[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2016-1834":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T20:55:33.689Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":79,"aliases":89,"duplicate_of":9,"upstream":90,"downstream":91,"duplicates":114,"related":115,"reserved_at":9,"published_at":121,"modified_at":122,"state":123,"summary":124,"references_raw":132,"kevs":232,"epss":233,"epss_history":236,"metrics":494,"affected":509},"CVE-2016-1834","Heap-based buffer overflow in the xmlStrncat function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.",null,[11,68],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-119","Improper Restriction of Operations within the Bounds of a Memory Buffer","The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.","weakness","Stable","Class","High",[20,24,28,32,36,40,44,48,52,56,60,64],{"id":21,"name":22,"techniques":23},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":25,"name":26,"techniques":27},"CAPEC-100","Overflow Buffers",[],{"id":29,"name":30,"techniques":31},"CAPEC-123","Buffer Manipulation",[],{"id":33,"name":34,"techniques":35},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":37,"name":38,"techniques":39},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":41,"name":42,"techniques":43},"CAPEC-42","MIME Conversion",[],{"id":45,"name":46,"techniques":47},"CAPEC-44","Overflow Binary Resource File",[],{"id":49,"name":50,"techniques":51},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":53,"name":54,"techniques":55},"CAPEC-46","Overflow Variables and Tags",[],{"id":57,"name":58,"techniques":59},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":61,"name":62,"techniques":63},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":65,"name":66,"techniques":67},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],{"_key":69,"id":69,"name":70,"description":71,"type":15,"status":72,"abstraction":73,"likelihood_of_exploit":18,"capec":74},"CWE-122","Heap-based Buffer Overflow","A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().","Draft","Variant",[75],{"id":76,"name":77,"techniques":78},"CAPEC-92","Forced Integer Overflow",[],[80],{"_key":81,"name":82,"source":83,"url":84,"maturity":85,"reliability_score":86,"verified":87,"type":9,"platforms":88,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_27E72EB53FE7EAA8","Exploit Reference (bugzilla.gnome.org)","reference","https://bugzilla.gnome.org/show_bug.cgi?id=763071","unknown",0.2,false,[],[],[],[92,94,96,98,100,102,104,106,108,110,112],{"_key":93},"SUSE-SU-2016:1538-1",{"_key":95},"SUSE-SU-2016:1604-1",{"_key":97},"OPENSUSE-SU-2024:10192-1",{"_key":99},"OPENSUSE-SU-2024:10228-1",{"_key":101},"DLA-503-1",{"_key":103},"DSA-3593-1",{"_key":105},"MGASA-2016-0263",{"_key":107},"UBUNTU-CVE-2016-1834",{"_key":109},"USN-2994-1",{"_key":111},"DEBIAN-CVE-2016-1834",{"_key":113},"RHSA-2016:1292",[],[116,117,118,119,120],{"_key":93},{"_key":95},{"_key":97},{"_key":99},{"_key":105},"2016-05-20T10:00:00.000Z","2025-12-04T17:15:15.868Z","Modified",{"cisa_kev":87,"cisa_ransomware":87,"cisa_vendor":9,"epss_severity":125,"epss_score":126,"severity":127,"severity_score":128,"severity_version":129,"severity_source":130,"severity_vector":131,"severity_status":123},"low",0.02308,"high",9.3,"v2.0","nvd","AV:N/AC:M/Au:N/C:C/I:C/A:C",[133,141,145,149,155,159,163,169,174,179,184,190,195,199,203,207,211,215,220,224,228],{"url":134,"sources":135,"tags":137},"https://git.gnome.org/browse/libxml2/commit/?id=8fbbf5513d609c1770b391b99e33314cd0742704",[136,130],"cve.org",[138,139,140],"X Refsource CONFIRM","Patch","Third Party