[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2014-9652":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":68,"aliases":69,"duplicate_of":9,"upstream":70,"downstream":71,"duplicates":96,"related":97,"reserved_at":9,"published_at":100,"modified_at":101,"state":102,"summary":103,"references_raw":112,"kevs":209,"epss":210,"epss_history":213,"metrics":463,"affected":468},"CVE-2014-9652","The mconvert function in softmagic.c in file before 5.21, as used in the Fileinfo component in PHP before 5.4.37, 5.5.x before 5.5.21, and 5.6.x before 5.6.5, does not properly handle a certain string-length field during a copy of a truncated version of a Pascal string, which might allow remote attackers to cause a denial of service (out-of-bounds memory access and application crash) via a crafted file.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-119","Improper Restriction of Operations within the Bounds of a Memory Buffer","The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.","weakness","Stable","Class","High",[20,24,28,32,36,40,44,48,52,56,60,64],{"id":21,"name":22,"techniques":23},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":25,"name":26,"techniques":27},"CAPEC-100","Overflow Buffers",[],{"id":29,"name":30,"techniques":31},"CAPEC-123","Buffer Manipulation",[],{"id":33,"name":34,"techniques":35},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":37,"name":38,"techniques":39},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":41,"name":42,"techniques":43},"CAPEC-42","MIME Conversion",[],{"id":45,"name":46,"techniques":47},"CAPEC-44","Overflow Binary Resource File",[],{"id":49,"name":50,"techniques":51},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":53,"name":54,"techniques":55},"CAPEC-46","Overflow Variables and Tags",[],{"id":57,"name":58,"techniques":59},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":61,"name":62,"techniques":63},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":65,"name":66,"techniques":67},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],[],[],[],[72,74,76,78,80,82,84,86,88,90,92,94],{"_key":73},"RHSA-2015:1053",{"_key":75},"RHSA-2015:1066",{"_key":77},"RHSA-2015:1135",{"_key":79},"RHSA-2015:2155",{"_key":81},"SUSE-SU-2015:0424-1",{"_key":83},"SUSE-SU-2016:1638-1",{"_key":85},"DLA-145-1",{"_key":87},"DSA-3121-1",{"_key":89},"DSA-3126-1",{"_key":91},"UBUNTU-CVE-2014-9652",{"_key":93},"USN-2501-1",{"_key":95},"DEBIAN-CVE-2014-9652",[],[98,99],{"_key":81},{"_key":83},"2015-03-30T10:00:00.000Z","2024-08-06T13:47:41.726Z","Modified",{"cisa_kev":104,"cisa_ransomware":104,"cisa_vendor":9,"epss_severity":105,"epss_score":106,"severity":107,"severity_score":108,"severity_version":109,"severity_source":110,"severity_vector":111,"severity_status":102},false,"low",0.06907,"medium",5,"v2.0","nvd","AV:N/AC:L/Au:N/C:N/I:N/A:P",[113,120,126,131,135,140,144,149,153,157,161,165,169,173,177,182,186,191,195,201,205],{"url":114,"sources":115,"tags":117},"http://marc.info/?l=bugtraq&m=144050155601375&w=2",[116,110],"cve.org",[118,119],"Vendor Advisory","X Refsource HP",{"url":121,"sources":122,"tags":123},"http://www.securityfocus.com/bid/72505",[116,110],[124,125],"VDB Entry","X Refsource BID",{"url":127,"sources":128,"tags":129},"http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html",[116,110],[118,130],"X Refsource APPLE",{"url":132,"sources":133,"tags":134},"http://marc.info/?l=bugtraq&m=143748090628601&w=2",[116,110],[118,119],{"url":136,"sources":137,"tags":138},"http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html",[116,110],[139],"X Refsource CONFIRM",{"url":141,"sources":142,"tags":143},"http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html",[116,110],[139],{"url":145,"sources":146,"tags":147},"http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00004.html",[116,110],[118,148],"X Refsource