[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2015-4036":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":68,"aliases":78,"duplicate_of":9,"upstream":79,"downstream":80,"duplicates":99,"related":100,"reserved_at":9,"published_at":105,"modified_at":106,"state":107,"summary":108,"references_raw":116,"kevs":170,"epss":171,"epss_history":174,"metrics":431,"affected":436},"CVE-2015-4036","Array index error in the tcm_vhost_make_tpg function in drivers/vhost/scsi.c in the Linux kernel before 4.0 might allow guest OS users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted VHOST_SCSI_SET_ENDPOINT ioctl call.  NOTE: the affected function was renamed to vhost_scsi_make_tpg before the vulnerability was announced.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-119","Improper Restriction of Operations within the Bounds of a Memory Buffer","The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.","weakness","Stable","Class","High",[20,24,28,32,36,40,44,48,52,56,60,64],{"id":21,"name":22,"techniques":23},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":25,"name":26,"techniques":27},"CAPEC-100","Overflow Buffers",[],{"id":29,"name":30,"techniques":31},"CAPEC-123","Buffer Manipulation",[],{"id":33,"name":34,"techniques":35},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":37,"name":38,"techniques":39},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":41,"name":42,"techniques":43},"CAPEC-42","MIME Conversion",[],{"id":45,"name":46,"techniques":47},"CAPEC-44","Overflow Binary Resource File",[],{"id":49,"name":50,"techniques":51},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":53,"name":54,"techniques":55},"CAPEC-46","Overflow Variables and Tags",[],{"id":57,"name":58,"techniques":59},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":61,"name":62,"techniques":63},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":65,"name":66,"techniques":67},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],[69],{"_key":70,"name":71,"source":72,"url":73,"maturity":74,"reliability_score":75,"verified":76,"type":9,"platforms":77,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_80274EF66CAF457A","Exploit Reference (openwall.com)","reference","http://www.openwall.com/lists/oss-security/2015/05/13/4","unknown",0.2,false,[],[],[],[81,83,85,87,89,91,93,95,97],{"_key":82},"SUSE-SU-2015:1324-1",{"_key":84},"USN-2564-1",{"_key":86},"USN-2636-1",{"_key":88},"MGASA-2015-0236",{"_key":90},"MGASA-2015-0237",{"_key":92},"MGASA-2015-0238",{"_key":94},"UBUNTU-CVE-2015-4036",{"_key":96},"USN-2634-1",{"_key":98},"DEBIAN-CVE-2015-4036",[],[101,102,103,104],{"_key":82},{"_key":88},{"_key":90},{"_key":92},"2015-08-31T20:00:00.000Z","2024-08-06T06:04:02.583Z","Modified",{"cisa_kev":76,"cisa_ransomware":76,"cisa_vendor":9,"epss_severity":109,"epss_score":110,"severity":111,"severity_score":112,"severity_version":113,"severity_source":114,"severity_vector":115,"severity_status":107},"low",0.00104,"high",7.2,"v2.0","nvd","AV:L/AC:L/Au:N/C:C/I:C/A:C",[117,125,132,137,142,146,152,156,161,165],{"url":118,"sources":119,"tags":121},"http://www.ubuntu.com/usn/USN-2634-1",[120,114],"cve.org",[122,123,124],"Vendor Advisory","X Refsource UBUNTU","Third Party Advisory",{"url":126,"sources":127,"tags":128},"http://www.securityfocus.com/bid/74664",[120,114],[129,130,131],"VDB Entry","X Refsource BID","URL Repurposed",{"url":133,"sources":134,"tags":135},"http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=59c816c1f24df0204e01851431d3bab3eb76719c",[120,114],[136,124],"X Refsource CONFIRM",{"url":138,"sources":139,"tags":140},"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00049.html",[120,114],[122,141,124],"X Refsource SUSE",{"url":143,"sources":144,"tags":145},"http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00011.html",[120,114],[122,141,124],{"url":73,"sources":147,"tags":148},[120,114],[149,150,151,124],"Mailing List","X Refsource MLIST","Exploit",{"url":153,"sources":154,"tags":155},"https://github.com/torvalds/linux/commit/59c816c1f24df0204e01851431d3bab3eb76719c",[120,114],[136,124],{"url":157,"sources":158,"tags":159},"https://bugzilla.redhat.com/show_bug.cgi?id=1189864",[120,114],[136,160,124],"Issue