[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2014-0118":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":86,"aliases":87,"duplicate_of":9,"upstream":88,"downstream":89,"duplicates":122,"related":123,"reserved_at":9,"published_at":128,"modified_at":129,"state":130,"summary":131,"references_raw":140,"kevs":330,"epss":331,"epss_history":334,"metrics":572,"affected":577},"CVE-2014-0118","The deflate_in_filter function in mod_deflate.c in the mod_deflate module in the Apache HTTP Server before 2.4.10, when request body decompression is enabled, allows remote attackers to cause a denial of service (resource consumption) via crafted request data that decompresses to a much larger size.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-400","Uncontrolled Resource Consumption","The product does not properly control the allocation and maintenance of a limited resource.","weakness","Draft","Class","High",[20,24,82],{"id":21,"name":22,"techniques":23},"CAPEC-147","XML Ping of the Death",[],{"id":25,"name":26,"techniques":27},"CAPEC-227","Sustained Client Engagement",[28],{"id":29,"name":30,"tactics":31,"countermeasures":35},"T1499","Endpoint Denial of Service",[32],{"id":33,"name":34},"TA0105","Impact",[36,41,45,49,53,57,61,65,69,73,78],{"id":37,"name":38,"tactic":39},"D3-UGLPA","User Geolocation Logon Pattern Analysis",{"name":40},"Detect",{"id":42,"name":43,"tactic":44},"D3-PMAD","Protocol Metadata Anomaly Detection",{"name":40},{"id":46,"name":47,"tactic":48},"D3-CSPP","Client-server Payload Profiling",{"name":40},{"id":50,"name":51,"tactic":52},"D3-PHDURA","Per Host Download-Upload Ratio Analysis",{"name":40},{"id":54,"name":55,"tactic":56},"D3-NTSA","Network Traffic Signature Analysis",{"name":40},{"id":58,"name":59,"tactic":60},"D3-APCA","Application Protocol Command Analysis",{"name":40},{"id":62,"name":63,"tactic":64},"D3-NTCD","Network Traffic Community Deviation",{"name":40},{"id":66,"name":67,"tactic":68},"D3-RTSD","Remote Terminal Session Detection",{"name":40},{"id":70,"name":71,"tactic":72},"D3-ISVA","Inbound Session Volume Analysis",{"name":40},{"id":74,"name":75,"tactic":76},"D3-NTF","Network Traffic Filtering",{"name":77},"Isolate",{"id":79,"name":80,"tactic":81},"D3-ITF","Inbound Traffic Filtering",{"name":77},{"id":83,"name":84,"techniques":85},"CAPEC-492","Regular Expression Exponential Blowup",[],[],[],[],[90,92,94,96,98,100,102,104,106,108,110,112,114,116,118,120],{"_key":91},"SUSE-SU-2017:2907-1",{"_key":93},"OPENSUSE-SU-2024:10268-1",{"_key":95},"DLA-66-1",{"_key":97},"DSA-2989-1",{"_key":99},"MGASA-2014-0304",{"_key":101},"MGASA-2014-0305",{"_key":103},"UBUNTU-CVE-2014-0118",{"_key":105},"USN-2299-1",{"_key":107},"DEBIAN-CVE-2014-0118",{"_key":109},"RHSA-2014:0920",{"_key":111},"RHSA-2014:0921",{"_key":113},"RHSA-2014:0922",{"_key":115},"RHSA-2014:1019",{"_key":117},"RHSA-2014:1020",{"_key":119},"RHSA-2014:1087",{"_key":121},"RHSA-2014:1088",[],[124,125,126,127],{"_key":91},{"_key":93},{"_key":99},{"_key":101},"2014-07-20T10:00:00.000Z","2024-08-06T09:05:39.036Z","Modified",{"cisa_kev":132,"cisa_ransomware":132,"cisa_vendor":9,"epss_severity":133,"epss_score":134,"severity":135,"severity_score":136,"severity_version":137,"severity_source":138,"severity_vector":139,"severity_status":130},false,"high",0.41327,"medium",4.3,"v2.0","nvd","AV:N/AC:M/Au:N/C:N/I:N/A:P",[141,151,156,161,165,169,174,178,183,188,192,196,200,204,208,212,216,221,227,232,237,241,245,249,254,258,262,266,270,274,278,282,286,290,294,298,302,306,310,314,318,322,326],{"url":142,"sources":143,"tags":145},"http://marc.info/?l=bugtraq&m=144493176821532&w=2",[144,138],"cve.org",[146,147,148,149,150],"Vendor