SUSE",{"url":150,"sources":151,"tags":152},"https://github.com/file/file/commit/59e63838913eee47f5c120a6c53d4565af638158",[116,110],[139],{"url":154,"sources":155,"tags":156},"http://php.net/ChangeLog-5.php",[116,110],[139],{"url":158,"sources":159,"tags":160},"http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html",[116,110],[139],{"url":162,"sources":163,"tags":164},"https://support.apple.com/HT205267",[116,110],[139],{"url":166,"sources":167,"tags":168},"http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00003.html",[116,110],[118,148],{"url":170,"sources":171,"tags":172},"https://bugs.php.net/patch-display.php?bug=68735&patch=bug68735.patch&revision=1420309079",[116,110],[139],{"url":174,"sources":175,"tags":176},"http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00002.html",[116,110],[118,148],{"url":178,"sources":179,"tags":180},"http://rhn.redhat.com/errata/RHSA-2015-1135.html",[116,110],[118,181],"X Refsource REDHAT",{"url":183,"sources":184,"tags":185},"http://bugs.gw.com/view.php?id=398",[116,110],[139],{"url":187,"sources":188,"tags":189},"https://security.gentoo.org/glsa/201701-42",[116,110],[118,190],"X Refsource GENTOO",{"url":192,"sources":193,"tags":194},"http://rhn.redhat.com/errata/RHSA-2015-1053.html",[116,110],[118,181],{"url":196,"sources":197,"tags":198},"http://openwall.com/lists/oss-security/2015/02/05/12",[116,110],[199,200],"Mailing List","X Refsource MLIST",{"url":202,"sources":203,"tags":204},"http://rhn.redhat.com/errata/RHSA-2015-1066.html",[116,110],[118,181],{"url":206,"sources":207,"tags":208},"https://bugs.php.net/bug.php?id=68735",[116,110],[139],[],{"date":211,"score":106,"percentile":212},"2026-06-04",0.91551,[214,218,221,224,227,229,232,234,236,239,242,245,248,251,253,256,259,262,265,268,271,273,276,279,281,283,286,288,291,294,296,299,302,305,307,309,311,314,317,320,323,325,327,330,333,336,338,341,344,347,350,353,356,359,363,366,368,370,373,376,379,382,385,387,390,393,396,398,401,404,406,409,412,415,418,420,423,426,428,430,433,436,439,442,445,448,451,454,457,460],{"date":215,"score":216,"percentile":217},"2025-11-04",0.05795,0.90087,{"date":219,"score":216,"percentile":220},"2025-11-05",0.90086,{"date":222,"score":216,"percentile":223},"2025-11-06",0.90084,{"date":225,"score":216,"percentile":226},"2025-11-07",0.90091,{"date":228,"score":216,"percentile":226},"2025-11-08",{"date":230,"score":216,"percentile":231},"2025-11-09",0.90089,{"date":233,"score":216,"percentile":231},"2025-11-10",{"date":235,"score":216,"percentile":217},"2025-11-11",{"date":237,"score":216,"percentile":238},"2025-11-12",0.90095,{"date":240,"score":216,"percentile":241},"2025-11-13",0.90099,{"date":243,"score":216,"percentile":244},"2025-11-14",0.90101,{"date":246,"score":216,"percentile":247},"2025-11-15",0.90098,{"date":249,"score":216,"percentile":250},"2025-11-16",0.90102,{"date":252,"score":216,"percentile":247},"2025-11-17",{"date":254,"score":216,"percentile":255},"2025-11-18",0.89568,{"date":257,"score":216,"percentile":258},"2025-11-19",0.89572,{"date":260,"score":216,"percentile":261},"2025-11-20",0.89576,{"date":263,"score":216,"percentile":264},"2025-11-21",0.90109,{"date":266,"score":216,"percentile":267},"2025-11-22",0.90108,{"date":269,"score":216,"percentile":270},"2025-11-23",0.90107,{"date":272,"score":216,"percentile":264},"2025-11-24",{"date":274,"score":216,"percentile":275},"2025-11-25",0.90111,{"date":277,"score":216,"percentile":278},"2025-11-26",0.90112,{"date":280,"score":216,"percentile":278},"2025-11-27",{"date":282,"score":216,"percentile":244},"2025-11-28",{"date":284,"score":216,"percentile":285},"2025-11-29",0.90141,{"date":287,"score":216,"percentile":285},"2025-11-30",{"date":289,"score":216,"percentile":290},"2025-12-01",0.90198,{"date":292,"score":216,"percentile":293},"2025-12-02",0.90201,{"date":295,"score":216,"percentile":293},"2025-12-03",{"date":297,"score":216,"percentile":298},"2025-12-04",0.90144,{"date":300,"score":216,"percentile":301},"2025-12-05",0.90145,{"date":303,"score":216,"percentile":304},"2025-12-06",0.90143,{"date":306,"score":216,"percentile":285},"