[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2016-2119":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T14:55:33.319Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":62,"aliases":63,"duplicate_of":9,"upstream":64,"downstream":65,"duplicates":86,"related":87,"reserved_at":9,"published_at":91,"modified_at":92,"state":93,"summary":94,"references_raw":103,"kevs":151,"epss":152,"epss_history":155,"metrics":415,"affected":426},"CVE-2016-2119","libcli/smb/smbXcli_base.c in Samba 4.x before 4.2.14, 4.3.x before 4.3.11, and 4.4.x before 4.4.5 allows man-in-the-middle attackers to bypass a client-signing protection mechanism, and consequently spoof SMB2 and SMB3 servers, via the (1) SMB2_SESSION_FLAG_IS_GUEST or (2) SMB2_SESSION_FLAG_IS_NULL flag.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-94","Improper Control of Generation of Code ('Code Injection')","The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.","weakness","Draft","Base","Medium",[20,24,58],{"id":21,"name":22,"techniques":23},"CAPEC-242","Code Injection",[],{"id":25,"name":26,"techniques":27},"CAPEC-35","Leverage Executable Code in Non-Executable Files",[28,39,46],{"id":29,"name":30,"tactics":31,"countermeasures":38},"T1027.006","HTML Smuggling",[32,35],{"id":33,"name":34},"TA0030","Defense Evasion",{"id":36,"name":37},"TA0005","Stealth",[],{"id":40,"name":41,"tactics":42,"countermeasures":45},"T1027.009","Embedded Payloads",[43,44],{"id":33,"name":34},{"id":36,"name":37},[],{"id":47,"name":48,"tactics":49,"countermeasures":52},"T1564.009","Resource Forking",[50,51],{"id":33,"name":34},{"id":36,"name":37},[53],{"id":54,"name":55,"tactic":56},"D3-FFV","File Format Verification",{"name":57},"Isolate",{"id":59,"name":60,"techniques":61},"CAPEC-77","Manipulating User-Controlled Variables",[],[],[],[],[66,68,70,72,74,76,78,80,82,84],{"_key":67},"SUSE-SU-2016:2306-1",{"_key":69},"RHSA-2016:1486",{"_key":71},"RHSA-2016:1487",{"_key":73},"RHSA-2016:1494",{"_key":75},"SUSE-SU-2016:2570-1",{"_key":77},"OPENSUSE-SU-2024:10069-1",{"_key":79},"DSA-3740-1",{"_key":81},"UBUNTU-CVE-2016-2119",{"_key":83},"USN-3092-1",{"_key":85},"DEBIAN-CVE-2016-2119",[],[88,89,90],{"_key":67},{"_key":75},{"_key":77},"2016-07-07T15:00:00.000Z","2024-08-05T23:17:50.569Z","Modified",{"cisa_kev":95,"cisa_ransomware":95,"cisa_vendor":9,"epss_severity":96,"epss_score":97,"severity":98,"severity_score":99,"severity_version":100,"severity_source":101,"severity_vector":102,"severity_status":93},false,"low",0.01142,"high",7.5,"v3.1","nvd","CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",[104,111,117,123,127,132,138,142,147],{"url":105,"sources":106,"tags":108},"http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html",[107,101],"cve.org",[109,110],"X Refsource CONFIRM","Third Party Advisory",{"url":112,"sources":113,"tags":114},"http://rhn.redhat.com/errata/RHSA-2016-1494.html",[107,101],[115,116,110],"Vendor Advisory","X Refsource REDHAT",{"url":118,"sources":119,"tags":120},"http://www.securityfocus.com/bid/91700",[107,101],[121,122,110],"VDB Entry","X Refsource BID",{"url":124,"sources":125,"tags":126},"http://rhn.redhat.com/errata/RHSA-2016-1486.html",[107,101],[115,116,110],{"url":128,"sources":129,"tags":130},"https://security.gentoo.org/glsa/201805-07",[107,101],[115,131,110],"X Refsource GENTOO",{"url":133,"sources":134,"tags":135},"http://lists.opensuse.org/opensuse-updates/2016-07/msg00060.html",[107,101],[115,136,137,110],"X Refsource SUSE","Mailing List",{"url":139,"sources":140,"tags":141},"http://rhn.redhat.com/errata/RHSA-2016-1487.html",[107,101],[115,116,110],{"url":143,"sources":144,"tags":145},"http://www.securitytracker.com/id/1036244",[107,101],[121,146,110],"X