[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2014-0238":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":68,"aliases":69,"duplicate_of":9,"upstream":70,"downstream":71,"duplicates":108,"related":109,"reserved_at":9,"published_at":115,"modified_at":116,"state":117,"summary":118,"references_raw":127,"kevs":216,"epss":217,"epss_history":220,"metrics":463,"affected":468},"CVE-2014-0238","The cdf_read_property_info function in cdf.c in the Fileinfo component in PHP before 5.4.29 and 5.5.x before 5.5.13 allows remote attackers to cause a denial of service (infinite loop or out-of-bounds memory access) via a vector that (1) has zero length or (2) is too long.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-119","Improper Restriction of Operations within the Bounds of a Memory Buffer","The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.","weakness","Stable","Class","High",[20,24,28,32,36,40,44,48,52,56,60,64],{"id":21,"name":22,"techniques":23},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":25,"name":26,"techniques":27},"CAPEC-100","Overflow Buffers",[],{"id":29,"name":30,"techniques":31},"CAPEC-123","Buffer Manipulation",[],{"id":33,"name":34,"techniques":35},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":37,"name":38,"techniques":39},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":41,"name":42,"techniques":43},"CAPEC-42","MIME Conversion",[],{"id":45,"name":46,"techniques":47},"CAPEC-44","Overflow Binary Resource File",[],{"id":49,"name":50,"techniques":51},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":53,"name":54,"techniques":55},"CAPEC-46","Overflow Variables and Tags",[],{"id":57,"name":58,"techniques":59},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":61,"name":62,"techniques":63},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":65,"name":66,"techniques":67},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],[],[],[],[72,74,76,78,80,82,84,86,88,90,92,94,96,98,100,102,104,106],{"_key":73},"RHSA-2014:1012",{"_key":75},"RHSA-2014:1013",{"_key":77},"RHSA-2014:1606",{"_key":79},"RHSA-2014:1765",{"_key":81},"RHSA-2014:1766",{"_key":83},"RHSA-2015:2155",{"_key":85},"OPENSUSE-SU-2024:10290-1",{"_key":87},"OPENSUSE-SU-2024:10344-1",{"_key":89},"OPENSUSE-SU-2024:11169-1",{"_key":91},"DLA-145-1",{"_key":93},"DLA-27-1",{"_key":95},"DSA-2943-1",{"_key":97},"DSA-3021-1",{"_key":99},"MGASA-2014-0252",{"_key":101},"MGASA-2014-0258",{"_key":103},"UBUNTU-CVE-2014-0238",{"_key":105},"USN-2254-1",{"_key":107},"DEBIAN-CVE-2014-0238",[],[110,111,112,113,114],{"_key":85},{"_key":87},{"_key":89},{"_key":99},{"_key":101},"2014-06-01T01:00:00.000Z","2024-08-06T09:05:39.452Z","Modified",{"cisa_kev":119,"cisa_ransomware":119,"cisa_vendor":9,"epss_severity":120,"epss_score":121,"severity":122,"severity_score":123,"severity_version":124,"severity_source":125,"severity_vector":126,"severity_status":117},false,"high",0.24474,"medium",5,"v2.0","nvd","AV:N/AC:L/Au:N/C:N/I:N/A:P",[128,136,140,145,152,156,161,165,170,176,182,186,190,195,199,204,208,212],{"url":129,"sources":130,"tags":132},"http://secunia.com/advisories/59329",[131,125],"cve.org",[133,134,135],"Third Party Advisory","X Refsource SECUNIA","Not Applicable",{"url":137,"sources":138,"tags":139},"http://secunia.com/advisories/59418",[131,125],[133,134,135],{"url":141,"sources":142,"tags":143},"https://support.apple.com/HT204659",[131,125],[144,133],"X Refsource CONFIRM",{"url":146,"sources":147,"tags":148},"https://bugs.php.net/bug.php?id=67327",[131,125],[144,149,150,151],"Issue Tracking","Patch","Vendor Advisory",{"url":153,"sources":154,"tags":155},"http://www-01.ibm.com/support/docview.wss?uid=swg21683486",[131,125],[144,133],{"url":157,"sources":158,"tags":159},"http://rhn.redhat.com/errata/RHSA-2014-1766.html",[131,125],[151,160,133],"X Refsource REDHAT",{"url":162,"sources":163,"tags":164},"https://github.com/file/file/commit/f97486ef5dc3e8735440edc4fc8808c63e1a3ef0",[131,125],[144,150,133],{"url":166,"sources":167,"tags":168},"http://www.debian.org/security/2014/dsa-3021",[131,125],[151,169,133],"X Refsource