Advisory","X Refsource HP","Issue Tracking","Mailing List","Third Party Advisory",{"url":152,"sources":153,"tags":154},"http://advisories.mageia.org/MGASA-2014-0305.html",[144,138],[155,150],"X Refsource CONFIRM",{"url":157,"sources":158,"tags":159},"http://www.debian.org/security/2014/dsa-2989",[144,138],[146,160,150],"X Refsource DEBIAN",{"url":162,"sources":163,"tags":164},"http://marc.info/?l=bugtraq&m=144050155601375&w=2",[144,138],[146,147,148,149,150],{"url":166,"sources":167,"tags":168},"https://support.apple.com/HT204659",[144,138],[155,150],{"url":170,"sources":171,"tags":172},"http://httpd.apache.org/security/vulnerabilities_24.html",[144,138],[155,173,146],"Patch",{"url":175,"sources":176,"tags":177},"http://svn.apache.org/repos/asf/httpd/httpd/branches/2.2.x/CHANGES",[144,138],[155,146],{"url":179,"sources":180,"tags":181},"https://security.gentoo.org/glsa/201504-03",[144,138],[146,182,150],"X Refsource GENTOO",{"url":184,"sources":185,"tags":186},"http://rhn.redhat.com/errata/RHSA-2014-1020.html",[144,138],[146,187,150],"X Refsource REDHAT",{"url":189,"sources":190,"tags":191},"http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/filters/mod_deflate.c",[144,138],[155,146],{"url":193,"sources":194,"tags":195},"https://puppet.com/security/cve/cve-2014-0118",[144,138],[155,150],{"url":197,"sources":198,"tags":199},"http://marc.info/?l=bugtraq&m=143748090628601&w=2",[144,138],[146,147,148,149,150],{"url":201,"sources":202,"tags":203},"http://marc.info/?l=bugtraq&m=143403519711434&w=2",[144,138],[146,147,148,149,150],{"url":205,"sources":206,"tags":207},"http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html",[144,138],[155,150],{"url":209,"sources":210,"tags":211},"http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/filters/mod_deflate.c?r1=1604353&r2=1610501&diff_format=h",[144,138],[155,173,146],{"url":213,"sources":214,"tags":215},"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04832246",[144,138],[155,150],{"url":217,"sources":218,"tags":219},"http://rhn.redhat.com/errata/RHSA-2014-1021.html",[144,138],[146,187,220],"Broken Link",{"url":222,"sources":223,"tags":224},"http://www.securityfocus.com/bid/68745",[144,138],[225,226,150],"VDB Entry","X Refsource BID",{"url":228,"sources":229,"tags":230},"http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html",[144,138],[146,231,220,149],"X Refsource APPLE",{"url":233,"sources":234,"tags":235},"http://www.mandriva.com/security/advisories?name=MDVSA-2014:142",[144,138],[146,236,220],"X Refsource MANDRIVA",{"url":238,"sources":239,"tags":240},"https://bugzilla.redhat.com/show_bug.cgi?id=1120601",[144,138],[155,148,150],{"url":242,"sources":243,"tags":244},"http://rhn.redhat.com/errata/RHSA-2014-1019.html",[144,138],[146,187,150],{"url":246,"sources":247,"tags":248},"http://advisories.mageia.org/MGASA-2014-0304.html",[144,138],[155,150],{"url":250,"sources":251,"tags":252},"https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba%40%3Ccvs.httpd.apache.org%3E",[144,138],[149,253],"X Refsource