Refsource SECTRACK",{"url":148,"sources":149,"tags":150},"https://www.samba.org/samba/security/CVE-2016-2119.html",[107,101],[109,115],[],{"date":153,"score":97,"percentile":154},"2026-06-04",0.78773,[156,160,163,166,169,172,174,176,179,182,185,188,191,194,197,200,203,206,209,212,215,217,220,223,225,228,230,234,238,241,244,247,250,253,256,259,262,265,268,271,273,277,280,283,286,289,292,295,298,300,303,306,309,312,315,318,321,324,327,330,333,336,339,342,345,347,350,353,356,359,361,363,366,368,371,374,377,379,381,384,387,390,393,396,398,401,404,407,409,412],{"date":157,"score":158,"percentile":159},"2025-11-04",0.01071,0.77038,{"date":161,"score":158,"percentile":162},"2025-11-05",0.77039,{"date":164,"score":158,"percentile":165},"2025-11-06",0.77036,{"date":167,"score":158,"percentile":168},"2025-11-07",0.7705,{"date":170,"score":158,"percentile":171},"2025-11-08",0.77053,{"date":173,"score":158,"percentile":168},"2025-11-09",{"date":175,"score":158,"percentile":159},"2025-11-10",{"date":177,"score":158,"percentile":178},"2025-11-11",0.7704,{"date":180,"score":158,"percentile":181},"2025-11-12",0.77057,{"date":183,"score":158,"percentile":184},"2025-11-13",0.77066,{"date":186,"score":158,"percentile":187},"2025-11-14",0.77073,{"date":189,"score":158,"percentile":190},"2025-11-15",0.77069,{"date":192,"score":158,"percentile":193},"2025-11-16",0.77068,{"date":195,"score":158,"percentile":196},"2025-11-17",0.7706,{"date":198,"score":158,"percentile":199},"2025-11-18",0.7587,{"date":201,"score":158,"percentile":202},"2025-11-19",0.75876,{"date":204,"score":158,"percentile":205},"2025-11-20",0.75887,{"date":207,"score":158,"percentile":208},"2025-11-21",0.77085,{"date":210,"score":158,"percentile":211},"2025-11-22",0.77084,{"date":213,"score":158,"percentile":214},"2025-11-23",0.77071,{"date":216,"score":158,"percentile":214},"2025-11-24",{"date":218,"score":158,"percentile":219},"2025-11-25",0.77077,{"date":221,"score":158,"percentile":222},"2025-11-26",0.77083,{"date":224,"score":158,"percentile":208},"2025-11-27",{"date":226,"score":158,"percentile":227},"2025-11-28",0.77076,{"date":229,"score":158,"percentile":211},"2025-11-29",{"date":231,"score":232,"percentile":233},"2025-11-30",0.00957,0.7573,{"date":235,"score":236,"percentile":237},"2025-12-01",0.01618,0.81328,{"date":239,"score":236,"percentile":240},"2025-12-02",0.81331,{"date":242,"score":236,"percentile":243},"2025-12-03",0.8133,{"date":245,"score":236,"percentile":246},"2025-12-04",0.81248,{"date":248,"score":236,"percentile":249},"2025-12-05",0.81255,{"date":251,"score":236,"percentile":252},"2025-12-06",0.81257,{"date":254,"score":236,"percentile":255},"2025-12-07",0.81256,{"date":257,"score":236,"percentile":258},"2025-12-08",0.81258,{"date":260,"score":236,"percentile":261},"2025-12-09",0.81276,{"date":263,"score":236,"percentile":264},"2025-12-10",0.81303,{"date":266,"score":236,"percentile":267},"2025-12-11",0.81314,{"date":269,"score":236,"percentile":270},"2025-12-12",0.81325,{"date":272,"score":236,"percentile":270},"2025-12-13",{"date":274,"score":275,"percentile":276},"2025-12-14",0.01403,0.79952,{"date":278,"score":275,"percentile":279},"2025-12-15",0.7995,{"date":281,"score":275,"percentile":282},"2025-12-16",0.79959,{"date":284,"score":275,"percentile":285},"2025-12-17",0.79967,{"date":287,"score":275,"percentile":288},"2025-12-18",0.79984,{"date":290,"score":275,"percentile":291},"2025-12-19",0.79994,{"date":293,"score":275,"percentile":294},"2025-12-20",0.79988,{"date":296,"score":275,"percentile":297},"2025-12-21",0.79982,{"date":299