[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2015-5279":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":68,"aliases":69,"duplicate_of":9,"upstream":70,"downstream":71,"duplicates":100,"related":101,"reserved_at":9,"published_at":106,"modified_at":107,"state":108,"summary":109,"references_raw":118,"kevs":205,"epss":206,"epss_history":209,"metrics":468,"affected":473},"CVE-2015-5279","Heap-based buffer overflow in the ne2000_receive function in hw/net/ne2000.c in QEMU before 2.4.0.1 allows guest OS users to cause a denial of service (instance crash) or possibly execute arbitrary code via vectors related to receiving packets.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-119","Improper Restriction of Operations within the Bounds of a Memory Buffer","The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.","weakness","Stable","Class","High",[20,24,28,32,36,40,44,48,52,56,60,64],{"id":21,"name":22,"techniques":23},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":25,"name":26,"techniques":27},"CAPEC-100","Overflow Buffers",[],{"id":29,"name":30,"techniques":31},"CAPEC-123","Buffer Manipulation",[],{"id":33,"name":34,"techniques":35},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":37,"name":38,"techniques":39},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":41,"name":42,"techniques":43},"CAPEC-42","MIME Conversion",[],{"id":45,"name":46,"techniques":47},"CAPEC-44","Overflow Binary Resource File",[],{"id":49,"name":50,"techniques":51},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":53,"name":54,"techniques":55},"CAPEC-46","Overflow Variables and Tags",[],{"id":57,"name":58,"techniques":59},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":61,"name":62,"techniques":63},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":65,"name":66,"techniques":67},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],[],[],[],[72,74,76,78,80,82,84,86,88,90,92,94,96,98],{"_key":73},"RHSA-2015:1896",{"_key":75},"RHSA-2015:1923",{"_key":77},"RHSA-2015:1924",{"_key":79},"RHSA-2015:1925",{"_key":81},"RHSA-2015:2065",{"_key":83},"SUSE-SU-2015:1782-1",{"_key":85},"SUSE-SU-2016:1698-1",{"_key":87},"SUSE-SU-2016:1785-1",{"_key":89},"UBUNTU-CVE-2015-5279",{"_key":91},"USN-2745-1",{"_key":93},"DSA-3361-1",{"_key":95},"DSA-3362-1",{"_key":97},"MGASA-2015-0397",{"_key":99},"DEBIAN-CVE-2015-5279",[],[102,103,104,105],{"_key":83},{"_key":85},{"_key":87},{"_key":97},"2015-09-28T16:00:00.000Z","2024-08-06T06:41:09.328Z","Modified",{"cisa_kev":110,"cisa_ransomware":110,"cisa_vendor":9,"epss_severity":111,"epss_score":112,"severity":113,"severity_score":114,"severity_version":115,"severity_source":116,"severity_vector":117,"severity_status":108},false,"medium",0.10195,"high",7.2,"v2.0","nvd","AV:L/AC:L/Au:N/C:C/I:C/A:C",[119,126,131,135,141,145,150,155,160,164,168,172,178,182,187,191,195,200],{"url":120,"sources":121,"tags":123},"http://www.debian.org/security/2015/dsa-3361",[122,116],"cve.org",[124,125],"Vendor Advisory","X Refsource DEBIAN",{"url":127,"sources":128,"tags":129},"http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169036.html",[122,116],[124,130],"X Refsource FEDORA",{"url":132,"sources":133,"tags":134},"http://lists.fedoraproject.org/pipermail/package-announce/2015-September/167369.html",[122,116],[124,130],{"url":136,"sources":137,"tags":138},"http://www.openwall.com/lists/oss-security/2015/09/15/3",[122,116],[139,140],"Mailing List","X Refsource MLIST",{"url":142,"sources":143,"tags":144},"https://lists.gnu.org/archive/html/qemu-devel/2015-09/msg03984.html",[122,116],[139,140],{"url":146,"sources":147,"tags":148},"http://rhn.redhat.com/errata/RHSA-2015-1896.html",[122,116],[124,149],"X Refsource REDHAT",{"url":151,"sources":152,"tags":153},"http://lists.opensuse.org/opensuse-security-announce/2015-10/msg00019.html",[122,116],[124,154],"X Refsource