[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2016-5636":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":24,"aliases":25,"duplicate_of":9,"upstream":26,"downstream":27,"duplicates":66,"related":67,"reserved_at":9,"published_at":81,"modified_at":82,"state":83,"summary":84,"references_raw":92,"kevs":167,"epss":168,"epss_history":171,"metrics":400,"affected":407},"CVE-2016-5636","Integer overflow in the get_data function in zipimport.c in CPython (aka Python) before 2.7.12, 3.x before 3.4.5, and 3.5.x before 3.5.2 allows remote attackers to have unspecified impact via a negative data size value, which triggers a heap-based buffer overflow.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-190","Integer Overflow or Wraparound","The product performs a calculation that can\n         produce an integer overflow or wraparound when the logic\n         assumes that the resulting value will always be larger than\n         the original value. This occurs when an integer value is\n         incremented to a value that is too large to store in the\n         associated representation. When this occurs, the value may\n         become a very small or negative number.","weakness","Stable","Base","Medium",[20],{"id":21,"name":22,"techniques":23},"CAPEC-92","Forced Integer Overflow",[],[],[],[],[28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64],{"_key":29},"SUSE-SU-2020:0234-1",{"_key":31},"RHSA-2016:2586",{"_key":33},"SUSE-SU-2016:2106-1",{"_key":35},"SUSE-SU-2016:2653-1",{"_key":37},"SUSE-SU-2016:2859-1",{"_key":39},"SUSE-SU-2018:2408-1",{"_key":41},"SUSE-SU-2019:0223-1",{"_key":43},"SUSE-SU-2020:0114-1",{"_key":45},"OPENSUSE-SU-2020:0086-1",{"_key":47},"OPENSUSE-SU-2024:10193-1",{"_key":49},"OPENSUSE-SU-2024:10450-1",{"_key":51},"OPENSUSE-SU-2024:10536-1",{"_key":53},"OPENSUSE-SU-2024:11284-1",{"_key":55},"DLA-1663-1",{"_key":57},"DLA-522-1",{"_key":59},"MGASA-2016-0230",{"_key":61},"UBUNTU-CVE-2016-5636",{"_key":63},"USN-3134-1",{"_key":65},"DEBIAN-CVE-2016-5636",[],[68,69,70,71,72,73,74,75,76,77,78,79,80],{"_key":29},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":47},{"_key":49},{"_key":51},{"_key":53},{"_key":59},"2016-09-02T14:00:00.000Z","2024-08-06T01:07:59.238Z","Modified",{"cisa_kev":85,"cisa_ransomware":85,"cisa_vendor":9,"epss_severity":86,"epss_score":87,"severity":86,"severity_score":88,"severity_version":89,"severity_source":90,"severity_vector":91,"severity_status":83},false,"high",0.45123,10,"v2.0","nvd","AV:N/AC:L/Au:N/C:C/I:C/A:C",[93,99,105,109,113,118,122,128,132,138,143,149,153,157,162],{"url":94,"sources":95,"tags":97},"http://www.splunk.com/view/SP-CAAAPUE",[96,90],"cve.org",[98],"X Refsource CONFIRM",{"url":100,"sources":101,"tags":102},"http://www.openwall.com/lists/oss-security/2016/06/16/1",[96,90],[103,104],"Mailing List","X Refsource MLIST",{"url":106,"sources":107,"tags":108},"http://www.splunk.com/view/SP-CAAAPSV",[96,90],[98],{"url":110,"sources":111,"tags":112},"https://lists.debian.org/debian-lts-announce/2019/02/msg00011.html",[96,90],[103,104],{"url":114,"sources":115,"tags":116},"https://docs.python.org/3.4/whatsnew/changelog.html#python-3-4-5",[96,90],[98,117],"Release Notes",{"url":119,"sources":120,"tags":121},"http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html",[96,90],[98],{"url":123,"sources":124,"tags":125},"https://bugs.python.org/issue26171",[96,90],[98,126,127],"Issue Tracking","Patch",{"url":129,"sources":130,"tags":131},"https://hg.python.org/cpython/raw-file/v2.7.12/Misc/NEWS",[96,90],[98,117],{"url":133,"sources":134,"tags":135},"http://www.securitytracker.com/id/1038138",[96,90],[136,137],"VDB Entry","X Refsource SECTRACK",{"url":139,"sources":140,"tags":141},"http://www.securityfocus.com/bid/91247",[96,90],[136,142],"X Refsource BID",{"url":144,"sources":145,"tags":146},"https://security.gentoo.org/glsa/201701-18",[96,90],[147,148],"Vendor Advisory","X Refsource GENTOO",{"url":150,"sources":151,"tags":152},"https://docs.python.org/3.5/whatsnew/changelog.html#python-3-5-2",[96,90],[98,117],{"url":154,"sources":155,"tags":156},"http://www.openwall.com/lists/oss-security/2016/06/15/15",[96,90],[103,104],{"url":158,"sources":159,"tags":160},"http://rhn.redhat.com/errata/RHSA-2016-2586.html",[96,90],[147,161],"X Refsource REDHAT",{"url":163,"sources":164,"tags":165},"http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.html",[96,90],[147,166],"X Refsource