Advisory",{"url":142,"sources":143,"tags":144},"http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html",[136,130],[138,140],{"url":146,"sources":147,"tags":148},"https://kc.mcafee.com/corporate/index?page=content&id=SB10170",[136,130],[138,139,140],{"url":150,"sources":151,"tags":152},"https://access.redhat.com/errata/RHSA-2016:1292",[136,130],[153,154,140],"Vendor Advisory","X Refsource REDHAT",{"url":156,"sources":157,"tags":158},"http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html",[136,130],[138,140],{"url":160,"sources":161,"tags":162},"https://support.apple.com/HT206567",[136,130],[138,153],{"url":164,"sources":165,"tags":166},"http://www.securityfocus.com/bid/90691",[136,130],[167,168,140],"VDB Entry","X Refsource BID",{"url":84,"sources":170,"tags":171},[136,130],[138,172,173,140],"Exploit","Issue Tracking",{"url":175,"sources":176,"tags":177},"https://www.debian.org/security/2016/dsa-3593",[136,130],[153,178,140],"X Refsource DEBIAN",{"url":180,"sources":181,"tags":182},"http://xmlsoft.org/news.html",[136,130],[138,183,153],"Release Notes",{"url":185,"sources":186,"tags":187},"http://lists.apple.com/archives/security-announce/2016/May/msg00004.html",[136,130],[153,188,189],"X Refsource APPLE","Mailing List",{"url":191,"sources":192,"tags":193},"http://www.ubuntu.com/usn/USN-2994-1",[136,130],[153,194,140],"X Refsource UBUNTU",{"url":196,"sources":197,"tags":198},"https://support.apple.com/HT206566",[136,130],[138,153],{"url":200,"sources":201,"tags":202},"https://www.tenable.com/security/tns-2016-18",[136,130],[138,140],{"url":204,"sources":205,"tags":206},"http://lists.apple.com/archives/security-announce/2016/May/msg00003.html",[136,130],[153,188,189],{"url":208,"sources":209,"tags":210},"https://support.apple.com/HT206564",[136,130],[138,153],{"url":212,"sources":213,"tags":214},"http://rhn.redhat.com/errata/RHSA-2016-2957.html",[136,130],[153,154,140],{"url":216,"sources":217,"tags":218},"http://www.securitytracker.com/id/1035890",[136,130],[167,219,140],"X Refsource SECTRACK",{"url":221,"sources":222,"tags":223},"http://lists.apple.com/archives/security-announce/2016/May/msg00002.html",[136,130],[153,188,189],{"url":225,"sources":226,"tags":227},"https://support.apple.com/HT206568",[136,130],[138,153],{"url":229,"sources":230,"tags":231},"http://lists.apple.com/archives/security-announce/2016/May/msg00001.html",[136,130],[153,188,189],[],{"date":234,"score":126,"percentile":235},"2026-06-04",0.85052,[237,241,244,247,250,253,256,259,262,265,268,271,274,277,279,282,285,288,290,293,296,299,301,303,305,308,310,313,316,319,322,325,328,331,334,336,339,342,345,348,351,353,355,358,361,364,367,370,373,375,378,381,384,387,391,394,397,400,403,406,409,412,414,417,419,422,425,427,430,433,435,437,440,443,446,449,452,455,458,461,464,467,470,473,476,479,482,485,488,491],{"date":238,"score":239,"percentile":240},"2025-11-04",0.02369,0.84398,{"date":242,"score":239,"percentile":243},"2025-11-05",0.84403,{"date":245,"score":239,"percentile":246},"2025-11-06",0.84406,{"date":248,"score":239,"percentile":249},"2025-11-07",0.84412,{"date":251,"score":239,"percentile":252},"2025-11-08",0.84419,{"date":254,"score":239,"percentile":255},"2025-11-09",0.84414,{"date":257,"score":239,"percentile":258},"2025-11-10",0.8441,{"date":260,"score":239,"percentile":261},"2025-11-11",0.84415,{"date":263,"score":239,"percentile":264},"2025-11-12",0.84425,{"date":266,"score":239,"percentile":267},"2025-11-13",0.84431,{"date":269,"score":239,"percentile":270},"2025-11-14",0.84432,{"date":272,"score":239,"percentile":273},"2025-11-15",0.84424,{"date":275,"score":239,"percentile":276},"2025-11-16",0.84426,{"date":278,"score":239,"percentile":261},"2025-11-17",{"date":280,"score":239,"percentile":281},"2025-11-18",0.83626,{"date":283,"score":239,"percentile":284},"2025-11-19",0.83628,{"date":286,"score":239,"percentile":287},"