SUSE",{"url":156,"sources":157,"tags":158},"http://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=7aa2bcad0ca837dd6d4bf4fa38a80314b4a6b755",[122,116],[159],"X Refsource CONFIRM",{"url":161,"sources":162,"tags":163},"http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html",[122,116],[159],{"url":165,"sources":166,"tags":167},"http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169039.html",[122,116],[124,130],{"url":169,"sources":170,"tags":171},"http://rhn.redhat.com/errata/RHSA-2015-1924.html",[122,116],[124,149],{"url":173,"sources":174,"tags":175},"http://www.securityfocus.com/bid/76746",[122,116],[176,177],"VDB Entry","X Refsource BID",{"url":179,"sources":180,"tags":181},"http://www.debian.org/security/2015/dsa-3362",[122,116],[124,125],{"url":183,"sources":184,"tags":185},"http://www.securitytracker.com/id/1033569",[122,116],[176,186],"X Refsource SECTRACK",{"url":188,"sources":189,"tags":190},"http://rhn.redhat.com/errata/RHSA-2015-1923.html",[122,116],[124,149],{"url":192,"sources":193,"tags":194},"http://rhn.redhat.com/errata/RHSA-2015-1925.html",[122,116],[124,149],{"url":196,"sources":197,"tags":198},"https://security.gentoo.org/glsa/201602-01",[122,116],[124,199],"X Refsource GENTOO",{"url":201,"sources":202,"tags":203},"https://www.arista.com/en/support/advisories-notices/security-advisories/1188-security-advisory-14",[122,116],[204],"X Refsource MISC",[],{"date":207,"score":112,"percentile":208},"2026-06-04",0.93266,[210,214,217,219,222,225,228,231,234,237,240,243,245,248,251,254,257,260,263,265,268,271,274,277,279,281,284,287,291,294,297,300,303,306,308,311,313,316,319,322,325,328,331,334,337,340,342,345,347,350,353,356,359,362,365,368,371,373,375,378,381,384,386,389,392,395,398,401,404,407,410,413,416,419,422,425,427,430,433,436,439,442,445,448,451,454,457,460,462,465],{"date":211,"score":212,"percentile":213},"2025-11-04",0.07675,0.91499,{"date":215,"score":212,"percentile":216},"2025-11-05",0.91497,{"date":218,"score":212,"percentile":213},"2025-11-06",{"date":220,"score":212,"percentile":221},"2025-11-07",0.91503,{"date":223,"score":212,"percentile":224},"2025-11-08",0.91501,{"date":226,"score":212,"percentile":227},"2025-11-09",0.91498,{"date":229,"score":212,"percentile":230},"2025-11-10",0.915,{"date":232,"score":212,"percentile":233},"2025-11-11",0.91505,{"date":235,"score":212,"percentile":236},"2025-11-12",0.91509,{"date":238,"score":212,"percentile":239},"2025-11-13",0.91512,{"date":241,"score":212,"percentile":242},"2025-11-14",0.91514,{"date":244,"score":212,"percentile":239},"2025-11-15",{"date":246,"score":212,"percentile":247},"2025-11-16",0.91521,{"date":249,"score":212,"percentile":250},"2025-11-17",0.91522,{"date":252,"score":212,"percentile":253},"2025-11-18",0.91016,{"date":255,"score":212,"percentile":256},"2025-11-19",0.91019,{"date":258,"score":212,"percentile":259},"2025-11-20",0.91025,{"date":261,"score":212,"percentile":262},"2025-11-21",0.91529,{"date":264,"score":212,"percentile":262},"2025-11-22",{"date":266,"score":212,"percentile":267},"2025-11-23",0.91534,{"date":269,"score":212,"percentile":270},"2025-11-24",0.91536,{"date":272,"score":212,"percentile":273},"2025-11-25",0.91538,{"date":275,"score":212,"percentile":276},"2025-11-26",0.91537,{"date":278,"score":212,"percentile":276},"2025-11-27",{"date":280,"score":212,"percentile":262},"2025-11-28",{"date":282,"score":212,"percentile":283},"2025-11-29",0.91558,{"date":285,"score":212,"percentile":286},"2025-11-30",0.91557,{"date":288,"score":289,"percentile":290},"2025-12-01",0.07846,0.91697,{"date":292,"score":289,"percentile":293},"2025-12-02",0.91699,{"date":295,"score":289,"percentile":296},"2025-12-03",0.91701,{"date":298,"score":289,"percentile":299},"2025-12-04",0.9165,{"date":301,"score":289,"percentile":302},"2025-12-05",0.91654,{"date":304,"score":289,"percentile":305},"2025-12-06",0.91656,{"date":307,"score":289,"percentile":302},"2025-12-07",{"date":309,"score":289,"percentile":310},"2025-12-08