MLIST",{"url":255,"sources":256,"tags":257},"https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830%40%3Ccvs.httpd.apache.org%3E",[144,138],[149,253],{"url":259,"sources":260,"tags":261},"https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f%40%3Ccvs.httpd.apache.org%3E",[144,138],[149,253],{"url":263,"sources":264,"tags":265},"https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53%40%3Ccvs.httpd.apache.org%3E",[144,138],[149,253],{"url":267,"sources":268,"tags":269},"https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7%40%3Ccvs.httpd.apache.org%3E",[144,138],[149,253],{"url":271,"sources":272,"tags":273},"https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f%40%3Ccvs.httpd.apache.org%3E",[144,138],[149,253],{"url":275,"sources":276,"tags":277},"https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234%40%3Ccvs.httpd.apache.org%3E",[144,138],[149,253],{"url":279,"sources":280,"tags":281},"https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b%40%3Ccvs.httpd.apache.org%3E",[144,138],[149,253],{"url":283,"sources":284,"tags":285},"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E",[144,138],[149,253],{"url":287,"sources":288,"tags":289},"https://lists.apache.org/thread.html/ra7f6aeb28661fbf826969526585f16856abc4615877875f9d3b35ef4%40%3Ccvs.httpd.apache.org%3E",[144,138],[149,253],{"url":291,"sources":292,"tags":293},"https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b%40%3Ccvs.httpd.apache.org%3E",[144,138],[149,253],{"url":295,"sources":296,"tags":297},"https://lists.apache.org/thread.html/rc998b18880df98bafaade071346690c2bc1444adaa1a1ea464b93f0a%40%3Ccvs.httpd.apache.org%3E",[144,138],[149,253],{"url":299,"sources":300,"tags":301},"https://lists.apache.org/thread.html/r83109088737656fa6307bd99ab40f8ff0269ae58d3f7272d7048494a%40%3Ccvs.httpd.apache.org%3E",[144,138],[149,253],{"url":303,"sources":304,"tags":305},"https://lists.apache.org/thread.html/r9821b0a32a1d0a1b4947abb6f3630053fcbb2ec905d9a32c2bd4d4ee%40%3Ccvs.httpd.apache.org%3E",[144,138],[149,253],{"url":307,"sources":308,"tags":309},"https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064%40%3Ccvs.httpd.apache.org%3E",[144,138],[149,253],{"url":311,"sources":312,"tags":313},"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E",[144,138],[149,253],{"url":315,"sources":316,"tags":317},"https://lists.apache.org/thread.html/rcc44594d4d6579b90deccd4536b5d31f099ef563df39b094be286b9e%40%3Ccvs.httpd.apache.org%3E",[144,138],[149,253],{"url":319,"sources":320,"tags":321},"https://lists.apache.org/thread.html/rad01d817195e6cc871cb1d73b207ca326379a20a6e7f30febaf56d24%40%3Ccvs.httpd.apache.org%3E",[144,138],[149,253],{"url":323,"sources":324,"tags":325},"https://lists.apache.org/thread.html/r476d175be0aaf4a17680ef98c5153b4d336eaef76fb2224cc94c463a%40%3Ccvs.httpd.apache.org%3E",[144,138],[149,253],{"url":327,"sources":328,"tags":329},"https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f%40%3Ccvs.httpd.apache.org%3E",[144,138],[149,253],[],{"date":332,"score":134,"percentile":333},"2026-06-04",0.97475,[335,339,341,344,346,348,350,352,355,358,361,363,366,368,370,373,376,379,381,383,385,387,390,392,395,397,399,401,405,408,410,412,414,416,418,420,422,425,428,431,434,437,440,443,446,449,452,454,456,458,461,463,466,469,473,476,479,481,484,488,491,494,497,499,502,504,507,510,512,514,517,520,523,525,528,531,534,536,538,541,544,547,549,552,555,558,561,563,566,569],{"date":336,"score":337,"percentile":338},"2025-11-04",0.48877,0.97622,{"date":340,"score":337,"percentile":338},"2025-11-05",{