Tracking",{"url":162,"sources":163,"tags":164},"http://www.ubuntu.com/usn/USN-2633-1",[120,114],[122,123,124],{"url":166,"sources":167,"tags":168},"http://www.securitytracker.com/id/1033729",[120,114],[129,169,131],"X Refsource SECTRACK",[],{"date":172,"score":110,"percentile":173},"2026-06-04",0.27964,[175,178,181,184,187,190,193,196,199,202,205,207,210,213,216,219,222,225,228,231,234,237,240,243,246,249,252,255,257,259,262,265,268,270,272,275,278,281,284,287,289,292,295,298,301,304,307,310,312,315,317,320,323,326,329,332,335,338,341,344,347,350,353,356,359,362,365,368,371,374,377,380,382,384,386,388,391,394,397,400,403,405,408,411,414,417,420,423,426,428],{"date":176,"score":110,"percentile":177},"2025-11-04",0.29096,{"date":179,"score":110,"percentile":180},"2025-11-05",0.29067,{"date":182,"score":110,"percentile":183},"2025-11-06",0.29084,{"date":185,"score":110,"percentile":186},"2025-11-07",0.29082,{"date":188,"score":110,"percentile":189},"2025-11-08",0.29085,{"date":191,"score":110,"percentile":192},"2025-11-09",0.29057,{"date":194,"score":110,"percentile":195},"2025-11-10",0.29037,{"date":197,"score":110,"percentile":198},"2025-11-11",0.29061,{"date":200,"score":110,"percentile":201},"2025-11-12",0.29108,{"date":203,"score":110,"percentile":204},"2025-11-13",0.29121,{"date":206,"score":110,"percentile":204},"2025-11-14",{"date":208,"score":110,"percentile":209},"2025-11-15",0.29113,{"date":211,"score":110,"percentile":212},"2025-11-16",0.29078,{"date":214,"score":110,"percentile":215},"2025-11-17",0.29058,{"date":217,"score":110,"percentile":218},"2025-11-18",0.24304,{"date":220,"score":110,"percentile":221},"2025-11-19",0.24334,{"date":223,"score":110,"percentile":224},"2025-11-20",0.24347,{"date":226,"score":110,"percentile":227},"2025-11-21",0.29095,{"date":229,"score":110,"percentile":230},"2025-11-22",0.29107,{"date":232,"score":110,"percentile":233},"2025-11-23",0.29074,{"date":235,"score":110,"percentile":236},"2025-11-24",0.29053,{"date":238,"score":110,"percentile":239},"2025-11-25",0.29042,{"date":241,"score":110,"percentile":242},"2025-11-26",0.29043,{"date":244,"score":110,"percentile":245},"2025-11-27",0.29055,{"date":247,"score":110,"percentile":248},"2025-11-28",0.29027,{"date":250,"score":110,"percentile":251},"2025-11-29",0.29016,{"date":253,"score":110,"percentile":254},"2025-11-30",0.28994,{"date":256,"score":110,"percentile":215},"2025-12-01",{"date":258,"score":110,"percentile":189},"2025-12-02",{"date":260,"score":110,"percentile":261},"2025-12-03",0.29092,{"date":263,"score":110,"percentile":264},"2025-12-04",0.29012,{"date":266,"score":110,"percentile":267},"2025-12-05",0.29041,{"date":269,"score":110,"percentile":239},"2025-12-06",{"date":271,"score":110,"percentile":251},"2025-12-07",{"date":273,"score":110,"percentile":274},"2025-12-08",0.29023,{"date":276,"score":110,"percentile":277},"2025-12-09",0.29083,{"date":279,"score":110,"percentile":280},"2025-12-10",0.29154,{"date":282,"score":110,"percentile":283},"2025-12-11",0.29184,{"date":285,"score":110,"percentile":286},"2025-12-12",0.29202,{"date":288,"score":110,"percentile":286},"2025-12-13",{"date":290,"score":110,"percentile":291},"2025-12-14",0.29172,{"date":293,"score":110,"percentile":294},"2025-12-15",0.29142,{"date":296,"score":110,"percentile":297},"2025-12-16",0.2916,{"date":299,"score":110,"percentile":300},"2025-12-17",0.29215,{"date":302,"score":110,"percentile":303},"2025-12-18",0.29263,{"date":305,"score":110,"percentile":306},"2025-12-19",0.29276,{"date":308,"score":110,"percentile":309},"2025-12-20",0.2925,{"date":311,"score":110,"percentile":286},"2025-12-21",{"date":313,"score":110,"percentile":314},"2025-12-22",0.29168,{"date":316,"score":110,"percentile":294},"2025-12-23",{"date":318,"score":110,"percentile":319},"2025-12-24",0.29149,{"date":321,"score":110,"percentile":322},"2025-12-25",0.29218,{"date":324,"score":110,"percentile":325},"2025-12-26",0.29211,{"date":327,"score":110,"percentile":328},"2025-12-27",0.29208,{"date":330,"score":110,"percentile":331},"2025-12-28",0.29129,{"date":333,"score":110,"percentile":334},"2025-12-29",0.29106,{"date":336,"score":110,"percentile":337},"2025-12-30",0.29104,{"date":339,"score":110,"percentile":340},"2025-12-31",0.29167,{"date