"date":459,"score":460,"percentile":461},"2026-01-20",0.15635,0.94485,{"date":463,"score":464,"percentile":465},"2026-01-21",0.15291,0.9441,{"date":467,"score":464,"percentile":468},"2026-01-22",0.94413,{"date":470,"score":464,"percentile":471},"2026-01-23",0.9442,{"date":473,"score":464,"percentile":474},"2026-01-24",0.94424,{"date":476,"score":464,"percentile":474},"2026-01-25",{"date":478,"score":464,"percentile":479},"2026-01-26",0.94426,{"date":481,"score":464,"percentile":482},"2026-01-27",0.94427,{"date":484,"score":464,"percentile":485},"2026-01-28",0.9443,{"date":487,"score":464,"percentile":488},"2026-01-29",0.94432,{"date":490,"score":464,"percentile":491},"2026-01-30",0.94431,{"date":493,"score":464,"percentile":494},"2026-01-31",0.94433,{"date":496,"score":497,"percentile":498},"2026-02-01",0.21753,0.95621,[500],{"source":72,"cvss_v2_0":501,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":70,"baseSeverity":9,"vectorString":73,"impactScore":502,"exploitabilityScore":503},2.9,4.9,[505],{"ecosystem":9,"name":506,"vendor":507,"product":508,"cpe_part":509,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":510},"debian linux","debian","debian_linux","o",[511,514],{"version":512,"is_range":67,"range_type":513,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0","cpe",{"version":515,"is_range":67,"range_type":513,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0"]