2025-12-07",{"date":308,"score":216,"percentile":285},"2025-12-08",{"date":310,"score":216,"percentile":298},"2025-12-09",{"date":312,"score":216,"percentile":313},"2025-12-10",0.90153,{"date":315,"score":216,"percentile":316},"2025-12-11",0.90156,{"date":318,"score":216,"percentile":319},"2025-12-12",0.90161,{"date":321,"score":216,"percentile":322},"2025-12-13",0.90163,{"date":324,"score":216,"percentile":319},"2025-12-14",{"date":326,"score":216,"percentile":319},"2025-12-15",{"date":328,"score":216,"percentile":329},"2025-12-16",0.90157,{"date":331,"score":216,"percentile":332},"2025-12-17",0.90165,{"date":334,"score":216,"percentile":335},"2025-12-18",0.90173,{"date":337,"score":216,"percentile":335},"2025-12-19",{"date":339,"score":216,"percentile":340},"2025-12-20",0.90171,{"date":342,"score":216,"percentile":343},"2025-12-21",0.90181,{"date":345,"score":216,"percentile":346},"2025-12-22",0.90183,{"date":348,"score":216,"percentile":349},"2025-12-23",0.90187,{"date":351,"score":216,"percentile":352},"2025-12-24",0.90194,{"date":354,"score":216,"percentile":355},"2025-12-25",0.90206,{"date":357,"score":216,"percentile":358},"2025-12-26",0.90205,{"date":360,"score":361,"percentile":362},"2025-12-27",0.04187,0.88402,{"date":364,"score":216,"percentile":365},"2025-12-28",0.90199,{"date":367,"score":216,"percentile":352},"2025-12-29",{"date":369,"score":216,"percentile":293},"2025-12-30",{"date":371,"score":216,"percentile":372},"2025-12-31",0.90209,{"date":374,"score":216,"percentile":375},"2026-01-01",0.90277,{"date":377,"score":216,"percentile":378},"2026-01-02",0.90272,{"date":380,"score":216,"percentile":381},"2026-01-03",0.90271,{"date":383,"score":216,"percentile":384},"2026-01-04",0.90211,{"date":386,"score":216,"percentile":355},"2026-01-05",{"date":388,"score":216,"percentile":389},"2026-01-06",0.90208,{"date":391,"score":216,"percentile":392},"2026-01-07",0.90212,{"date":394,"score":216,"percentile":395},"2026-01-08",0.90217,{"date":397,"score":216,"percentile":395},"2026-01-09",{"date":399,"score":216,"percentile":400},"2026-01-10",0.90219,{"date":402,"score":216,"percentile":403},"2026-01-11",0.9021,{"date":405,"score":216,"percentile":403},"2026-01-12",{"date":407,"score":216,"percentile":408},"2026-01-13",0.90207,{"date":410,"score":216,"percentile":411},"2026-01-14",0.90222,{"date":413,"score":216,"percentile":414},"2026-01-15",0.90225,{"date":416,"score":216,"percentile":417},"2026-01-16",0.90228,{"date":419,"score":216,"percentile":414},"2026-01-17",{"date":421,"score":216,"percentile":422},"2026-01-18",0.90226,{"date":424,"score":216,"percentile":425},"2026-01-19",0.90224,{"date":427,"score":216,"percentile":422},"2026-01-20",{"date":429,"score":216,"percentile":417},"2026-01-21",{"date":431,"score":216,"percentile":432},"2026-01-22",0.90231,{"date":434,"score":216,"percentile":435},"2026-01-23",0.90239,{"date":437,"score":216,"percentile":438},"2026-01-24",0.90244,{"date":440,"score":216,"percentile":441},"2026-01-25",0.90246,{"date":443,"score":216,"percentile":444},"2026-01-26",0.90248,{"date":446,"score":216,"percentile":447},"2026-01-27",0.90251,{"date":449,"score":216,"percentile":450},"2026-01-28",0.90257,{"date":452,"score":216,"percentile":453},"2026-01-29",0.90258,{"date":455,"score":216,"percentile":456},"2026-01-30",0.90256,{"date":458,"score":216,"percentile":459},"2026-01-31",0.90264,{"date":461,"score":216,"percentile":462},"2026-02-01",0.90327,[464],{"source":110,"cvss_v2_0":465,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":108,"baseSeverity":9,"vectorString":111,"impactScore":466,"exploitabilityScore":467},2.9,10,[469,480],{"ecosystem":9,"name":470,"vendor":471,"product":470,"cpe_part":472,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":473},"file","file_project","a",[474],{"version":475,"is_range":476,"range_type":477,"version_start":9,"version_start_type":9,"version_end":478,"version_end_type":479,"fixed_in":9},"lte5.20",true,"cpe","5.20","including",{"ecosystem":9,"name":481,"vendor":9,"product":481,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":482},"PHP",[483,486,488,490,492,494,496,498,500,502,504,506,508,510,512,514,516,518,520,522,524,526,528,530,532,534,536,538,540,542,544,546,548,550,552,554,556,558,560,562,564,566,568,570,572,574,576],{"version":484,"is_range":476,"range_type":477,"version_start":9,"version_start_type":9,"version_end":485,"version_end_type":479,"fixed_in":9},"lte5.4.36","5.4.36",{"version":487,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.0",{"version":489,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.0:alpha1",{"version":491,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.0:alpha2",{"version":493,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.0:alpha3",{"version":495,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.0:alpha4",{"version":497,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.0:alpha5",{"version":499,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.0:alpha6",{"version":501,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.0:beta1",{"version":503,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.0:beta2",{"version":505,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.0:beta3",{"version":507,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.0:beta4",{"version":509,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.0:rc1",{"version":511,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.0:rc2",{"version":513,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.1",{"version":515,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.2",{"version":517,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.3",{"version":519,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.4",{"version":521,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.5",{"version":523,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.6",{"version":525,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.7",{"version":527,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.8",{"version":529,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.9",{"version":531,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.10",{"version":533,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.11",{"version":535,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.12",{"version":537,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.13",{"version":539,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.14",{"version":541,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.15",{"version":543,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.16",{"version":545,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.17",{"version":547,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.18",{"version":549,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.19",{"version":551,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.20",{"version":553,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.6.0:alpha1",{"version":555,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.6.0:alpha2",{"version":557,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.6.0:alpha3",{"version":559,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.6.0:alpha4",{"version":561,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.6.0:alpha5",{"version":563,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.6.0:beta1",{"version":565,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.6.0:beta2",{"version":567,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.6.0:beta3",{"version":569,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.6.0:beta4",{"version":571,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.6.1",{"version":573,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.6.2",{"version":575,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.6.3",{"version":577,"is_range":104,"range_type":477,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.6.4"]