[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2016-6663":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T20:55:33.689Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":28,"aliases":52,"duplicate_of":9,"upstream":53,"downstream":54,"duplicates":83,"related":85,"reserved_at":9,"published_at":95,"modified_at":96,"state":97,"summary":98,"references_raw":105,"kevs":217,"epss":218,"epss_history":221,"metrics":486,"affected":497},"CVE-2016-6663","Race condition in Oracle MySQL before 5.5.52, 5.6.x before 5.6.33, 5.7.x before 5.7.15, and 8.x before 8.0.1; MariaDB before 5.5.52, 10.0.x before 10.0.28, and 10.1.x before 10.1.18; Percona Server before 5.5.51-38.2, 5.6.x before 5.6.32-78-1, and 5.7.x before 5.7.14-8; and Percona XtraDB Cluster before 5.5.41-37.0, 5.6.x before 5.6.32-25.17, and 5.7.x before 5.7.14-26.17 allows local users with certain permissions to gain privileges by leveraging use of my_copystat by REPAIR TABLE to repair a MyISAM table.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-362","Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')","The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.","weakness","Draft","Class","Medium",[20,24],{"id":21,"name":22,"techniques":23},"CAPEC-26","Leveraging Race Conditions",[],{"id":25,"name":26,"techniques":27},"CAPEC-29","Leveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions",[],[29,38],{"_key":30,"name":31,"source":32,"url":33,"maturity":34,"reliability_score":35,"verified":36,"type":9,"platforms":37,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_0C4E98E49F5F8AFB","Exploit Reference (legalhackers.com)","reference","https://legalhackers.com/advisories/MySQL-Maria-Percona-PrivEscRace-CVE-2016-6663-5616-Exploit.html","unknown",0.2,false,[],{"_key":39,"name":40,"source":41,"url":42,"maturity":43,"reliability_score":44,"verified":36,"type":45,"platforms":46,"requires_auth":9,"exploitdb":48,"metasploit":9},"40678","MySQL / MariaDB / PerconaDB 5.5.x/5.6.x/5.7.x - 'mysql' System User Privilege Escalation / Race Condition","exploit-database","https://www.exploit-db.com/exploits/40678","poc",0.5,"local",[47],"linux",{"verified":36,"type":45,"platform":47,"file":49,"codes":50},"exploits/linux/local/40678.c",[7,51],"CVE-2016-5616",[],[],[55,57,59,61,63,65,67,69,71,73,75,77,79,81],{"_key":56},"RHSA-2016:2749",{"_key":58},"RHSA-2017:0184",{"_key":60},"SUSE-RU-2023:3956-1",{"_key":62},"SUSE-RU-2023:4991-1",{"_key":64},"SUSE-SU-2016:2932-1",{"_key":66},"SUSE-SU-2016:2933-1",{"_key":68},"RHSA-2016:2130",{"_key":70},"RHSA-2016:2131",{"_key":72},"RHSA-2016:2595",{"_key":74},"DSA-3711-1",{"_key":76},"MGASA-2016-0371",{"_key":78},"UBUNTU-CVE-2016-6663",{"_key":80},"RHSA-2016:2927",{"_key":82},"RHSA-2016:2928",[84],{"_key":51},[86,87,88,89,90,91,93],{"_key":60},{"_key":62},{"_key":64},{"_key":66},{"_key":76},{"_key":92},"CGA-Q2HG-2VJW-82PG",{"_key":94},"CGA-7V79-FV85-53WM","2016-12-13T21:00:00.000Z","2024-08-06T01:36:29.485Z","Modified",{"cisa_kev":36,"cisa_ransomware":36,"cisa_vendor":9,"epss_severity":99,"epss_score":100,"severity":101,"severity_score":4,"severity_version":102,"severity_source":103,"severity_vector":104,"severity_status":97},"low",0.02606,"high","v3.0","nvd","CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",[106,114,120,124,130,134,139,144,148,152,159,163,167,172,176,181,185,189,193,197,201,205,209,213],{"url":107,"sources":108,"tags":110},"http://rhn.redhat.com/errata/RHSA-2016-2749.html",[109,103],"cve.org",[111,112,113],"Vendor