[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2014-8146":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":68,"aliases":97,"duplicate_of":9,"upstream":98,"downstream":99,"duplicates":122,"related":125,"reserved_at":9,"published_at":133,"modified_at":134,"state":135,"summary":136,"references_raw":143,"kevs":236,"epss":237,"epss_history":240,"metrics":482,"affected":487},"CVE-2014-8146","The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) before 55.1 does not properly track directionally isolated pieces of text, which allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly execute arbitrary code via crafted text.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-119","Improper Restriction of Operations within the Bounds of a Memory Buffer","The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.","weakness","Stable","Class","High",[20,24,28,32,36,40,44,48,52,56,60,64],{"id":21,"name":22,"techniques":23},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":25,"name":26,"techniques":27},"CAPEC-100","Overflow Buffers",[],{"id":29,"name":30,"techniques":31},"CAPEC-123","Buffer Manipulation",[],{"id":33,"name":34,"techniques":35},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":37,"name":38,"techniques":39},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":41,"name":42,"techniques":43},"CAPEC-42","MIME Conversion",[],{"id":45,"name":46,"techniques":47},"CAPEC-44","Overflow Binary Resource File",[],{"id":49,"name":50,"techniques":51},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":53,"name":54,"techniques":55},"CAPEC-46","Overflow Variables and Tags",[],{"id":57,"name":58,"techniques":59},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":61,"name":62,"techniques":63},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":65,"name":66,"techniques":67},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],[69,78,83],{"_key":70,"name":71,"source":72,"url":73,"maturity":74,"reliability_score":75,"verified":76,"type":9,"platforms":77,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_767F99DBD80FE2DA","Exploit Reference (raw.githubusercontent.com)","reference","https://raw.githubusercontent.com/pedrib/PoC/master/generic/i-c-u-fail.txt","unknown",0.2,false,[],{"_key":79,"name":80,"source":72,"url":81,"maturity":74,"reliability_score":75,"verified":76,"type":9,"platforms":82,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_A3EE67C95919069E","Exploit Reference (seclists.org)","http://seclists.org/fulldisclosure/2015/May/14",[],{"_key":84,"name":85,"source":86,"url":87,"maturity":88,"reliability_score":89,"verified":76,"type":90,"platforms":91,"requires_auth":9,"exploitdb":93,"metasploit":9},"43887","ICU library 52 \u003C 54 - Multiple Vulnerabilities","exploit-database","https://www.exploit-db.com/exploits/43887","poc",0.5,"local",[92],"multiple",{"verified":76,"type":90,"platform":92,"file":94,"codes":95},"exploits/multiple/local/43887.txt",[96,7],"CVE-2014-8147",[],[],[100,102,104,106,108,110,112,114,116,118,120],{"_key":101},"SUSE-SU-2015:1915-1",{"_key":103},"SUSE-SU-2016:0324-1",{"_key":105},"SUSE-SU-2017:2318-1",{"_key":107},"SUSE-SU-2018:1401-1",{"_key":109},"SUSE-SU-2018:1401-2",{"_key":111},"OPENSUSE-SU-2024:10006-1",{"_key":113},"DSA-3323-1",{"_key":115},"MGASA-2015-0286",{"_key":117},"UBUNTU-CVE-2014-8146",{"_key":119},"USN-2605-1",{"_key":121},"DEBIAN-CVE-2014-8146",[123],{"_key":124},"CVE-2015-8146",[126,127,128,129,130,131,132],{"_key":101},{"_key":103},{"_key":105},{"_key":107},{"_key":109},{"