[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2016-5017":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":68,"aliases":78,"duplicate_of":9,"upstream":79,"downstream":80,"duplicates":91,"related":92,"reserved_at":9,"published_at":94,"modified_at":95,"state":96,"summary":97,"references_raw":105,"kevs":164,"epss":165,"epss_history":168,"metrics":419,"affected":430},"CVE-2016-5017","Buffer overflow in the C cli shell in Apache Zookeeper before 3.4.9 and 3.5.x before 3.5.3, when using the \"cmd:\" batch mode syntax, allows attackers to have unspecified impact via a long command string.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-119","Improper Restriction of Operations within the Bounds of a Memory Buffer","The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.","weakness","Stable","Class","High",[20,24,28,32,36,40,44,48,52,56,60,64],{"id":21,"name":22,"techniques":23},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":25,"name":26,"techniques":27},"CAPEC-100","Overflow Buffers",[],{"id":29,"name":30,"techniques":31},"CAPEC-123","Buffer Manipulation",[],{"id":33,"name":34,"techniques":35},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":37,"name":38,"techniques":39},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":41,"name":42,"techniques":43},"CAPEC-42","MIME Conversion",[],{"id":45,"name":46,"techniques":47},"CAPEC-44","Overflow Binary Resource File",[],{"id":49,"name":50,"techniques":51},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":53,"name":54,"techniques":55},"CAPEC-46","Overflow Variables and Tags",[],{"id":57,"name":58,"techniques":59},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":61,"name":62,"techniques":63},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":65,"name":66,"techniques":67},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],[69],{"_key":70,"name":71,"source":72,"url":73,"maturity":74,"reliability_score":75,"verified":76,"type":9,"platforms":77,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_D859771EAB005B56","Exploit Reference (packetstormsecurity.com)","reference","http://packetstormsecurity.com/files/138755/ZooKeeper-3.4.8-3.5.2-Buffer-Overflow.html","unknown",0.2,false,[],[],[],[81,83,85,87,89],{"_key":82},"DLA-630-1",{"_key":84},"MGASA-2016-0328",{"_key":86},"UBUNTU-CVE-2016-5017",{"_key":88},"DEBIAN-CVE-2016-5017",{"_key":90},"USN-4789-1",[],[93],{"_key":84},"2016-09-21T14:00:00.000Z","2024-08-06T00:46:40.206Z","Modified",{"cisa_kev":76,"cisa_ransomware":76,"cisa_vendor":9,"epss_severity":98,"epss_score":99,"severity":100,"severity_score":101,"severity_version":102,"severity_source":103,"severity_vector":104,"severity_status":96},"low",0.06114,"high",8.1,"v3.0","nvd","CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",[106,115,121,125,129,133,138,143,147,152,156,160],{"url":107,"sources":108,"tags":110},"http://www.openwall.com/lists/oss-security/2016/09/17/3",[109,103],"cve.org",[111,112,113,114],"Mailing List","X Refsource MLIST","Release Notes","Third Party Advisory",{"url":116,"sources":117,"tags":118},"http://www.securityfocus.com/bid/93044",[109,103],[119,120],"VDB Entry","X Refsource BID",{"url":122,"sources":123,"tags":124},"https://lists.apache.org/thread.html/053d9ce4d579b02203db18545fee5e33f35f2932885459b74d1e4272%40%3Cissues.activemq.apache.org%3E",[109,103],[111,112],{"url":126,"sources":127,"tags":128},"https://lists.apache.org/thread.html/bcce5a9c532b386c68dab2f6b3ce8b0cc9b950ec551766e76391caa3%40%3Ccommits.nifi.apache.org%3E",[109,103],[111,112],{"url":130,"sources":131,"tags":132},"https://lists.apache.org/thread.html/rca37935d661f4689cb4119f1b3b224413b22be161b678e6e6ce0c69b%40%3Ccommits.nifi.apache.org%3E",[109,103],[111,112],{"url":134,"sources":135,"tags":136},"https://www.oracle.com/security-alerts/cpujul2020.html",[109,103],[137],"X Refsource