Advisory","X Refsource REDHAT","Third Party Advisory",{"url":115,"sources":116,"tags":117},"https://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-52.html",[109,103],[118,119,111],"X Refsource CONFIRM","Issue Tracking",{"url":121,"sources":122,"tags":123},"http://rhn.redhat.com/errata/RHSA-2017-0184.html",[109,103],[111,112,113],{"url":125,"sources":126,"tags":127},"http://seclists.org/fulldisclosure/2016/Nov/4",[109,103],[128,129,113],"Mailing List","X Refsource FULLDISC",{"url":131,"sources":132,"tags":133},"http://rhn.redhat.com/errata/RHSA-2016-2131.html",[109,103],[111,112,113],{"url":135,"sources":136,"tags":137},"https://github.com/mysql/mysql-server/commit/4e5473862e6852b0f3802b0cd0c6fa10b5253291",[109,103],[118,119,138,113],"Patch",{"url":140,"sources":141,"tags":142},"https://mariadb.com/kb/en/mariadb/mariadb-5552-release-notes/",[109,103],[118,143,111],"Release Notes",{"url":145,"sources":146,"tags":147},"https://www.percona.com/blog/2016/11/02/percona-responds-to-cve-2016-6663-and-cve-2016-6664/",[109,103],[118,111],{"url":149,"sources":150,"tags":151},"http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html",[109,103],[118,138,111],{"url":153,"sources":154,"tags":155},"https://www.exploit-db.com/exploits/40678/",[109,103],[156,157,113,158],"Exploit","X Refsource EXPLOIT DB","VDB Entry",{"url":160,"sources":161,"tags":162},"http://rhn.redhat.com/errata/RHSA-2016-2130.html",[109,103],[111,112,113],{"url":164,"sources":165,"tags":166},"http://rhn.redhat.com/errata/RHSA-2016-2927.html",[109,103],[111,112,113],{"url":168,"sources":169,"tags":170},"http://www.openwall.com/lists/oss-security/2016/10/25/4",[109,103],[128,171,113],"X Refsource MLIST",{"url":173,"sources":174,"tags":175},"https://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-33.html",[109,103],[118,119,111],{"url":177,"sources":178,"tags":179},"http://www.securityfocus.com/bid/92911",[109,103],[158,180,113],"X Refsource BID",{"url":182,"sources":183,"tags":184},"http://www.securityfocus.com/bid/93614",[109,103],[158,180,113],{"url":186,"sources":187,"tags":188},"http://rhn.redhat.com/errata/RHSA-2016-2595.html",[109,103],[111,112,113],{"url":190,"sources":191,"tags":192},"https://dev.mysql.com/doc/relnotes/mysql/8.0/en/news-8-0-1.html",[109,103],[118,119,111],{"url":194,"sources":195,"tags":196},"https://mariadb.com/kb/en/mariadb/mariadb-10118-release-notes/",[109,103],[118,143,111],{"url":198,"sources":199,"tags":200},"https://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-15.html",[109,103],[118,119,111],{"url":202,"sources":203,"tags":204},"https://github.com/MariaDB/server/commit/347eeefbfc658c8531878218487d729f4e020805",[109,103],[118,119,138,113],{"url":206,"sources":207,"tags":208},"http://rhn.redhat.com/errata/RHSA-2016-2928.html",[109,103],[111,112,113],{"url":210,"sources":211,"tags":212},"https://mariadb.com/kb/en/mariadb/mariadb-10028-release-notes/",[109,103],[118,143,111],{"url":33,"sources":214,"tags":215},[109,103],[216,156,113],"X Refsource