_key":111},{"_key":115},"2015-05-25T22:00:00.000Z","2024-08-06T13:10:51.019Z","Modified",{"cisa_kev":76,"cisa_ransomware":76,"cisa_vendor":9,"epss_severity":137,"epss_score":138,"severity":137,"severity_score":139,"severity_version":140,"severity_source":141,"severity_vector":142,"severity_status":135},"high",0.25808,7.5,"v2.0","nvd","AV:N/AC:L/Au:N/C:P/I:P/A:P",[144,151,156,162,166,172,177,182,188,192,196,200,204,209,213,219,223,228,232],{"url":145,"sources":146,"tags":148},"https://support.apple.com/HT205221",[147,141],"cve.org",[149,150],"X Refsource CONFIRM","Third Party Advisory",{"url":73,"sources":152,"tags":153},[147,141],[154,155],"X Refsource MISC","Exploit",{"url":157,"sources":158,"tags":159},"http://bugs.icu-project.org/trac/changeset/37162",[147,141],[149,160,161],"Issue Tracking","Vendor Advisory",{"url":163,"sources":164,"tags":165},"https://support.apple.com/HT205212",[147,141],[149,150],{"url":167,"sources":168,"tags":169},"http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html",[147,141],[161,170,171],"X Refsource APPLE","Mailing List",{"url":173,"sources":174,"tags":175},"http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html",[147,141],[149,176],"Patch",{"url":178,"sources":179,"tags":180},"https://security.gentoo.org/glsa/201507-04",[147,141],[161,181,150],"X Refsource GENTOO",{"url":183,"sources":184,"tags":185},"http://www.kb.cert.org/vuls/id/602540",[147,141],[150,186,187],"X Refsource CERT VN","US Government Resource",{"url":189,"sources":190,"tags":191},"https://support.apple.com/HT205267",[147,141],[149,150],{"url":81,"sources":193,"tags":194},[147,141],[171,195,155,150],"X Refsource FULLDISC",{"url":197,"sources":198,"tags":199},"http://lists.apple.com/archives/security-announce/2015/Sep/msg00005.html",[147,141],[161,170,171],{"url":201,"sources":202,"tags":203},"http://lists.apple.com/archives/security-announce/2015/Sep/msg00003.html",[147,141],[161,170,171],{"url":205,"sources":206,"tags":207},"http://openwall.com/lists/oss-security/2015/05/05/6",[147,141],[171,208],"X Refsource MLIST",{"url":210,"sources":211,"tags":212},"https://support.apple.com/HT205213",[147,141],[149,150],{"url":214,"sources":215,"tags":216},"http://www.securityfocus.com/bid/74457",[147,141],[217,218,150],"VDB Entry","X Refsource BID",{"url":220,"sources":221,"tags":222},"http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.html",[147,141],[161,170,171],{"url":224,"sources":225,"tags":226},"http://www.debian.org/security/2015/dsa-3323",[147,141],[161,227,150],"X Refsource DEBIAN",{"url":229,"sources":230,"tags":231},"http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html",[147,141],[149,150],{"url":233,"sources":234,"tags":235},"https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html",[147,141],[154],[],{"date":238,"score":138,"percentile":239},"2026-06-04",0.96359,[241,245,248,251,254,256,260,262,264,267,269,271,274,276,278,281,284,287,289,292,294,296,299,302,305,308,311,314,317,320,323,326,329,331,334,336,339,342,345,348,351,354,356,359,362,365,367,369,371,374,376,379,382,385,388,391,393,395,398,401,404,407,409,412,414,416,418,420,423,426,428,430,432,434,437,440,443,446,448,451,454,457,460,463,466,469,471,474,477,479],{"date":242,"score":243,"percentile":244},"2025-11-04",0.33764,0.96743,{"date":246,"score":243,"percentile":247},"2025-11-05",0.96744,{"date":249,"score":243,"percentile":250},"2025-11-06",0.96748,{"date":252,"score":243,"percentile":253},"2025-11-07",0.9675,{"date":255,"score":243,"percentile":253},