2025-11-20",0.83633,{"date":289,"score":239,"percentile":276},"2025-11-21",{"date":291,"score":239,"percentile":292},"2025-11-22",0.84423,{"date":294,"score":239,"percentile":295},"2025-11-23",0.84413,{"date":297,"score":239,"percentile":298},"2025-11-24",0.84411,{"date":300,"score":239,"percentile":249},"2025-11-25",{"date":302,"score":239,"percentile":255},"2025-11-26",{"date":304,"score":239,"percentile":261},"2025-11-27",{"date":306,"score":239,"percentile":307},"2025-11-28",0.84397,{"date":309,"score":239,"percentile":267},"2025-11-29",{"date":311,"score":239,"percentile":312},"2025-11-30",0.84433,{"date":314,"score":239,"percentile":315},"2025-12-01",0.84502,{"date":317,"score":239,"percentile":318},"2025-12-02",0.84505,{"date":320,"score":239,"percentile":321},"2025-12-03",0.84506,{"date":323,"score":239,"percentile":324},"2025-12-04",0.84437,{"date":326,"score":239,"percentile":327},"2025-12-05",0.84441,{"date":329,"score":239,"percentile":330},"2025-12-06",0.8444,{"date":332,"score":239,"percentile":333},"2025-12-07",0.84435,{"date":335,"score":239,"percentile":324},"2025-12-08",{"date":337,"score":239,"percentile":338},"2025-12-09",0.8445,{"date":340,"score":239,"percentile":341},"2025-12-10",0.84473,{"date":343,"score":239,"percentile":344},"2025-12-11",0.84477,{"date":346,"score":239,"percentile":347},"2025-12-12",0.84483,{"date":349,"score":239,"percentile":350},"2025-12-13",0.84479,{"date":352,"score":239,"percentile":344},"2025-12-14",{"date":354,"score":239,"percentile":344},"2025-12-15",{"date":356,"score":239,"percentile":357},"2025-12-16",0.84484,{"date":359,"score":239,"percentile":360},"2025-12-17",0.84489,{"date":362,"score":239,"percentile":363},"2025-12-18",0.84495,{"date":365,"score":239,"percentile":366},"2025-12-19",0.84501,{"date":368,"score":239,"percentile":369},"2025-12-20",0.84496,{"date":371,"score":239,"percentile":372},"2025-12-21",0.84498,{"date":374,"score":239,"percentile":372},"2025-12-22",{"date":376,"score":239,"percentile":377},"2025-12-23",0.845,{"date":379,"score":239,"percentile":380},"2025-12-24",0.84508,{"date":382,"score":239,"percentile":383},"2025-12-25",0.84525,{"date":385,"score":239,"percentile":386},"2025-12-26",0.84526,{"date":388,"score":389,"percentile":390},"2025-12-27",0.03922,0.87991,{"date":392,"score":239,"percentile":393},"2025-12-28",0.84515,{"date":395,"score":239,"percentile":396},"2025-12-29",0.84511,{"date":398,"score":239,"percentile":399},"2025-12-30",0.84516,{"date":401,"score":239,"percentile":402},"2025-12-31",0.84528,{"date":404,"score":239,"percentile":405},"2026-01-01",0.84592,{"date":407,"score":239,"percentile":408},"2026-01-02",0.8459,{"date":410,"score":239,"percentile":411},"2026-01-03",0.84586,{"date":413,"score":239,"percentile":399},"2026-01-04",{"date":415,"score":239,"percentile":416},"2026-01-05",0.84509,{"date":418,"score":239,"percentile":399},"2026-01-06",{"date":420,"score":239,"percentile":421},"2026-01-07",0.84514,{"date":423,"score":239,"percentile":424},"2026-01-08",0.84522,{"date":426,"score":239,"percentile":383},"2026-01-09",{"date":428,"score":239,"percentile":429},"2026-01-10",0.84521,{"date":431,"score":239,"percentile":432},"2026-01-11",0.84519,{"date":434,"score":239,"percentile":399},"2026-01-12",{"date":436,"score":239,"percentile":421},"2026-01-13",{"date":438,"score":239,"percentile":439},"2026-01-14",0.84533,{"date":441,"score":239,"percentile":442},"2026-01-15",0.84529,{"date":444,"score":239,"percentile":445},"2026-01-16",0.84537,{"date":447,"score":239,"percentile":448},"2026-01-17",0.84542,{"date":450,"score":239,"percentile":451},"2026-01-18",0.84541,{"date":453,"score":239,"percentile":454},"2026-01-19",0.84534,{"date":456,"score":239,"percentile":457},"2026-01-20",