[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2013-1491":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":62,"aliases":63,"duplicate_of":9,"upstream":64,"downstream":65,"duplicates":80,"related":81,"reserved_at":9,"published_at":82,"modified_at":83,"state":84,"summary":85,"references_raw":94,"kevs":181,"epss":182,"epss_history":185,"metrics":421,"affected":424},"CVE-2013-1491","The Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, 5.0 Update 41 and earlier, and JavaFX 2.2.7 and earlier allows remote attackers to execute arbitrary code via vectors related to 2D, as demonstrated by Joshua Drake during a Pwn2Own competition at CanSecWest 2013.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-94","Improper Control of Generation of Code ('Code Injection')","The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.","weakness","Draft","Base","Medium",[20,24,58],{"id":21,"name":22,"techniques":23},"CAPEC-242","Code Injection",[],{"id":25,"name":26,"techniques":27},"CAPEC-35","Leverage Executable Code in Non-Executable Files",[28,39,46],{"id":29,"name":30,"tactics":31,"countermeasures":38},"T1027.006","HTML Smuggling",[32,35],{"id":33,"name":34},"TA0030","Defense Evasion",{"id":36,"name":37},"TA0005","Stealth",[],{"id":40,"name":41,"tactics":42,"countermeasures":45},"T1027.009","Embedded Payloads",[43,44],{"id":33,"name":34},{"id":36,"name":37},[],{"id":47,"name":48,"tactics":49,"countermeasures":52},"T1564.009","Resource Forking",[50,51],{"id":33,"name":34},{"id":36,"name":37},[53],{"id":54,"name":55,"tactic":56},"D3-FFV","File Format Verification",{"name":57},"Isolate",{"id":59,"name":60,"techniques":61},"CAPEC-77","Manipulating User-Controlled Variables",[],[],[],[],[66,68,70,72,74,76,78],{"_key":67},"RHSA-2013:0758",{"_key":69},"RHSA-2013:0757",{"_key":71},"RHSA-2013:0822",{"_key":73},"RHSA-2013:0823",{"_key":75},"RHSA-2013:0855",{"_key":77},"RHSA-2013:1455",{"_key":79},"RHSA-2013:1456",[],[],"2013-03-08T18:00:00.000Z","2024-08-06T15:04:49.213Z","Modified",{"cisa_kev":86,"cisa_ransomware":86,"cisa_vendor":9,"epss_severity":87,"epss_score":88,"severity":89,"severity_score":90,"severity_version":91,"severity_source":92,"severity_vector":93,"severity_status":84},false,"medium",0.19623,"high",10,"v2.0","nvd","AV:N/AC:L/Au:N/C:C/I:C/A:C",[95,101,107,114,118,123,128,135,140,144,148,152,156,160,164,168,173,177],{"url":96,"sources":97,"tags":99},"https://twitter.com/thezdi/status/309438311112507392",[98,92],"cve.org",[100],"X Refsource MISC",{"url":102,"sources":103,"tags":104},"http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00013.html",[98,92],[105,106],"Vendor Advisory","X Refsource SUSE",{"url":108,"sources":109,"tags":110},"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19553",[98,92],[111,112,113],"VDB Entry","Signature","X Refsource OVAL",{"url":115,"sources":116,"tags":117},"http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00001.html",[98,92],[105,106],{"url":119,"sources":120,"tags":121},"http://rhn.redhat.com/errata/RHSA-2013-0758.html",[98,92],[105,122],"X Refsource REDHAT",{"url":124,"sources":125,"tags":126},"http://lists.apple.com/archives/security-announce/2013/Apr/msg00001.html",[98,92],[105,127],"X Refsource APPLE",{"url":129,"sources":130,"tags":131},"http://www.us-cert.gov/ncas/alerts/TA13-107A",[98,92],[132,133,134],"Third Party Advisory","X Refsource CERT","US Government Resource",{"url":136,"sources":137,"tags":138},"http://marc.info/?l=bugtraq&m=137283787217316&w=2",[98,92],[105,139],"X Refsource