DEBIAN",{"url":171,"sources":172,"tags":173},"http://www.securityfocus.com/bid/67765",[131,125],[174,175,133],"VDB Entry","X Refsource BID",{"url":177,"sources":178,"tags":179},"http://lists.opensuse.org/opensuse-security-announce/2014-07/msg00002.html",[131,125],[151,180,181,133],"X Refsource SUSE","Mailing List",{"url":183,"sources":184,"tags":185},"http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html",[131,125],[144,133],{"url":187,"sources":188,"tags":189},"http://secunia.com/advisories/59061",[131,125],[133,134,135],{"url":191,"sources":192,"tags":193},"http://www.php.net/ChangeLog-5.php",[131,125],[144,194,151],"Release Notes",{"url":196,"sources":197,"tags":198},"http://secunia.com/advisories/60998",[131,125],[133,134,135],{"url":200,"sources":201,"tags":202},"http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html",[131,125],[151,203,181,133],"X Refsource APPLE",{"url":205,"sources":206,"tags":207},"http://support.apple.com/kb/HT6443",[131,125],[144,133],{"url":209,"sources":210,"tags":211},"http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html",[131,125],[144,133],{"url":213,"sources":214,"tags":215},"http://rhn.redhat.com/errata/RHSA-2014-1765.html",[131,125],[151,160,133],[],{"date":218,"score":121,"percentile":219},"2026-06-04",0.96216,[221,225,228,230,233,235,237,239,241,244,247,250,252,254,256,259,262,264,267,269,272,275,278,281,284,286,289,292,296,299,302,305,308,310,313,315,318,321,324,327,330,333,335,338,341,344,346,349,351,353,355,358,361,364,368,371,373,375,378,381,384,387,390,392,394,396,398,400,403,406,408,410,413,415,418,421,424,427,429,432,435,438,441,444,447,449,452,455,458,460],{"date":222,"score":223,"percentile":224},"2025-11-04",0.26161,0.96067,{"date":226,"score":223,"percentile":227},"2025-11-05",0.96064,{"date":229,"score":223,"percentile":224},"2025-11-06",{"date":231,"score":223,"percentile":232},"2025-11-07",0.96068,{"date":234,"score":223,"percentile":232},"2025-11-08",{"date":236,"score":223,"percentile":224},"2025-11-09",{"date":238,"score":223,"percentile":224},"2025-11-10",{"date":240,"score":223,"percentile":232},"2025-11-11",{"date":242,"score":223,"percentile":243},"2025-11-12",0.96071,{"date":245,"score":223,"percentile":246},"2025-11-13",0.96072,{"date":248,"score":223,"percentile":249},"2025-11-14",0.96074,{"date":251,"score":223,"percentile":249},"2025-11-15",{"date":253,"score":223,"percentile":249},"2025-11-16",{"date":255,"score":223,"percentile":249},"2025-11-17",{"date":257,"score":223,"percentile":258},"2025-11-18",0.95973,{"date":260,"score":223,"percentile":261},"2025-11-19",0.95974,{"date":263,"score":223,"percentile":261},"2025-11-20",{"date":265,"score":223,"percentile":266},"2025-11-21",0.96082,{"date":268,"score":223,"percentile":266},"2025-11-22",{"date":270,"score":223,"percentile":271},"2025-11-23",0.96081,{"date":273,"score":223,"percentile":274},"2025-11-24",0.96084,{"date":276,"score":223,"percentile":277},"2025-11-25",0.96087,{"date":279,"score":223,"percentile":280},"2025-11-26",0.96088,{"date":282,"score":223,"percentile":283},"2025-11-27",0.96091,{"date":285,"score":223,"percentile":277},"2025-11-28",{"date":287,"score":223,"percentile":288},"2025-11-29",0.9609,{"date":290,"score":223,"percentile":291},"2025-11-30",0.96092,{"date":293,"score":294,"percentile":295},"2025-12-01",0.12531,0.9371,{"date":297,"score":294,"percentile":298},"2025-12-02",0.93713,{"date":300,"score":294,"percentile":301},"2025-12-03",0.93715,{"date":303,"score":223,"percentile":304},"2025-12-04",0.96095,{"date":306,"score":223,"percentile":307},"2025-12-05",0.96097,{"date":309,"score":223,"percentile":307},"2025-12-06",{"date":311,"score":223,"percentile":312},"2025-12-07",0.96096,{"date":314,"score":223,"percentile":307},"2025-12-08",{"date":316,"score":223,"percentile":317},"2025-12-09",0.96099,{"date":319,"score":223,"percentile":320},"2025-12-10",0.96103,{"date":322,"score":223,"percentile":323},"2025-12-11",0.96105,{"date":325,"score":223,"percentile":326},"2025-12-12",0.96107,{"date":328,"score":223,"percentile":329},"2025-12-13",0.96108,{"date":331,"score":223,"percentile":332},"2025-12-14",0.96104,{"date":334,"score":223,"percentile":326},"2025-12