",0.91653,{"date":312,"score":289,"percentile":305},"2025-12-09",{"date":314,"score":289,"percentile":315},"2025-12-10",0.91662,{"date":317,"score":289,"percentile":318},"2025-12-11",0.91666,{"date":320,"score":289,"percentile":321},"2025-12-12",0.91667,{"date":323,"score":289,"percentile":324},"2025-12-13",0.91657,{"date":326,"score":112,"percentile":327},"2025-12-14",0.9286,{"date":329,"score":112,"percentile":330},"2025-12-15",0.92863,{"date":332,"score":112,"percentile":333},"2025-12-16",0.92872,{"date":335,"score":112,"percentile":336},"2025-12-17",0.92879,{"date":338,"score":112,"percentile":339},"2025-12-18",0.92883,{"date":341,"score":112,"percentile":339},"2025-12-19",{"date":343,"score":112,"percentile":344},"2025-12-20",0.9288,{"date":346,"score":112,"percentile":336},"2025-12-21",{"date":348,"score":112,"percentile":349},"2025-12-22",0.92874,{"date":351,"score":112,"percentile":352},"2025-12-23",0.92877,{"date":354,"score":112,"percentile":355},"2025-12-24",0.92881,{"date":357,"score":112,"percentile":358},"2025-12-25",0.92885,{"date":360,"score":112,"percentile":361},"2025-12-26",0.92882,{"date":363,"score":112,"percentile":364},"2025-12-27",0.92919,{"date":366,"score":112,"percentile":367},"2025-12-28",0.92878,{"date":369,"score":112,"percentile":370},"2025-12-29",0.92876,{"date":372,"score":112,"percentile":367},"2025-12-30",{"date":374,"score":112,"percentile":358},"2025-12-31",{"date":376,"score":112,"percentile":377},"2026-01-01",0.92938,{"date":379,"score":112,"percentile":380},"2026-01-02",0.9293,{"date":382,"score":112,"percentile":383},"2026-01-03",0.92929,{"date":385,"score":112,"percentile":358},"2026-01-04",{"date":387,"score":112,"percentile":388},"2026-01-05",0.92884,{"date":390,"score":112,"percentile":391},"2026-01-06",0.92887,{"date":393,"score":112,"percentile":394},"2026-01-07",0.92886,{"date":396,"score":112,"percentile":397},"2026-01-08",0.92888,{"date":399,"score":112,"percentile":400},"2026-01-09",0.92891,{"date":402,"score":112,"percentile":403},"2026-01-10",0.92899,{"date":405,"score":112,"percentile":406},"2026-01-11",0.92897,{"date":408,"score":112,"percentile":409},"2026-01-12",0.92896,{"date":411,"score":112,"percentile":412},"2026-01-13",0.92895,{"date":414,"score":112,"percentile":415},"2026-01-14",0.92903,{"date":417,"score":112,"percentile":418},"2026-01-15",0.92904,{"date":420,"score":112,"percentile":421},"2026-01-16",0.92908,{"date":423,"score":112,"percentile":424},"2026-01-17",0.92911,{"date":426,"score":112,"percentile":415},"2026-01-18",{"date":428,"score":112,"percentile":429},"2026-01-19",0.92905,{"date":431,"score":112,"percentile":432},"2026-01-20",0.92906,{"date":434,"score":112,"percentile":435},"2026-01-21",0.92913,{"date":437,"score":112,"percentile":438},"2026-01-22",0.92917,{"date":440,"score":112,"percentile":441},"2026-01-23",0.92921,{"date":443,"score":112,"percentile":444},"2026-01-24",0.92926,{"date":446,"score":112,"percentile":447},"2026-01-25",0.92927,{"date":449,"score":112,"percentile":450},"2026-01-26",0.92928,{"date":452,"score":112,"percentile":453},"2026-01-27",0.92932,{"date":455,"score":112,"percentile":456},"2026-01-28",0.92934,{"date":458,"score":112,"percentile":459},"2026-01-29",0.92933,{"date":461,"score":112,"percentile":456},"2026-01-30",{"date":463,"score":112,"percentile":464},"2026-01-31",0.92936,{"date":466,"score":112,"percentile":467},"2026-02-01",0.92976,[469],{"source":116,"cvss_v2_0":470,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":114,"baseSeverity":9,"vectorString":117,"impactScore":471,"exploitabilityScore":472},10,3.9,[474],{"ecosystem":9,"name":475,"vendor":475,"product":475,"cpe_part":476,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":477},"qemu","a",[478],{"version":479,"is_range":480,"range_type":481,"version_start":9,"version_start_type":9,"version_end":482,"version_end_type":483,"fixed_in":9},"lte2.4.0",true,"cpe","2.4.0","including"]