"2025-11-08",{"date":257,"score":258,"percentile":259},"2025-11-09",0.4491,0.97425,{"date":261,"score":258,"percentile":259},"2025-11-10",{"date":263,"score":258,"percentile":259},"2025-11-11",{"date":265,"score":258,"percentile":266},"2025-11-12",0.97428,{"date":268,"score":258,"percentile":266},"2025-11-13",{"date":270,"score":258,"percentile":266},"2025-11-14",{"date":272,"score":258,"percentile":273},"2025-11-15",0.97426,{"date":275,"score":258,"percentile":273},"2025-11-16",{"date":277,"score":258,"percentile":273},"2025-11-17",{"date":279,"score":258,"percentile":280},"2025-11-18",0.9743,{"date":282,"score":258,"percentile":283},"2025-11-19",0.97431,{"date":285,"score":258,"percentile":286},"2025-11-20",0.97433,{"date":288,"score":258,"percentile":273},"2025-11-21",{"date":290,"score":258,"percentile":291},"2025-11-22",0.97424,{"date":293,"score":258,"percentile":259},"2025-11-23",{"date":295,"score":258,"percentile":273},"2025-11-24",{"date":297,"score":258,"percentile":298},"2025-11-25",0.97427,{"date":300,"score":138,"percentile":301},"2025-11-26",0.96042,{"date":303,"score":138,"percentile":304},"2025-11-27",0.96044,{"date":306,"score":138,"percentile":307},"2025-11-28",0.96041,{"date":309,"score":138,"percentile":310},"2025-11-29",0.96043,{"date":312,"score":138,"percentile":313},"2025-11-30",0.96045,{"date":315,"score":138,"percentile":316},"2025-12-01",0.96082,{"date":318,"score":138,"percentile":319},"2025-12-02",0.96081,{"date":321,"score":138,"percentile":322},"2025-12-03",0.96083,{"date":324,"score":138,"percentile":325},"2025-12-04",0.96046,{"date":327,"score":138,"percentile":328},"2025-12-05",0.96049,{"date":330,"score":138,"percentile":328},"2025-12-06",{"date":332,"score":138,"percentile":333},"2025-12-07",0.96048,{"date":335,"score":138,"percentile":328},"2025-12-08",{"date":337,"score":138,"percentile":338},"2025-12-09",0.96051,{"date":340,"score":138,"percentile":341},"2025-12-10",0.96056,{"date":343,"score":138,"percentile":344},"2025-12-11",0.96058,{"date":346,"score":138,"percentile":347},"2025-12-12",0.9606,{"date":349,"score":138,"percentile":350},"2025-12-13",0.96062,{"date":352,"score":138,"percentile":353},"2025-12-14",0.96057,{"date":355,"score":138,"percentile":347},"2025-12-15",{"date":357,"score":138,"percentile":358},"2025-12-16",0.96064,{"date":360,"score":138,"percentile":361},"2025-12-17",0.96067,{"date":363,"score":138,"percentile":364},"2025-12-18",0.96068,{"date":366,"score":138,"percentile":361},"2025-12-19",{"date":368,"score":138,"percentile":364},"2025-12-20",{"date":370,"score":138,"percentile":364},"2025-12-21",{"date":372,"score":138,"percentile":373},"2025-12-22",0.96069,{"date":375,"score":138,"percentile":364},"2025-12-23",{"date":377,"score":138,"percentile":378},"2025-12-24",0.96072,{"date":380,"score":138,"percentile":381},"2025-12-25",0.96076,{"date":383,"score":138,"percentile":384},"2025-12-26",0.96075,{"date":386,"score":138,"percentile":387},"2025-12-27",0.96096,{"date":389,"score":138,"percentile":390},"2025-12-28",0.96074,{"date":392,"score":138,"percentile":384},"2025-12-29",{"date":394,"score":138,"percentile":381},"2025-12-30",{"date":396,"score":138,"percentile":397},"2025-12-31",0.9608,{"date":399,"score":138,"percentile":400},"2026-01-01",0.96116,{"date":402,"score":138,"percentile":403},"2026-01-02",0.96112,{"date":405,"score":138,"percentile":406},"2026-01-03",0.96109,{"date":408,"score":138,"percentile":378},"2026-01-04",{"date":410,"score":138,"percentile":411},"2026-01-05",0.9607