MISC",{"url":139,"sources":140,"tags":141},"https://www.cloudera.com/documentation/other/security-bulletins/topics/csb_topic_1.html",[109,103],[142],"X Refsource CONFIRM",{"url":144,"sources":145,"tags":146},"https://git-wip-us.apache.org/repos/asf?p=zookeeper.git%3Ba=commitdiff%3Bh=27ecf981a15554dc8e64a28630af7a5c9e2bdf4f",[109,103],[142],{"url":148,"sources":149,"tags":150},"https://zookeeper.apache.org/security.html#CVE-2016-5017",[109,103],[142,151],"Vendor Advisory",{"url":73,"sources":153,"tags":154},[109,103],[137,155,114,119],"Exploit",{"url":157,"sources":158,"tags":159},"https://git-wip-us.apache.org/repos/asf?p=zookeeper.git%3Ba=commitdiff%3Bh=f09154d6648eeb4ec5e1ac8a2bacbd2f8c87c14a",[109,103],[142],{"url":161,"sources":162,"tags":163},"https://lists.apache.org/thread.html/r4b743f407244294f316325458ccaabfce9cd70ca3a6423dbe574035c%40%3Cnotifications.dubbo.apache.org%3E",[109,103],[111,112],[],{"date":166,"score":99,"percentile":167},"2026-06-04",0.90944,[169,172,175,178,181,184,187,189,191,194,197,200,203,206,208,211,214,217,219,221,223,226,229,231,234,236,239,241,244,247,250,253,256,259,262,265,267,270,273,276,279,282,284,287,290,293,295,297,300,302,305,308,311,314,317,320,323,326,329,332,335,338,340,343,346,349,352,355,358,360,362,365,368,371,374,377,380,383,385,387,390,393,395,398,401,404,407,410,413,416],{"date":170,"score":99,"percentile":171},"2025-11-04",0.90359,{"date":173,"score":99,"percentile":174},"2025-11-05",0.90358,{"date":176,"score":99,"percentile":177},"2025-11-06",0.90357,{"date":179,"score":99,"percentile":180},"2025-11-07",0.90365,{"date":182,"score":99,"percentile":183},"2025-11-08",0.90367,{"date":185,"score":99,"percentile":186},"2025-11-09",0.90366,{"date":188,"score":99,"percentile":183},"2025-11-10",{"date":190,"score":99,"percentile":186},"2025-11-11",{"date":192,"score":99,"percentile":193},"2025-11-12",0.90373,{"date":195,"score":99,"percentile":196},"2025-11-13",0.90377,{"date":198,"score":99,"percentile":199},"2025-11-14",0.90378,{"date":201,"score":99,"percentile":202},"2025-11-15",0.90376,{"date":204,"score":99,"percentile":205},"2025-11-16",0.90379,{"date":207,"score":99,"percentile":202},"2025-11-17",{"date":209,"score":99,"percentile":210},"2025-11-18",0.8987,{"date":212,"score":99,"percentile":213},"2025-11-19",0.89873,{"date":215,"score":99,"percentile":216},"2025-11-20",0.89875,{"date":218,"score":99,"percentile":205},"2025-11-21",{"date":220,"score":99,"percentile":205},"2025-11-22",{"date":222,"score":99,"percentile":205},"2025-11-23",{"date":224,"score":99,"percentile":225},"2025-11-24",0.90381,{"date":227,"score":99,"percentile":228},"2025-11-25",0.90383,{"date":230,"score":99,"percentile":228},"2025-11-26",{"date":232,"score":99,"percentile":233},"2025-11-27",0.90382,{"date":235,"score":99,"percentile":193},"2025-11-28",{"date":237,"score":99,"percentile":238},"2025-11-29",0.90406,{"date":240,"score":99,"percentile":238},"2025-11-30",{"date":242,"score":99,"percentile":243},"2025-12-01",0.90464,{"date":245,"score":99,"percentile":246},"2025-12-02",0.90465,{"date":248,"score":99,"percentile":249},"2025-12-03",0.90467,{"date":251,"score":99,"percentile":252},"2025-12-04",0.90408,{"date":254,"score":99,"percentile":255},"2025-12-05",0.90415,{"date":257,"score":99,"percentile":258},"2025-12-06",0.90416,{"date":260,"score":99,"percentile":261},"2025-12-07",0.90412,{"date":263,"score":99,"percentile":264},"2025-12-08",0.90413,{"date":266,"score":99,"percentile":258},"2025-12-09",{"date":268,"score":99,"percentile":269},"2025-12-10",0.90425,{"date":271,"score":99,"percentile":272},"2025-12-11",0.9043,{"date":274,"score":99,"percentile":275},"2025-12-12",0.90435,{"date":277,"score":99,"percentile":278},"2025-12-13",0.90436,{"date":280,"score":99,"percentile":281},"2025-12-14",0.90434,{"date":283,"score":99,"percentile":275},"2025-12-15",{"date":285,"score":99,"percentile":286},"2025-12-16",