[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2013-4151":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":62,"aliases":63,"duplicate_of":9,"upstream":64,"downstream":65,"duplicates":88,"related":89,"reserved_at":9,"published_at":92,"modified_at":93,"state":94,"summary":95,"references_raw":104,"kevs":133,"epss":134,"epss_history":137,"metrics":396,"affected":401},"CVE-2013-4151","The virtio_load function in virtio/virtio.c in QEMU 1.x before 1.7.2 allows remote attackers to execute arbitrary code via a crafted savevm image, which triggers an out-of-bounds write.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-94","Improper Control of Generation of Code ('Code Injection')","The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.","weakness","Draft","Base","Medium",[20,24,58],{"id":21,"name":22,"techniques":23},"CAPEC-242","Code Injection",[],{"id":25,"name":26,"techniques":27},"CAPEC-35","Leverage Executable Code in Non-Executable Files",[28,39,46],{"id":29,"name":30,"tactics":31,"countermeasures":38},"T1027.006","HTML Smuggling",[32,35],{"id":33,"name":34},"TA0030","Defense Evasion",{"id":36,"name":37},"TA0005","Stealth",[],{"id":40,"name":41,"tactics":42,"countermeasures":45},"T1027.009","Embedded Payloads",[43,44],{"id":33,"name":34},{"id":36,"name":37},[],{"id":47,"name":48,"tactics":49,"countermeasures":52},"T1564.009","Resource Forking",[50,51],{"id":33,"name":34},{"id":36,"name":37},[53],{"id":54,"name":55,"tactic":56},"D3-FFV","File Format Verification",{"name":57},"Isolate",{"id":59,"name":60,"techniques":61},"CAPEC-77","Manipulating User-Controlled Variables",[],[],[],[],[66,68,70,72,74,76,78,80,82,84,86],{"_key":67},"RHSA-2014:0743",{"_key":69},"RHSA-2014:0744",{"_key":71},"RHSA-2014:0888",{"_key":73},"RHSA-2014:0927",{"_key":75},"RHSA-2014:1268",{"_key":77},"UBUNTU-CVE-2013-4151",{"_key":79},"USN-2342-1",{"_key":81},"OPENSUSE-SU-2024:10233-1",{"_key":83},"MGASA-2014-0426",{"_key":85},"DEBIAN-CVE-2013-4151",{"_key":87},"RHSA-2014:0674",[],[90,91],{"_key":81},{"_key":83},"2014-11-04T21:00:00.000Z","2024-08-06T16:30:49.967Z","Modified",{"cisa_kev":96,"cisa_ransomware":96,"cisa_vendor":9,"epss_severity":97,"epss_score":98,"severity":99,"severity_score":100,"severity_version":101,"severity_source":102,"severity_vector":103,"severity_status":94},false,"low",0.01385,"high",7.5,"v2.0","nvd","AV:N/AC:L/Au:N/C:P/I:P/A:P",[105,112,117,124,128],{"url":106,"sources":107,"tags":109},"http://rhn.redhat.com/errata/RHSA-2014-0743.html",[108,102],"cve.org",[110,111],"Vendor Advisory","X Refsource REDHAT",{"url":113,"sources":114,"tags":115},"http://git.qemu.org/?p=qemu.git%3Ba=commitdiff%3Bh=cc45995294b92d95319b4782750a3580cabdbc0c",[108,102],[116],"X Refsource CONFIRM",{"url":118,"sources":119,"tags":120},"http://lists.nongnu.org/archive/html/qemu-stable/2014-07/msg00187.html",[108,102],[121,122,123],"Mailing List","X Refsource MLIST","Patch",{"url":125,"sources":126,"tags":127},"http://rhn.redhat.com/errata/RHSA-2014-0744.html",[108,102],[110,111,123],{"url":129,"sources":130,"tags":131},"http://lists.fedoraproject.org/pipermail/package-announce/2014-May/133345.html",[108,102],[110,132],"X Refsource FEDORA",[],{"date":135,"score":98,"percentile":136},"2026-06-04",0.80657,[138,141,144,147,150,153,156,159,162,165,168,171,174,177,180,183,186,189,192,195,198,200,203,205,207,210,213,215,218,221,223,226,229,232,235,238,241,244,247,250,253,255,257,260,263,266,269,272,275,278,281,284,287,290,293,296,299,302,305,308,311,314,317,320,323,325,328,331,334,337,339,342,345,348,351,354,357,359,361,364,367,370,373,376,378,381,384,387,390,393],{"date":139,"score":98,"percentile":140},"2025-11-04",0.7968,{"date":142,"score":98,"percentile":143},"2025-11-05",0.79683,{"date":145,"score":98,"percentile":146},"2025-11-06",0.79686,{"date":148,"score":98,"percentile":149},"2025-11-07",0.79698,{"date":151,"score":98,"percentile":152},"2025-11-08",0.79704,{"date":154,"score":98,"percentile":155},"2025-11-09",0.797,{"date":157,"score":98,"percentile":158},"2025-11-10",0.79691,{"date":160,"score":98,"percentile":161},"2025-11-11",0.79696,{"date":163,"score":98,"percentile