MISC",[],{"date":219,"score":100,"percentile":220},"2026-06-04",0.85909,[222,226,229,232,235,238,241,244,247,250,253,256,259,261,264,267,270,273,276,279,282,285,288,291,294,297,299,302,305,308,311,314,317,319,322,325,328,331,334,337,340,344,346,349,352,355,358,361,364,366,369,372,375,378,382,385,388,391,393,396,399,402,405,408,410,412,415,418,421,424,427,429,432,435,438,441,444,447,450,452,455,458,462,465,468,470,473,476,480,483],{"date":223,"score":224,"percentile":225},"2025-11-04",0.01553,0.80805,{"date":227,"score":224,"percentile":228},"2025-11-05",0.80807,{"date":230,"score":224,"percentile":231},"2025-11-06",0.80808,{"date":233,"score":224,"percentile":234},"2025-11-07",0.80819,{"date":236,"score":224,"percentile":237},"2025-11-08",0.80827,{"date":239,"score":224,"percentile":240},"2025-11-09",0.80823,{"date":242,"score":224,"percentile":243},"2025-11-10",0.80818,{"date":245,"score":224,"percentile":246},"2025-11-11",0.80821,{"date":248,"score":224,"percentile":249},"2025-11-12",0.80834,{"date":251,"score":224,"percentile":252},"2025-11-13",0.80839,{"date":254,"score":224,"percentile":255},"2025-11-14",0.80845,{"date":257,"score":224,"percentile":258},"2025-11-15",0.8084,{"date":260,"score":224,"percentile":258},"2025-11-16",{"date":262,"score":224,"percentile":263},"2025-11-17",0.80837,{"date":265,"score":224,"percentile":266},"2025-11-18",0.79867,{"date":268,"score":224,"percentile":269},"2025-11-19",0.79872,{"date":271,"score":224,"percentile":272},"2025-11-20",0.79878,{"date":274,"score":224,"percentile":275},"2025-11-21",0.80857,{"date":277,"score":224,"percentile":278},"2025-11-22",0.80858,{"date":280,"score":224,"percentile":281},"2025-11-23",0.80849,{"date":283,"score":224,"percentile":284},"2025-11-24",0.8085,{"date":286,"score":224,"percentile":287},"2025-11-25",0.80853,{"date":289,"score":224,"percentile":290},"2025-11-26",0.80854,{"date":292,"score":224,"percentile":293},"2025-11-27",0.8086,{"date":295,"score":224,"percentile":296},"2025-11-28",0.80852,{"date":298,"score":224,"percentile":275},"2025-11-29",{"date":300,"score":224,"percentile":301},"2025-11-30",0.80862,{"date":303,"score":224,"percentile":304},"2025-12-01",0.80948,{"date":306,"score":224,"percentile":307},"2025-12-02",0.80953,{"date":309,"score":224,"percentile":310},"2025-12-03",0.80952,{"date":312,"score":224,"percentile":313},"2025-12-04",0.80867,{"date":315,"score":224,"percentile":316},"2025-12-05",0.80875,{"date":318,"score":224,"percentile":316},"2025-12-06",{"date":320,"score":224,"percentile":321},"2025-12-07",0.80874,{"date":323,"score":224,"percentile":324},"2025-12-08",0.80877,{"date":326,"score":224,"percentile":327},"2025-12-09",0.80892,{"date":329,"score":224,"percentile":330},"2025-12-10",0.80918,{"date":332,"score":224,"percentile":333},"2025-12-11",0.80929,{"date":335,"score":224,"percentile":336},"2025-12-12",0.80944,{"date":338,"score":224,"percentile":339},"2025-12-13",0.80942,{"date":341,"score":342,"percentile":343},"2025-12-14",0.02108,0.83596,{"date":345,"score":342,"percentile":343},"2025-12-15",{"date":347,"score":342,"percentile":348},"2025-12-16",0.83605,{"date":350,"score":342,"percentile":351},"2025-12-17",0.83612,{"date":353,"score":342,"percentile":354},"2025-12-18",0.83619,{"date":356,"score":342,"percentile":357},"2025-12-19",0.83622,{"date":359,"score":342,"percentile":360},"2025-12-20",0.83616,{"date":362,"score":342,"percentile":363},"2025-12-21",0.83614,{"date":365,"score":342,"percentile":351},"2025-12-22",{"date":367,"score":342,"percentile":368},"2025-12-23",0.83617,{"date":370,"score":342,"percentile":371},"2025-12-24",0.83627,{"date":373,"score":342,"percentile":374},"2025-12-25",0.83643,{"date":376,"score":342,"percentile":377},"2025-12-26",0.83644,{"date":379,"score":380,"percentile":381},"2025-12-27",0.02167,0.83904,{"date":383,"score":342,"percentile":384},"2025-12-28",0.8363,{"date":386,"score