HP",{"url":141,"sources":142,"tags":143},"http://rhn.redhat.com/errata/RHSA-2013-1455.html",[98,92],[105,122],{"url":145,"sources":146,"tags":147},"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03898880",[98,92],[105,139],{"url":149,"sources":150,"tags":151},"http://rhn.redhat.com/errata/RHSA-2013-0757.html",[98,92],[105,122],{"url":153,"sources":154,"tags":155},"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16663",[98,92],[111,112,113],{"url":157,"sources":158,"tags":159},"http://www.zdnet.com/pwn2own-down-go-all-the-browsers-7000012283/",[98,92],[100],{"url":161,"sources":162,"tags":163},"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19482",[98,92],[111,112,113],{"url":165,"sources":166,"tags":167},"http://rhn.redhat.com/errata/RHSA-2013-1456.html",[98,92],[105,122],{"url":169,"sources":170,"tags":171},"http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html",[98,92],[172],"X Refsource CONFIRM",{"url":174,"sources":175,"tags":176},"http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00007.html",[98,92],[105,106],{"url":178,"sources":179,"tags":180},"http://h30499.www3.hp.com/t5/HP-Security-Research-Blog/Pwn2Own-2013/ba-p/5981157",[98,92],[100],[],{"date":183,"score":88,"percentile":184},"2026-06-04",0.95534,[186,189,191,193,196,199,202,204,206,209,211,214,216,219,221,224,227,230,233,236,239,241,244,247,250,253,256,259,262,265,267,269,272,274,277,279,282,285,288,291,293,295,297,300,303,306,309,311,313,315,317,320,323,325,328,331,334,337,339,342,345,348,350,353,356,358,360,362,364,366,368,370,373,376,378,381,383,385,387,390,393,396,399,402,405,407,410,413,415,418],{"date":187,"score":88,"percentile":188},"2025-11-04",0.95168,{"date":190,"score":88,"percentile":188},"2025-11-05",{"date":192,"score":88,"percentile":188},"2025-11-06",{"date":194,"score":88,"percentile":195},"2025-11-07",0.95169,{"date":197,"score":88,"percentile":198},"2025-11-08",0.95166,{"date":200,"score":88,"percentile":201},"2025-11-09",0.95167,{"date":203,"score":88,"percentile":201},"2025-11-10",{"date":205,"score":88,"percentile":195},"2025-11-11",{"date":207,"score":88,"percentile":208},"2025-11-12",0.95172,{"date":210,"score":88,"percentile":208},"2025-11-13",{"date":212,"score":88,"percentile":213},"2025-11-14",0.95173,{"date":215,"score":88,"percentile":195},"2025-11-15",{"date":217,"score":88,"percentile":218},"2025-11-16",0.95171,{"date":220,"score":88,"percentile":213},"2025-11-17",{"date":222,"score":88,"percentile":223},"2025-11-18",0.95003,{"date":225,"score":88,"percentile":226},"2025-11-19",0.95005,{"date":228,"score":88,"percentile":229},"2025-11-20",0.95008,{"date":231,"score":88,"percentile":232},"2025-11-21",0.9518,{"date":234,"score":88,"percentile":235},"2025-11-22",0.95179,{"date":237,"score":88,"percentile":238},"2025-11-23",0.95178,{"date":240,"score":88,"percentile":232},"2025-11-24",{"date":242,"score":88,"percentile":243},"2025-11-25",0.95183,{"date":245,"score":88,"percentile":246},"2025-11-26",0.95185,{"date":248,"score":88,"percentile":249},"2025-11-27",0.95188,{"date":251,"score":88,"percentile":252},"2025-11-28",0.95186,{"date":254,"score":88,"percentile":255},"2025-11-29",0.95191,{"date":257,"score":88,"percentile":258},"2025-11-30",0.95187,{"date":260,"score":88,"percentile":261},"2025-12-01",0.95225,{"date":263,"score":88,"percentile":264},"2025-12-02",0.95223,{"date":266,"score":88,"percentile":261},"2025-12-03",{"date":268,"score":88,"percentile":258},"2025-12-04",{"date":270,"score":88,"percentile":271},"2025-12-05",0.9519,{"date":273,"score":88,"percentile":271},"2025-12-06",{"date":275,"score":88,"percentile":276},"2025-12-07",0.95195,{"date":278,"score":88,"percentile":276},"2025-12-08",{"date":280,"score":88,"percentile":281},"2025-12-09",0.95198,{"date":283,"score":88,"percentile":284},"2025-12-10",0.95202,{"date":286,"score":88,"percentile":287},"2025-12-11",0.95205,{"date":289,"score":88