0.90429,{"date":288,"score":99,"percentile":289},"2025-12-17",0.90437,{"date":291,"score":99,"percentile":292},"2025-12-18",0.90445,{"date":294,"score":99,"percentile":292},"2025-12-19",{"date":296,"score":99,"percentile":292},"2025-12-20",{"date":298,"score":99,"percentile":299},"2025-12-21",0.90455,{"date":301,"score":99,"percentile":299},"2025-12-22",{"date":303,"score":99,"percentile":304},"2025-12-23",0.90457,{"date":306,"score":99,"percentile":307},"2025-12-24",0.90468,{"date":309,"score":99,"percentile":310},"2025-12-25",0.90478,{"date":312,"score":99,"percentile":313},"2025-12-26",0.90476,{"date":315,"score":99,"percentile":316},"2025-12-27",0.90523,{"date":318,"score":99,"percentile":319},"2025-12-28",0.90472,{"date":321,"score":99,"percentile":322},"2025-12-29",0.90469,{"date":324,"score":99,"percentile":325},"2025-12-30",0.90475,{"date":327,"score":99,"percentile":328},"2025-12-31",0.90485,{"date":330,"score":99,"percentile":331},"2026-01-01",0.90548,{"date":333,"score":99,"percentile":334},"2026-01-02",0.90541,{"date":336,"score":99,"percentile":337},"2026-01-03",0.90539,{"date":339,"score":99,"percentile":328},"2026-01-04",{"date":341,"score":99,"percentile":342},"2026-01-05",0.90481,{"date":344,"score":99,"percentile":345},"2026-01-06",0.90484,{"date":347,"score":99,"percentile":348},"2026-01-07",0.90487,{"date":350,"score":99,"percentile":351},"2026-01-08",0.90489,{"date":353,"score":99,"percentile":354},"2026-01-09",0.9049,{"date":356,"score":99,"percentile":357},"2026-01-10",0.90491,{"date":359,"score":99,"percentile":345},"2026-01-11",{"date":361,"score":99,"percentile":345},"2026-01-12",{"date":363,"score":99,"percentile":364},"2026-01-13",0.90482,{"date":366,"score":99,"percentile":367},"2026-01-14",0.90497,{"date":369,"score":99,"percentile":370},"2026-01-15",0.905,{"date":372,"score":99,"percentile":373},"2026-01-16",0.90504,{"date":375,"score":99,"percentile":376},"2026-01-17",0.90501,{"date":378,"score":99,"percentile":379},"2026-01-18",0.90503,{"date":381,"score":99,"percentile":382},"2026-01-19",0.90502,{"date":384,"score":99,"percentile":379},"2026-01-20",{"date":386,"score":99,"percentile":373},"2026-01-21",{"date":388,"score":99,"percentile":389},"2026-01-22",0.90507,{"date":391,"score":99,"percentile":392},"2026-01-23",0.90516,{"date":394,"score":99,"percentile":316},"2026-01-24",{"date":396,"score":99,"percentile":397},"2026-01-25",0.90524,{"date":399,"score":99,"percentile":400},"2026-01-26",0.90526,{"date":402,"score":99,"percentile":403},"2026-01-27",0.90529,{"date":405,"score":99,"percentile":406},"2026-01-28",0.90535,{"date":408,"score":99,"percentile":409},"2026-01-29",0.90536,{"date":411,"score":99,"percentile":412},"2026-01-30",0.90534,{"date":414,"score":99,"percentile":415},"2026-01-31",0.90545,{"date":417,"score":99,"percentile":418},"2026-02-01",0.90602,[420],{"source":103,"cvss_v2_0":421,"cvss_v3_0":426,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":422,"baseSeverity":9,"vectorString":423,"impactScore":424,"exploitabilityScore":425},6.8,"AV:N/AC:M/Au:N/C:P/I:P/A:P",6.4,8.6,{"baseScore":101,"baseSeverity":427,"vectorString":104,"impactScore":428,"exploitabilityScore":429},"HIGH",9.8,5.6,[431],{"ecosystem":9,"name":432,"vendor":433,"product":432,"cpe_part":434,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":435},"zookeeper","apache","a",[436,442,444,446],{"version":437,"is_range":438,"range_type":439,"version_start":9,"version_start_type":9,"version_end":440,"version_end_type":441,"fixed_in":9},"lte3.4.8",true,"cpe","3.4.8","including",{"version":443,"is_range":76,"range_type":439,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.5.0",{"version":445,"is_range":76,"range_type":439,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.5.1",{"version":447,"is_range":76,"range_type":439,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.5.2"]