,"score":275,"percentile":297},"2025-12-22",{"date":301,"score":275,"percentile":302},"2025-12-23",0.79983,{"date":304,"score":275,"percentile":305},"2025-12-24",0.79997,{"date":307,"score":275,"percentile":308},"2025-12-25",0.80017,{"date":310,"score":275,"percentile":311},"2025-12-26",0.80013,{"date":313,"score":275,"percentile":314},"2025-12-27",0.80059,{"date":316,"score":275,"percentile":317},"2025-12-28",0.80002,{"date":319,"score":275,"percentile":320},"2025-12-29",0.80001,{"date":322,"score":275,"percentile":323},"2025-12-30",0.80007,{"date":325,"score":275,"percentile":326},"2025-12-31",0.80019,{"date":328,"score":275,"percentile":329},"2026-01-01",0.80106,{"date":331,"score":275,"percentile":332},"2026-01-02",0.80104,{"date":334,"score":275,"percentile":335},"2026-01-03",0.80101,{"date":337,"score":275,"percentile":338},"2026-01-04",0.80008,{"date":340,"score":275,"percentile":341},"2026-01-05",0.80006,{"date":343,"score":275,"percentile":344},"2026-01-06",0.8001,{"date":346,"score":275,"percentile":308},"2026-01-07",{"date":348,"score":275,"percentile":349},"2026-01-08",0.80029,{"date":351,"score":275,"percentile":352},"2026-01-09",0.8003,{"date":354,"score":275,"percentile":355},"2026-01-10",0.80028,{"date":357,"score":275,"percentile":358},"2026-01-11",0.8002,{"date":360,"score":275,"percentile":323},"2026-01-12",{"date":362,"score":275,"percentile":341},"2026-01-13",{"date":364,"score":275,"percentile":365},"2026-01-14",0.80027,{"date":367,"score":275,"percentile":355},"2026-01-15",{"date":369,"score":275,"percentile":370},"2026-01-16",0.80037,{"date":372,"score":275,"percentile":373},"2026-01-17",0.80044,{"date":375,"score":275,"percentile":376},"2026-01-18",0.80034,{"date":378,"score":275,"percentile":355},"2026-01-19",{"date":380,"score":275,"percentile":365},"2026-01-20",{"date":382,"score":275,"percentile":383},"2026-01-21",0.80033,{"date":385,"score":275,"percentile":386},"2026-01-22",0.80043,{"date":388,"score":275,"percentile":389},"2026-01-23",0.80071,{"date":391,"score":275,"percentile":392},"2026-01-24",0.80081,{"date":394,"score":275,"percentile":395},"2026-01-25",0.80072,{"date":397,"score":275,"percentile":395},"2026-01-26",{"date":399,"score":275,"percentile":400},"2026-01-27",0.80075,{"date":402,"score":275,"percentile":403},"2026-01-28",0.8007,{"date":405,"score":275,"percentile":406},"2026-01-29",0.80069,{"date":408,"score":275,"percentile":389},"2026-01-30",{"date":410,"score":275,"percentile":411},"2026-01-31",0.80076,{"date":413,"score":275,"percentile":414},"2026-02-01",0.80166,[416],{"source":101,"cvss_v2_0":417,"cvss_v3_0":9,"cvss_v3_1":422,"cvss_v4_0":9},{"baseScore":418,"baseSeverity":9,"vectorString":419,"impactScore":420,"exploitabilityScore":421},6.8,"AV:N/AC:M/Au:N/C:P/I:P/A:P",6.4,8.6,{"baseScore":99,"baseSeverity":423,"vectorString":102,"impactScore":424,"exploitabilityScore":425},"HIGH",9.8,4.1,[427],{"ecosystem":9,"name":428,"vendor":428,"product":428,"cpe_part":429,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":430},"samba","a",[431,439,443],{"version":432,"is_range":433,"range_type":434,"version_start":435,"version_start_type":436,"version_end":437,"version_end_type":438,"fixed_in":9},"gte4.0.0_lt4.2.14",true,"cpe","4.0.0","including","4.2.14","excluding",{"version":440,"is_range":433,"range_type":434,"version_start":441,"version_start_type":436,"version_end":442,"version_end_type":438,"fixed_in":9},"gte4.3.0_lt4.3.11","4.3.0","4.3.11",{"version":444,"is_range":433,"range_type":434,"version_start":445,"version_start_type":436,"version_end":446,"version_end_type":438,"fixed_in":9},"gte4.4.0_lt4.4.5","4.4.0","4.4.5"]