":164},"2025-11-12",0.79711,{"date":166,"score":98,"percentile":167},"2025-11-13",0.79719,{"date":169,"score":98,"percentile":170},"2025-11-14",0.79725,{"date":172,"score":98,"percentile":173},"2025-11-15",0.79722,{"date":175,"score":98,"percentile":176},"2025-11-16",0.79724,{"date":178,"score":98,"percentile":179},"2025-11-17",0.79721,{"date":181,"score":98,"percentile":182},"2025-11-18",0.78667,{"date":184,"score":98,"percentile":185},"2025-11-19",0.78675,{"date":187,"score":98,"percentile":188},"2025-11-20",0.78682,{"date":190,"score":98,"percentile":191},"2025-11-21",0.7974,{"date":193,"score":98,"percentile":194},"2025-11-22",0.79744,{"date":196,"score":98,"percentile":197},"2025-11-23",0.79736,{"date":199,"score":98,"percentile":197},"2025-11-24",{"date":201,"score":98,"percentile":202},"2025-11-25",0.79738,{"date":204,"score":98,"percentile":191},"2025-11-26",{"date":206,"score":98,"percentile":194},"2025-11-27",{"date":208,"score":98,"percentile":209},"2025-11-28",0.79737,{"date":211,"score":98,"percentile":212},"2025-11-29",0.79743,{"date":214,"score":98,"percentile":212},"2025-11-30",{"date":216,"score":98,"percentile":217},"2025-12-01",0.79832,{"date":219,"score":98,"percentile":220},"2025-12-02",0.79836,{"date":222,"score":98,"percentile":220},"2025-12-03",{"date":224,"score":98,"percentile":225},"2025-12-04",0.79746,{"date":227,"score":98,"percentile":228},"2025-12-05",0.79752,{"date":230,"score":98,"percentile":231},"2025-12-06",0.79754,{"date":233,"score":98,"percentile":234},"2025-12-07",0.79757,{"date":236,"score":98,"percentile":237},"2025-12-08",0.79761,{"date":239,"score":98,"percentile":240},"2025-12-09",0.79776,{"date":242,"score":98,"percentile":243},"2025-12-10",0.798,{"date":245,"score":98,"percentile":246},"2025-12-11",0.79813,{"date":248,"score":98,"percentile":249},"2025-12-12",0.79831,{"date":251,"score":98,"percentile":252},"2025-12-13",0.79833,{"date":254,"score":98,"percentile":252},"2025-12-14",{"date":256,"score":98,"percentile":217},"2025-12-15",{"date":258,"score":98,"percentile":259},"2025-12-16",0.79841,{"date":261,"score":98,"percentile":262},"2025-12-17",0.79851,{"date":264,"score":98,"percentile":265},"2025-12-18",0.79869,{"date":267,"score":98,"percentile":268},"2025-12-19",0.79878,{"date":270,"score":98,"percentile":271},"2025-12-20",0.79871,{"date":273,"score":98,"percentile":274},"2025-12-21",0.79864,{"date":276,"score":98,"percentile":277},"2025-12-22",0.79865,{"date":279,"score":98,"percentile":280},"2025-12-23",0.79866,{"date":282,"score":98,"percentile":283},"2025-12-24",0.79881,{"date":285,"score":98,"percentile":286},"2025-12-25",0.79902,{"date":288,"score":98,"percentile":289},"2025-12-26",0.79898,{"date":291,"score":98,"percentile":292},"2025-12-27",0.79943,{"date":294,"score":98,"percentile":295},"2025-12-28",0.79886,{"date":297,"score":98,"percentile":298},"2025-12-29",0.79884,{"date":300,"score":98,"percentile":301},"2025-12-30",0.7989,{"date":303,"score":98,"percentile":304},"2025-12-31",0.79903,{"date":306,"score":98,"percentile":307},"2026-01-01",0.79992,{"date":309,"score":98,"percentile":310},"2026-01-02",0.79989,{"date":312,"score":98,"percentile":313},"2026-01-03",0.79986,{"date":315,"score":98,"percentile":316},"2026-01-04",0.79892,{"date":318,"score":98,"percentile":319},"2026-01-05",0.79889,{"date":321,"score":98,"percentile":322},"2026-01-06",0.79893,{"date":324,"score":98,"percentile":289},"2026-01-07",{"date":326,"score":98,"percentile":327},"2026-01-08",0.79907,{"date":329,"score":98,"percentile":330},"2026-01-09",0.79908,{"date":332,"score":98,"percentile":333},"2026-01-10",0.79906,{"date":335,"score":98,"percentile":336},"2026-01-11",0.79899,{"date":338,"score":98,"percentile":298},"2026-01-12",{"date":340,"score":98,"percentile":341},"2026-01-13",0.79882,{"date":343,"score":98,"percentile":344},"2026-01-14",0.79904,{"date":346,"score":98,"percentile":347},"2026-01-15",0.79905,{"date":349,"score":98,"percentile":350},"2026-01-16",0.79914,{"date":352,"score":98,"percentile":353},"2026-01-17",0.79922,{"date":355,"score":98,"percentile":356},"2026-01-18",0.79912,{"date":358,"score":98,"percentile":347},"2026-01-19",{"date":360,"score":98,"percentile":327},"2026-01-20",{"date":362,"score":98,"percentile":363},"2026-01-21",0.79915,{"date":365,"score":98,"percentile":366},"2026-01-22",0.79924,{"date":368,"score":98,"percentile":369},"2026-01-23",0.79953,{"date":371,"score":98,"percentile":372},"2026-01-24",0.79963,{"date":374,"score":98,"percentile":375},"2026-01-25",0.79954,{"date":377,"score":98,"percentile":369},"2026-01-26",{"date":379,"score":98,"percentile":380},"2026-01-27",0.79955,{"date":382,"score":98,"percentile":383},"2026-01-28",0.79951,{"date":385,"score":98,"percentile":386},"2026-01-29",0.7995,{"date":388,"score":98,"percentile":389},"2026-01-30",0.79952,{"date":391,"score":98,"percentile":392},"2026-01-31",0.79958,{"date":394,"score":98,"percentile":395},"2026-02-01",0.80051,[397],{"source":102,"cvss_v2_0":398,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":100,"baseSeverity":9,"vectorString":103,"impactScore":399,"exploitabilityScore":400},6.4,10,[402],{"ecosystem":9,"name":403,"vendor":403,"product":403,"cpe_part":404,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":405},"qemu","a",[406,409,411,413,415,417,419,421,423,425,427,429,431,433,435,437,439,441,443,445,447,449,451,453,455,457,459],{"version":407,"is_range":96,"range_type":408,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.0","cpe",{"version":410,"is_range":96,"range_type":408,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.0:rc1",{"version":412,"is_range":96,"range_type":408,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.0:rc2",{"version":414,"is_range":96,"range_type":408,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.0:rc3",{"version":416,"is_range":96,"range_type":408,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.0:rc4",{"version":418,"is_range":96,"range_type":408,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.0.1",{"version":420,"is_range":96,"range_type":408,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.1",{"version":422,"is_range":96,"range_type":408,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.1:rc1",{"version":424,"is_range":96,"range_type":408,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.1:rc2",{"version":426,"is_range":96,"range_type":408,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.1:rc3",{"version":428,"is_range":96,"range_type":408,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.1:rc4",{"version":430,"is_range":96,"range_type":408,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.4.1",{"version":432,"is_range":96,"range_type":408,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.4.2",{"version":434,"is_range":96,"range_type":408,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.5.0",{"version":436,"is_range":96,"range_type":408,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.5.0:rc1",{"version":438,"is_range":96,"range_type":408,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.5.0:rc2",{"version":440,"is_range":96,"range_type":408,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.5.0:rc3",{"version":442,"is_range":96,"range_type":408,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.5.1",{"version":444,"is_range":96,"range_type":408,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.5.2",{"version":446,"is_range":96,"range_type":408,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.5.3",{"version":448,"is_range":96,"range_type":408,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.6.0",{"version":450,"is_range":96,"range_type":408,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.6.0:rc1",{"version":452,"is_range":96,"range_type":408,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.6.0:rc2",{"version":454,"is_range":96,"range_type":408,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.6.0:rc3",{"version":456,"is_range":96,"range_type":408,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.6.1",{"version":458,"is_range":96,"range_type":408,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.6.2",{"version":460,"is_range":96,"range_type":408,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.7.1"]