"date":342,"score":337,"percentile":343},"2025-11-06",0.97621,{"date":345,"score":337,"percentile":343},"2025-11-07",{"date":347,"score":337,"percentile":343},"2025-11-08",{"date":349,"score":337,"percentile":343},"2025-11-09",{"date":351,"score":337,"percentile":343},"2025-11-10",{"date":353,"score":337,"percentile":354},"2025-11-11",0.97623,{"date":356,"score":337,"percentile":357},"2025-11-12",0.97626,{"date":359,"score":337,"percentile":360},"2025-11-13",0.97625,{"date":362,"score":337,"percentile":357},"2025-11-14",{"date":364,"score":337,"percentile":365},"2025-11-15",0.97624,{"date":367,"score":337,"percentile":365},"2025-11-16",{"date":369,"score":337,"percentile":365},"2025-11-17",{"date":371,"score":337,"percentile":372},"2025-11-18",0.97629,{"date":374,"score":337,"percentile":375},"2025-11-19",0.9763,{"date":377,"score":337,"percentile":378},"2025-11-20",0.97637,{"date":380,"score":337,"percentile":365},"2025-11-21",{"date":382,"score":337,"percentile":365},"2025-11-22",{"date":384,"score":337,"percentile":360},"2025-11-23",{"date":386,"score":337,"percentile":357},"2025-11-24",{"date":388,"score":337,"percentile":389},"2025-11-25",0.97627,{"date":391,"score":337,"percentile":389},"2025-11-26",{"date":393,"score":337,"percentile":394},"2025-11-27",0.97628,{"date":396,"score":337,"percentile":357},"2025-11-28",{"date":398,"score":337,"percentile":360},"2025-11-29",{"date":400,"score":337,"percentile":360},"2025-11-30",{"date":402,"score":403,"percentile":404},"2025-12-01",0.21379,0.95513,{"date":406,"score":403,"percentile":407},"2025-12-02",0.95512,{"date":409,"score":403,"percentile":404},"2025-12-03",{"date":411,"score":337,"percentile":365},"2025-12-04",{"date":413,"score":337,"percentile":365},"2025-12-05",{"date":415,"score":337,"percentile":354},"2025-12-06",{"date":417,"score":337,"percentile":360},"2025-12-07",{"date":419,"score":337,"percentile":372},"2025-12-08",{"date":421,"score":337,"percentile":394},"2025-12-09",{"date":423,"score":337,"percentile":424},"2025-12-10",0.97632,{"date":426,"score":337,"percentile":427},"2025-12-11",0.97634,{"date":429,"score":337,"percentile":430},"2025-12-12",0.97639,{"date":432,"score":337,"percentile":433},"2025-12-13",0.9764,{"date":435,"score":134,"percentile":436},"2025-12-14",0.97245,{"date":438,"score":134,"percentile":439},"2025-12-15",0.97247,{"date":441,"score":134,"percentile":442},"2025-12-16",0.97249,{"date":444,"score":134,"percentile":445},"2025-12-17",0.97251,{"date":447,"score":134,"percentile":448},"2025-12-18",0.97252,{"date":450,"score":134,"percentile":451},"2025-12-19",0.97253,{"date":453,"score":134,"percentile":448},"2025-12-20",{"date":455,"score":134,"percentile":442},"2025-12-21",{"date":457,"score":134,"percentile":442},"2025-12-22",{"date":459,"score":134,"percentile":460},"2025-12-23",0.9725,{"date":462,"score":134,"percentile":445},"2025-12-24",{"date":464,"score":134,"percentile":465},"2025-12-25",0.97254,{"date":467,"score":134,"percentile":468},"2025-12-26",0.97255,{"date":470,"score":471,"percentile":472},"2025-12-27",0.42514,0.97343,{"date":474,"score":134,"percentile":475},"2025-12-28",0.97256,{"date":477,"score":134,"percentile":478},"2025-12-29",0.97258,{"date":480,"score":134,"percentile":478},"2025-12-30",{"date":482,"score":134,"percentile":483},"2025-12-31",0.97263,{"date":485,"score":486,"percentile":487},"2026-01-01",0.16692,0.94764,{"date":489,"score":486,