,"percentile":290},"2025-12-12",0.95206,{"date":292,"score":88,"percentile":290},"2025-12-13",{"date":294,"score":88,"percentile":284},"2025-12-14",{"date":296,"score":88,"percentile":290},"2025-12-15",{"date":298,"score":88,"percentile":299},"2025-12-16",0.95208,{"date":301,"score":88,"percentile":302},"2025-12-17",0.95211,{"date":304,"score":88,"percentile":305},"2025-12-18",0.95215,{"date":307,"score":88,"percentile":308},"2025-12-19",0.95216,{"date":310,"score":88,"percentile":308},"2025-12-20",{"date":312,"score":88,"percentile":308},"2025-12-21",{"date":314,"score":88,"percentile":305},"2025-12-22",{"date":316,"score":88,"percentile":305},"2025-12-23",{"date":318,"score":88,"percentile":319},"2025-12-24",0.9522,{"date":321,"score":88,"percentile":322},"2025-12-25",0.95224,{"date":324,"score":88,"percentile":322},"2025-12-26",{"date":326,"score":88,"percentile":327},"2025-12-27",0.95248,{"date":329,"score":88,"percentile":330},"2025-12-28",0.95217,{"date":332,"score":88,"percentile":333},"2025-12-29",0.95218,{"date":335,"score":88,"percentile":336},"2025-12-30",0.95219,{"date":338,"score":88,"percentile":264},"2025-12-31",{"date":340,"score":88,"percentile":341},"2026-01-01",0.95265,{"date":343,"score":88,"percentile":344},"2026-01-02",0.9526,{"date":346,"score":88,"percentile":347},"2026-01-03",0.95258,{"date":349,"score":88,"percentile":302},"2026-01-04",{"date":351,"score":88,"percentile":352},"2026-01-05",0.95209,{"date":354,"score":88,"percentile":355},"2026-01-06",0.9521,{"date":357,"score":88,"percentile":355},"2026-01-07",{"date":359,"score":88,"percentile":305},"2026-01-08",{"date":361,"score":88,"percentile":330},"2026-01-09",{"date":363,"score":88,"percentile":330},"2026-01-10",{"date":365,"score":88,"percentile":330},"2026-01-11",{"date":367,"score":88,"percentile":333},"2026-01-12",{"date":369,"score":88,"percentile":308},"2026-01-13",{"date":371,"score":88,"percentile":372},"2026-01-14",0.95221,{"date":374,"score":88,"percentile":375},"2026-01-15",0.95222,{"date":377,"score":88,"percentile":261},"2026-01-16",{"date":379,"score":88,"percentile":380},"2026-01-17",0.95227,{"date":382,"score":88,"percentile":261},"2026-01-18",{"date":384,"score":88,"percentile":322},"2026-01-19",{"date":386,"score":88,"percentile":261},"2026-01-20",{"date":388,"score":88,"percentile":389},"2026-01-21",0.95228,{"date":391,"score":88,"percentile":392},"2026-01-22",0.95232,{"date":394,"score":88,"percentile":395},"2026-01-23",0.95236,{"date":397,"score":88,"percentile":398},"2026-01-24",0.95239,{"date":400,"score":88,"percentile":401},"2026-01-25",0.95243,{"date":403,"score":88,"percentile":404},"2026-01-26",0.95244,{"date":406,"score":88,"percentile":401},"2026-01-27",{"date":408,"score":88,"percentile":409},"2026-01-28",0.95245,{"date":411,"score":88,"percentile":412},"2026-01-29",0.95247,{"date":414,"score":88,"percentile":412},"2026-01-30",{"date":416,"score":88,"percentile":417},"2026-01-31",0.9525,{"date":419,"score":88,"percentile":420},"2026-02-01",0.95287,[422],{"source":92,"cvss_v2_0":423,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":90,"baseSeverity":9,"vectorString":93,"impactScore":90,"exploitabilityScore":90},[425,433],{"ecosystem":9,"name":426,"vendor":427,"product":426,"cpe_part":428,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":429},"jdk","oracle","a",[430],{"version":431,"is_range":86,"range_type":432,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.7.0:update17","cpe",{"ecosystem":9,"name":434,"vendor":427,"product":434,"cpe_part":428,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":435},"jre",[436],{"version":431,"is_range":86,"range_type":432,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9}]