SUSE",[],{"date":169,"score":87,"percentile":170},"2026-06-04",0.97663,[172,176,179,182,184,186,188,190,193,195,198,200,202,204,206,209,212,215,218,221,224,226,228,230,232,234,237,239,242,245,248,250,252,254,256,258,260,262,265,268,270,273,275,277,280,284,287,289,291,294,296,299,302,305,309,311,314,316,318,320,323,325,328,331,333,336,339,342,345,348,350,352,355,358,361,363,366,369,371,373,375,377,380,383,386,389,391,393,395,397],{"date":173,"score":174,"percentile":175},"2025-11-04",0.63691,0.98322,{"date":177,"score":174,"percentile":178},"2025-11-05",0.98321,{"date":180,"score":174,"percentile":181},"2025-11-06",0.98323,{"date":183,"score":174,"percentile":175},"2025-11-07",{"date":185,"score":174,"percentile":178},"2025-11-08",{"date":187,"score":174,"percentile":178},"2025-11-09",{"date":189,"score":174,"percentile":178},"2025-11-10",{"date":191,"score":174,"percentile":192},"2025-11-11",0.98319,{"date":194,"score":174,"percentile":175},"2025-11-12",{"date":196,"score":174,"percentile":197},"2025-11-13",0.98324,{"date":199,"score":174,"percentile":197},"2025-11-14",{"date":201,"score":174,"percentile":178},"2025-11-15",{"date":203,"score":174,"percentile":178},"2025-11-16",{"date":205,"score":174,"percentile":178},"2025-11-17",{"date":207,"score":174,"percentile":208},"2025-11-18",0.984,{"date":210,"score":174,"percentile":211},"2025-11-19",0.98401,{"date":213,"score":174,"percentile":214},"2025-11-20",0.98404,{"date":216,"score":174,"percentile":217},"2025-11-21",0.98318,{"date":219,"score":174,"percentile":220},"2025-11-22",0.98317,{"date":222,"score":174,"percentile":223},"2025-11-23",0.98316,{"date":225,"score":174,"percentile":223},"2025-11-24",{"date":227,"score":174,"percentile":217},"2025-11-25",{"date":229,"score":174,"percentile":217},"2025-11-26",{"date":231,"score":174,"percentile":192},"2025-11-27",{"date":233,"score":174,"percentile":217},"2025-11-28",{"date":235,"score":174,"percentile":236},"2025-11-29",0.9832,{"date":238,"score":174,"percentile":220},"2025-11-30",{"date":240,"score":174,"percentile":241},"2025-12-01",0.98335,{"date":243,"score":174,"percentile":244},"2025-12-02",0.98337,{"date":246,"score":174,"percentile":247},"2025-12-03",0.98338,{"date":249,"score":174,"percentile":217},"2025-12-04",{"date":251,"score":174,"percentile":217},"2025-12-05",{"date":253,"score":174,"percentile":192},"2025-12-06",{"date":255,"score":174,"percentile":236},"2025-12-07",{"date":257,"score":174,"percentile":236},"2025-12-08",{"date":259,"score":174,"percentile":178},"2025-12-09",{"date":261,"score":174,"percentile":197},"2025-12-10",{"date":263,"score":174,"percentile":264},"2025-12-11",0.98327,{"date":266,"score":174,"percentile":267},"2025-12-12",0.98329,{"date":269,"score":174,"percentile":267},"2025-12-13",{"date":271,"score":174,"percentile":272},"2025-12-14",0.98328,{"date":274,"score":174,"percentile":272},"2025-12-15",{"date":276,"score":174,"percentile":267},"2025-12-16",{"date":278,"score":174,"percentile":279},"2025-12-17",0.98331,{"date":281,"score":282,"percentile":283},"2025-12-18",0.64185,0.98355,{"date":285,"score":282,"percentile":286},"2025-12-19",0.98356,{"date":288,"score":282,"percentile":286},"2025-12-20",{"date":290,"score":282,"percentile":286},"2025-12-21",{"date":292,"score":282,"percentile":293},"2025-12-22",0.98357,{"date":295,"score":282,"percentile":286},"2025-12-23",{"date":297,"score":174,"percentile":298},"2025-12-24",0.9833,{"date":300,"score":174,"percentile":301},"2025-12-25",0.98332,{"date":303,"score":174,"percentile":304},"2025-12-26",0.98333,{"date":306,"score":307,"percentile":308},"2025-12-27",0.66935,0.985,{"date":310,"score":174,"percentile":241},"2025-12-28",{"date":312,"score":174,"percentile":313},"2025-12-29",0.98336,{"date":315,"score":174,"percentile":313},"2025-12-30",{"date":317,"score":174,"percentile":244},"2025-12-31",{"date":319,"score":174,"percentile":286},"2026-01-01",{"date":321,"score":174,"percentile":322},"2026-01-02",0.98358,{"date":324,"score":174,"percentile":293},"2026-01-03",{"date":326,"score":174,"percentile":327},"2026-01-04",0.98341,{"date":329,"score":174,"percentile":330},"2026-01-05",0.98342,{"date":332,"score":174,"percentile":330},"2026-01-06",{"date":334,"score":174,"percentile":335},"2026-01-07",0.98343,{"date":337,"score":174,"percentile":338},"2026-01-08",0.98344,{"date":340,"score":174,"percentile":341},"2026-01-09",0.98346,{"date":343,"score":174,"percentile":344},"2026-01-10",0.98348,{"date":346,"score":174,"percentile":347},"2026-01-11",0.98347,{"date":349,"score":174,"percentile":341},"2026-01-12",{"date":351,"score":174,"percentile":341},"2026-01-13",{"date":353,"score":174,"percentile":354},"2026-01-14",0.98349,{"date":356,"score":174,"percentile":357},"2026-01-15",0.9835,{"date":359,"score":174,"percentile":360},"2026-01-16",0.98352,{"date":362,"score":174,"percentile":360},"2026-01-17",{"date":364,"score":174,"percentile":365},"2026-01-18",0.98353