0.84538,{"date":459,"score":239,"percentile":460},"2026-01-21",0.84544,{"date":462,"score":239,"percentile":463},"2026-01-22",0.84549,{"date":465,"score":239,"percentile":466},"2026-01-23",0.84564,{"date":468,"score":239,"percentile":469},"2026-01-24",0.84575,{"date":471,"score":239,"percentile":472},"2026-01-25",0.84571,{"date":474,"score":239,"percentile":475},"2026-01-26",0.8457,{"date":477,"score":239,"percentile":478},"2026-01-27",0.84573,{"date":480,"score":239,"percentile":481},"2026-01-28",0.84576,{"date":483,"score":239,"percentile":484},"2026-01-29",0.84578,{"date":486,"score":239,"percentile":487},"2026-01-30",0.84582,{"date":489,"score":239,"percentile":490},"2026-01-31",0.84581,{"date":492,"score":239,"percentile":493},"2026-02-01",0.84653,[495,502],{"source":136,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":496,"cvss_v4_0":9},{"baseScore":497,"baseSeverity":498,"vectorString":499,"impactScore":500,"exploitabilityScore":501},7.8,"HIGH","CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",9.8,4.6,{"source":130,"cvss_v2_0":503,"cvss_v3_0":506,"cvss_v3_1":508,"cvss_v4_0":9},{"baseScore":128,"baseSeverity":9,"vectorString":131,"impactScore":504,"exploitabilityScore":505},10,8.6,{"baseScore":497,"baseSeverity":498,"vectorString":507,"impactScore":500,"exploitabilityScore":501},"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",{"baseScore":497,"baseSeverity":498,"vectorString":499,"impactScore":500,"exploitabilityScore":501},[510,522,529,537,544,557,564,578,587,593,605,615,622,628],{"ecosystem":9,"name":511,"vendor":512,"product":513,"cpe_part":514,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":515},"iphone os","apple","iphone_os","o",[516],{"version":517,"is_range":518,"range_type":519,"version_start":9,"version_start_type":9,"version_end":520,"version_end_type":521,"fixed_in":9},"lt9.3.2",true,"cpe","9.3.2","excluding",{"ecosystem":9,"name":523,"vendor":512,"product":524,"cpe_part":514,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":525},"mac os x","mac_os_x",[526],{"version":527,"is_range":518,"range_type":519,"version_start":9,"version_start_type":9,"version_end":528,"version_end_type":521,"fixed_in":9},"lt10.11.5","10.11.5",{"ecosystem":9,"name":530,"vendor":512,"product":531,"cpe_part":532,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":533},"tvOS","tvos","a",[534],{"version":535,"is_range":518,"range_type":519,"version_start":9,"version_start_type":9,"version_end":536,"version_end_type":521,"fixed_in":9},"lt9.2.1","9.2.1",{"ecosystem":9,"name":538,"vendor":512,"product":539,"cpe_part":532,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":540},"watchOS","watchos",[541],{"version":542,"is_range":518,"range_type":519,"version_start":9,"version_start_type":9,"version_end":543,"version_end_type":521,"fixed_in":9},"lt2.2.1","2.2.1",{"ecosystem":9,"name":545,"vendor":546,"product":547,"cpe_part":514,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":548},"ubuntu linux","canonical","ubuntu_linux",[549,551,553,555],{"version":550,"is_range":87,"range_type":519,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"12.04",{"version":552,"is_range":87,"range_type":519,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"14.04",{"version":554,"is_range":87,"range_type":519,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"15.10",{"version":556,"is_range":87,"range_type":519,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"16.04",{"ecosystem":9,"name":558,"vendor":559,"product":560,"cpe_part":514,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":561},"debian linux","debian","debian_linux",[562],{"version":563,"is_range":87,"range_type":519,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0",{"ecosystem":9,"name":565,"vendor":566,"product":567,"cpe_part":532,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":568},"web