,{"date":413,"score":138,"percentile":378},"2026-01-06",{"date":415,"score":138,"percentile":378},"2026-01-07",{"date":417,"score":138,"percentile":390},"2026-01-08",{"date":419,"score":138,"percentile":381},"2026-01-09",{"date":421,"score":138,"percentile":422},"2026-01-10",0.96079,{"date":424,"score":138,"percentile":425},"2026-01-11",0.96077,{"date":427,"score":138,"percentile":425},"2026-01-12",{"date":429,"score":138,"percentile":381},"2026-01-13",{"date":431,"score":138,"percentile":316},"2026-01-14",{"date":433,"score":138,"percentile":322},"2026-01-15",{"date":435,"score":138,"percentile":436},"2026-01-16",0.96084,{"date":438,"score":138,"percentile":439},"2026-01-17",0.96087,{"date":441,"score":138,"percentile":442},"2026-01-18",0.9609,{"date":444,"score":138,"percentile":445},"2026-01-19",0.96089,{"date":447,"score":138,"percentile":442},"2026-01-20",{"date":449,"score":138,"percentile":450},"2026-01-21",0.96091,{"date":452,"score":138,"percentile":453},"2026-01-22",0.96092,{"date":455,"score":138,"percentile":456},"2026-01-23",0.96097,{"date":458,"score":138,"percentile":459},"2026-01-24",0.96099,{"date":461,"score":138,"percentile":462},"2026-01-25",0.96101,{"date":464,"score":138,"percentile":465},"2026-01-26",0.96103,{"date":467,"score":138,"percentile":468},"2026-01-27",0.96102,{"date":470,"score":138,"percentile":465},"2026-01-28",{"date":472,"score":138,"percentile":473},"2026-01-29",0.96104,{"date":475,"score":138,"percentile":476},"2026-01-30",0.96105,{"date":478,"score":138,"percentile":476},"2026-01-31",{"date":480,"score":138,"percentile":481},"2026-02-01",0.9614,[483],{"source":141,"cvss_v2_0":484,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":139,"baseSeverity":9,"vectorString":142,"impactScore":485,"exploitabilityScore":486},6.4,10,[488,500,507,514,521],{"ecosystem":9,"name":489,"vendor":490,"product":491,"cpe_part":492,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":493},"iphone os","apple","iphone_os","o",[494],{"version":495,"is_range":496,"range_type":497,"version_start":9,"version_start_type":9,"version_end":498,"version_end_type":499,"fixed_in":9},"lte8.2",true,"cpe","8.2","including",{"ecosystem":9,"name":501,"vendor":490,"product":501,"cpe_part":502,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":503},"itunes","a",[504],{"version":505,"is_range":496,"range_type":497,"version_start":9,"version_start_type":9,"version_end":506,"version_end_type":499,"fixed_in":9},"lte12.1.3","12.1.3",{"ecosystem":9,"name":508,"vendor":490,"product":509,"cpe_part":492,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":510},"mac os x","mac_os_x",[511],{"version":512,"is_range":496,"range_type":497,"version_start":9,"version_start_type":9,"version_end":513,"version_end_type":499,"fixed_in":9},"lte10.10.4","10.10.4",{"ecosystem":9,"name":515,"vendor":490,"product":516,"cpe_part":502,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":517},"watchOS","watchos",[518],{"version":519,"is_range":496,"range_type":497,"version_start":9,"version_start_type":9,"version_end":520,"version_end_type":499,"fixed_in":9},"lte1.0.1","1.0.1",{"ecosystem":9,"name":522,"vendor":523,"product":524,"cpe_part":502,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":525},"international components for unicode","icu-project","international_components_for_unicode",[526],{"version":527,"is_range":496,"range_type":497,"version_start":9,"version_start_type":9,"version_end":528,"version_end_type":529,"fixed_in":9},"lt55.1","55.1","excluding"]