,{"date":367,"score":174,"percentile":368},"2026-01-19",0.98354,{"date":370,"score":174,"percentile":365},"2026-01-20",{"date":372,"score":174,"percentile":283},"2026-01-21",{"date":374,"score":174,"percentile":293},"2026-01-22",{"date":376,"score":174,"percentile":322},"2026-01-23",{"date":378,"score":174,"percentile":379},"2026-01-24",0.98359,{"date":381,"score":174,"percentile":382},"2026-01-25",0.9836,{"date":384,"score":174,"percentile":385},"2026-01-26",0.98361,{"date":387,"score":174,"percentile":388},"2026-01-27",0.98362,{"date":390,"score":174,"percentile":388},"2026-01-28",{"date":392,"score":174,"percentile":388},"2026-01-29",{"date":394,"score":174,"percentile":388},"2026-01-30",{"date":396,"score":174,"percentile":382},"2026-01-31",{"date":398,"score":174,"percentile":399},"2026-02-01",0.98374,[401],{"source":90,"cvss_v2_0":402,"cvss_v3_0":403,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":88,"baseSeverity":9,"vectorString":91,"impactScore":88,"exploitabilityScore":88},{"baseScore":404,"baseSeverity":405,"vectorString":406,"impactScore":404,"exploitabilityScore":88},9.8,"CRITICAL","CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",[408],{"ecosystem":9,"name":409,"vendor":409,"product":409,"cpe_part":410,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":411},"python","a",[412,415,417,419,421,423,425,427,429,431,433,435,437,439,441,443,445,447,449,451,453,455,457,459,461,463,465,467,472,474],{"version":413,"is_range":85,"range_type":414,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.0","cpe",{"version":416,"is_range":85,"range_type":414,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.0.1",{"version":418,"is_range":85,"range_type":414,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.1.0",{"version":420,"is_range":85,"range_type":414,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.1.1",{"version":422,"is_range":85,"range_type":414,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.1.2",{"version":424,"is_range":85,"range_type":414,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.1.3",{"version":426,"is_range":85,"range_type":414,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.1.4",{"version":428,"is_range":85,"range_type":414,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.1.5",{"version":430,"is_range":85,"range_type":414,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.2.0",{"version":432,"is_range":85,"range_type":414,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.2.1",{"version":434,"is_range":85,"range_type":414,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.2.2",{"version":436,"is_range":85,"range_type":414,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.2.3",{"version":438,"is_range":85,"range_type":414,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.2.4",{"version":440,"is_range":85,"range_type":414,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.2.5",{"version":442,"is_range":85,"range_type":414,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.2.6",{"version":444,"is_range":85,"range_type":414,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.3.0",{"version":446,"is_range":85,"range_type":414,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.3.1",{"version":448,"is_range":85,"range_type":414,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.3.2",{"version":450,"is_range":85,"range_type":414,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.3.3",{"version":452,"is_range":85,"range_type":414,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.3.4",{"version":454,"is_range":85,"range_type":414,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.3.5",{"version":456,"is_range":85,"range_type":414,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.3.6",{"version":458,"is_range":85,"range_type":414,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.4.0",{"version":460,"is_range":85,"range_type":414,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.4.1",{"version":462,"is_range":85,"range_type":414,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.4.2",{"version":464,"is_range":85,"range_type":414,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.4.3",{"version":466,"is_range":85,"range_type":414,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.4.4",{"version":468,"is_range":469,"range_type":414,"version_start":9,"version_start_type":9,"version_end":470,"version_end_type":471,"fixed_in":9},"lte2.7.11",true,"2.7.11","including",{"version":473,"is_range":85,"range_type":414,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.5.0",{"version":475,"is_range":85,"range_type":414,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.5.1"]