-15",{"date":336,"score":223,"percentile":337},"2025-12-16",0.96111,{"date":339,"score":223,"percentile":340},"2025-12-17",0.96113,{"date":342,"score":223,"percentile":343},"2025-12-18",0.96114,{"date":345,"score":223,"percentile":340},"2025-12-19",{"date":347,"score":223,"percentile":348},"2025-12-20",0.96115,{"date":350,"score":223,"percentile":340},"2025-12-21",{"date":352,"score":223,"percentile":343},"2025-12-22",{"date":354,"score":223,"percentile":343},"2025-12-23",{"date":356,"score":223,"percentile":357},"2025-12-24",0.96118,{"date":359,"score":223,"percentile":360},"2025-12-25",0.96122,{"date":362,"score":223,"percentile":363},"2025-12-26",0.96121,{"date":365,"score":366,"percentile":367},"2025-12-27",0.14018,0.94155,{"date":369,"score":223,"percentile":370},"2025-12-28",0.96119,{"date":372,"score":223,"percentile":370},"2025-12-29",{"date":374,"score":223,"percentile":363},"2025-12-30",{"date":376,"score":223,"percentile":377},"2025-12-31",0.96125,{"date":379,"score":294,"percentile":380},"2026-01-01",0.93751,{"date":382,"score":294,"percentile":383},"2026-01-02",0.93749,{"date":385,"score":294,"percentile":386},"2026-01-03",0.93748,{"date":388,"score":223,"percentile":389},"2026-01-04",0.96117,{"date":391,"score":223,"percentile":348},"2026-01-05",{"date":393,"score":223,"percentile":389},"2026-01-06",{"date":395,"score":223,"percentile":357},"2026-01-07",{"date":397,"score":223,"percentile":370},"2026-01-08",{"date":399,"score":223,"percentile":360},"2026-01-09",{"date":401,"score":223,"percentile":402},"2026-01-10",0.96124,{"date":404,"score":223,"percentile":405},"2026-01-11",0.96123,{"date":407,"score":223,"percentile":405},"2026-01-12",{"date":409,"score":223,"percentile":360},"2026-01-13",{"date":411,"score":223,"percentile":412},"2026-01-14",0.96128,{"date":414,"score":223,"percentile":412},"2026-01-15",{"date":416,"score":223,"percentile":417},"2026-01-16",0.96131,{"date":419,"score":223,"percentile":420},"2026-01-17",0.96133,{"date":422,"score":223,"percentile":423},"2026-01-18",0.96136,{"date":425,"score":223,"percentile":426},"2026-01-19",0.96135,{"date":428,"score":223,"percentile":423},"2026-01-20",{"date":430,"score":223,"percentile":431},"2026-01-21",0.96137,{"date":433,"score":223,"percentile":434},"2026-01-22",0.96138,{"date":436,"score":223,"percentile":437},"2026-01-23",0.96144,{"date":439,"score":223,"percentile":440},"2026-01-24",0.96146,{"date":442,"score":223,"percentile":443},"2026-01-25",0.96147,{"date":445,"score":223,"percentile":446},"2026-01-26",0.96149,{"date":448,"score":223,"percentile":446},"2026-01-27",{"date":450,"score":223,"percentile":451},"2026-01-28",0.9615,{"date":453,"score":223,"percentile":454},"2026-01-29",0.96152,{"date":456,"score":223,"percentile":457},"2026-01-30",0.96153,{"date":459,"score":223,"percentile":457},"2026-01-31",{"date":461,"score":294,"percentile":462},"2026-02-01",0.93786,[464],{"source":125,"cvss_v2_0":465,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":123,"baseSeverity":9,"vectorString":126,"impactScore":466,"exploitabilityScore":467},2.9,10,[469,480],{"ecosystem":9,"name":470,"vendor":471,"product":472,"cpe_part":473,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":474},"debian linux","debian","debian_linux","o",[475,478],{"version":476,"is_range":119,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0","cpe",{"version":479,"is_range":119,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0",{"ecosystem":9,"name":481,"vendor":9,"product":481,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":482},"PHP",[483,488,493],{"version":484,"is_range":485,"range_type":477,"version_start":9,"version_start_type":9,"version_end":486,"version_end_type":487,"fixed_in":9},"lt5.3.29",true,"5.3.29","excluding",{"version":489,"is_range":485,"range_type":477,"version_start":490,"version_start_type":491,"version_end":492,"version_end_type":487,"fixed_in":9},"gte5.4.0_lt5.4.29","5.4.0","including","5.4.29",{"version":494,"is_range":485,"range_type":477,"version_start":495,"version_start_type":491,"version_end":496,"version_end_type":487,"fixed_in":9},"gte5.5.0_lt5.5.13","5.5.0","5.5.13"]