gateway","mcafee","web_gateway",[569,574],{"version":570,"is_range":518,"range_type":519,"version_start":571,"version_start_type":572,"version_end":573,"version_end_type":572,"fixed_in":9},"gte7.5.0.0_lte7.5.2.10","7.5.0.0","including","7.5.2.10",{"version":575,"is_range":518,"range_type":519,"version_start":576,"version_start_type":572,"version_end":577,"version_end_type":572,"fixed_in":9},"gte7.6.0.0_lte7.6.2.3","7.6.0.0","7.6.2.3",{"ecosystem":9,"name":579,"vendor":580,"product":581,"cpe_part":514,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":582},"enterprise linux desktop","redhat","enterprise_linux_desktop",[583,585],{"version":584,"is_range":87,"range_type":519,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0",{"version":586,"is_range":87,"range_type":519,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0",{"ecosystem":9,"name":588,"vendor":580,"product":589,"cpe_part":514,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":590},"enterprise linux server","enterprise_linux_server",[591,592],{"version":584,"is_range":87,"range_type":519,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":586,"is_range":87,"range_type":519,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":594,"vendor":580,"product":595,"cpe_part":514,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":596},"enterprise linux server aus","enterprise_linux_server_aus",[597,599,601,603],{"version":598,"is_range":87,"range_type":519,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.2",{"version":600,"is_range":87,"range_type":519,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.3",{"version":602,"is_range":87,"range_type":519,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.4",{"version":604,"is_range":87,"range_type":519,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.6",{"ecosystem":9,"name":606,"vendor":580,"product":607,"cpe_part":514,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":608},"enterprise linux server eus","enterprise_linux_server_eus",[609,610,611,612,614],{"version":598,"is_range":87,"range_type":519,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":600,"is_range":87,"range_type":519,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":602,"is_range":87,"range_type":519,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":613,"is_range":87,"range_type":519,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.5",{"version":604,"is_range":87,"range_type":519,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":616,"vendor":580,"product":617,"cpe_part":514,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":618},"enterprise linux server tus","enterprise_linux_server_tus",[619,620,621],{"version":598,"is_range":87,"range_type":519,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":600,"is_range":87,"range_type":519,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":604,"is_range":87,"range_type":519,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":623,"vendor":580,"product":624,"cpe_part":514,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":625},"enterprise linux workstation","enterprise_linux_workstation",[626,627],{"version":584,"is_range":87,"range_type":519,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":586,"is_range":87,"range_type":519,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":629,"vendor":630,"product":629,"cpe_part":532,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":631},"libxml2","xmlsoft",[632],{"version":633,"is_range":518,"range_type":519,"version_start":9,"version_start_type":9,"version_end":634,"version_end_type":521,"fixed_in":9},"lt2.9.4","2.9.4"]