":342,"score":110,"percentile":343},"2026-01-01",0.29287,{"date":345,"score":110,"percentile":346},"2026-01-02",0.29284,{"date":348,"score":110,"percentile":349},"2026-01-03",0.29266,{"date":351,"score":110,"percentile":352},"2026-01-04",0.29145,{"date":354,"score":110,"percentile":355},"2026-01-05",0.29139,{"date":357,"score":110,"percentile":358},"2026-01-06",0.29151,{"date":360,"score":110,"percentile":361},"2026-01-07",0.29182,{"date":363,"score":110,"percentile":364},"2026-01-08",0.29214,{"date":366,"score":110,"percentile":367},"2026-01-09",0.29203,{"date":369,"score":110,"percentile":370},"2026-01-10",0.2919,{"date":372,"score":110,"percentile":373},"2026-01-11",0.29173,{"date":375,"score":110,"percentile":376},"2026-01-12",0.29126,{"date":378,"score":110,"percentile":379},"2026-01-13",0.29101,{"date":381,"score":110,"percentile":358},"2026-01-14",{"date":383,"score":110,"percentile":319},"2026-01-15",{"date":385,"score":110,"percentile":291},"2026-01-16",{"date":387,"score":110,"percentile":373},"2026-01-17",{"date":389,"score":110,"percentile":390},"2026-01-18",0.29123,{"date":392,"score":110,"percentile":393},"2026-01-19",0.29088,{"date":395,"score":110,"percentile":396},"2026-01-20",0.29072,{"date":398,"score":110,"percentile":399},"2026-01-21",0.29013,{"date":401,"score":110,"percentile":402},"2026-01-22",0.2898,{"date":404,"score":110,"percentile":236},"2026-01-23",{"date":406,"score":110,"percentile":407},"2026-01-24",0.29047,{"date":409,"score":110,"percentile":410},"2026-01-25",0.28972,{"date":412,"score":110,"percentile":413},"2026-01-26",0.28886,{"date":415,"score":110,"percentile":416},"2026-01-27",0.28871,{"date":418,"score":110,"percentile":419},"2026-01-28",0.28849,{"date":421,"score":110,"percentile":422},"2026-01-29",0.28805,{"date":424,"score":110,"percentile":425},"2026-01-30",0.28791,{"date":427,"score":110,"percentile":425},"2026-01-31",{"date":429,"score":110,"percentile":430},"2026-02-01",0.28858,[432],{"source":114,"cvss_v2_0":433,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":112,"baseSeverity":9,"vectorString":115,"impactScore":434,"exploitabilityScore":435},10,3.9,[437],{"ecosystem":9,"name":438,"vendor":439,"product":440,"cpe_part":441,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":442},"linux kernel","linux","linux_kernel","o",[443,450,455,459,463,467,471,472,474,476,478,480,482],{"version":444,"is_range":445,"range_type":446,"version_start":447,"version_start_type":448,"version_end":449,"version_end_type":448,"fixed_in":9},"gt3.6_lt3.10.90",true,"cpe","3.6","excluding","3.10.90",{"version":451,"is_range":445,"range_type":446,"version_start":452,"version_start_type":453,"version_end":454,"version_end_type":448,"fixed_in":9},"gte3.11_lt3.12.44","3.11","including","3.12.44",{"version":456,"is_range":445,"range_type":446,"version_start":457,"version_start_type":453,"version_end":458,"version_end_type":448,"fixed_in":9},"gte3.13_lt3.14.57","3.13","3.14.57",{"version":460,"is_range":445,"range_type":446,"version_start":461,"version_start_type":453,"version_end":462,"version_end_type":448,"fixed_in":9},"gte3.15_lt3.16.35","3.15","3.16.35",{"version":464,"is_range":445,"range_type":446,"version_start":465,"version_start_type":453,"version_end":466,"version_end_type":448,"fixed_in":9},"gte3.17_lt3.18.25","3.17","3.18.25",{"version":468,"is_range":445,"range_type":446,"version_start":469,"version_start_type":453,"version_end":470,"version_end_type":448,"fixed_in":9},"gte3.19_lt4.0","3.19","4.0",{"version":447,"is_range":76,"range_type":446,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":473,"is_range":76,"range_type":446,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.6:rc2",{"version":475,"is_range":76,"range_type":446,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.6:rc3",{"version":477,"is_range":76,"range_type":446,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.6:rc4",{"version":479,"is_range":76,"range_type":446,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.6:rc5",{"version":481,"is_range":76,"range_type":446,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.6:rc6",{"version":483,"is_range":76,"range_type":446,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.6:rc7"]