"percentile":490},"2026-01-02",0.94759,{"date":492,"score":486,"percentile":493},"2026-01-03",0.94756,{"date":495,"score":134,"percentile":496},"2026-01-04",0.97262,{"date":498,"score":134,"percentile":483},"2026-01-05",{"date":500,"score":134,"percentile":501},"2026-01-06",0.97265,{"date":503,"score":134,"percentile":501},"2026-01-07",{"date":505,"score":134,"percentile":506},"2026-01-08",0.97266,{"date":508,"score":134,"percentile":509},"2026-01-09",0.97268,{"date":511,"score":134,"percentile":509},"2026-01-10",{"date":513,"score":134,"percentile":509},"2026-01-11",{"date":515,"score":134,"percentile":516},"2026-01-12",0.97269,{"date":518,"score":134,"percentile":519},"2026-01-13",0.97271,{"date":521,"score":134,"percentile":522},"2026-01-14",0.97275,{"date":524,"score":134,"percentile":522},"2026-01-15",{"date":526,"score":134,"percentile":527},"2026-01-16",0.97277,{"date":529,"score":134,"percentile":530},"2026-01-17",0.97278,{"date":532,"score":134,"percentile":533},"2026-01-18",0.97276,{"date":535,"score":134,"percentile":527},"2026-01-19",{"date":537,"score":134,"percentile":530},"2026-01-20",{"date":539,"score":134,"percentile":540},"2026-01-21",0.97279,{"date":542,"score":134,"percentile":543},"2026-01-22",0.9728,{"date":545,"score":134,"percentile":546},"2026-01-23",0.97283,{"date":548,"score":134,"percentile":546},"2026-01-24",{"date":550,"score":134,"percentile":551},"2026-01-25",0.97285,{"date":553,"score":134,"percentile":554},"2026-01-26",0.97286,{"date":556,"score":134,"percentile":557},"2026-01-27",0.97287,{"date":559,"score":134,"percentile":560},"2026-01-28",0.97289,{"date":562,"score":134,"percentile":560},"2026-01-29",{"date":564,"score":134,"percentile":565},"2026-01-30",0.97288,{"date":567,"score":134,"percentile":568},"2026-01-31",0.9729,{"date":570,"score":486,"percentile":571},"2026-02-01",0.94786,[573],{"source":138,"cvss_v2_0":574,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":136,"baseSeverity":9,"vectorString":139,"impactScore":575,"exploitabilityScore":576},2.9,8.6,[578,593,603],{"ecosystem":9,"name":579,"vendor":9,"product":579,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":580},"HTTP Server",[581,589],{"version":582,"is_range":583,"range_type":584,"version_start":585,"version_start_type":586,"version_end":587,"version_end_type":588,"fixed_in":9},"gte2.2.0_lt2.2.29",true,"cpe","2.2.0","including","2.2.29","excluding",{"version":590,"is_range":583,"range_type":584,"version_start":591,"version_start_type":586,"version_end":592,"version_end_type":588,"fixed_in":9},"gte2.4.1_lt2.4.10","2.4.1","2.4.10",{"ecosystem":9,"name":594,"vendor":595,"product":596,"cpe_part":597,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":598},"debian linux","debian","debian_linux","o",[599,601],{"version":600,"is_range":132,"range_type":584,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0",{"version":602,"is_range":132,"range_type":584,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0",{"ecosystem":9,"name":604,"vendor":605,"product":606,"cpe_part":607,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":608},"jboss enterprise application platform","redhat","jboss_enterprise_application_platform","a",[609,611],{"version":610,"is_range":132,"range_type":584,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.0",{"version":612,"is_range":132,"range_type":584,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.4.0"]