":342,"percentile":387},"2025-12-29",0.83624,{"date":389,"score":342,"percentile":390},"2025-12-30",0.83631,{"date":392,"score":342,"percentile":377},"2025-12-31",{"date":394,"score":342,"percentile":395},"2026-01-01",0.83714,{"date":397,"score":342,"percentile":398},"2026-01-02",0.83712,{"date":400,"score":342,"percentile":401},"2026-01-03",0.83706,{"date":403,"score":342,"percentile":404},"2026-01-04",0.83632,{"date":406,"score":342,"percentile":407},"2026-01-05",0.83625,{"date":409,"score":342,"percentile":390},"2026-01-06",{"date":411,"score":342,"percentile":404},"2026-01-07",{"date":413,"score":342,"percentile":414},"2026-01-08",0.8364,{"date":416,"score":342,"percentile":417},"2026-01-09",0.83641,{"date":419,"score":342,"percentile":420},"2026-01-10",0.83639,{"date":422,"score":342,"percentile":423},"2026-01-11",0.83638,{"date":425,"score":342,"percentile":426},"2026-01-12",0.83633,{"date":428,"score":342,"percentile":384},"2026-01-13",{"date":430,"score":342,"percentile":431},"2026-01-14",0.83651,{"date":433,"score":342,"percentile":434},"2026-01-15",0.8365,{"date":436,"score":342,"percentile":437},"2026-01-16",0.83659,{"date":439,"score":342,"percentile":440},"2026-01-17",0.83662,{"date":442,"score":342,"percentile":443},"2026-01-18",0.83657,{"date":445,"score":342,"percentile":446},"2026-01-19",0.83652,{"date":448,"score":342,"percentile":449},"2026-01-20",0.83655,{"date":451,"score":342,"percentile":437},"2026-01-21",{"date":453,"score":342,"percentile":454},"2026-01-22",0.83667,{"date":456,"score":342,"percentile":457},"2026-01-23",0.83692,{"date":459,"score":460,"percentile":461},"2026-01-24",0.02658,0.85396,{"date":463,"score":460,"percentile":464},"2026-01-25",0.85393,{"date":466,"score":460,"percentile":467},"2026-01-26",0.8539,{"date":469,"score":460,"percentile":461},"2026-01-27",{"date":471,"score":460,"percentile":472},"2026-01-28",0.85401,{"date":474,"score":460,"percentile":475},"2026-01-29",0.85403,{"date":477,"score":478,"percentile":479},"2026-01-30",0.03236,0.86734,{"date":481,"score":478,"percentile":482},"2026-01-31",0.86736,{"date":484,"score":478,"percentile":485},"2026-02-01",0.86805,[487],{"source":103,"cvss_v2_0":488,"cvss_v3_0":493,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":489,"baseSeverity":9,"vectorString":490,"impactScore":491,"exploitabilityScore":492},4.4,"AV:L/AC:M/Au:N/C:P/I:P/A:P",6.4,3.4,{"baseScore":4,"baseSeverity":494,"vectorString":104,"impactScore":495,"exploitabilityScore":496},"HIGH",9.8,2.6,[498,518,535,552],{"ecosystem":9,"name":499,"vendor":499,"product":499,"cpe_part":500,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":501},"mariadb","a",[502,510,514],{"version":503,"is_range":504,"range_type":505,"version_start":506,"version_start_type":507,"version_end":508,"version_end_type":509,"fixed_in":9},"gte5.5.20_lt5.5.52",true,"cpe","5.5.20","including","5.5.52","excluding",{"version":511,"is_range":504,"range_type":505,"version_start":512,"version_start_type":507,"version_end":513,"version_end_type":509,"fixed_in":9},"gte10.0.0_lt10.0.28","10.0.0","10.0.28",{"version":515,"is_range":504,"range_type":505,"version_start":516,"version_start_type":507,"version_end":517,"version_end_type":509,"fixed_in":9},"gte10.1.0_lt10.1.18","10.1.0","10.1.18",{"ecosystem":9,"name":519,"vendor":520,"product":519,"cpe_part":500,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":521},"mysql","oracle",[522,525,529,533],{"version":523,"is_range":504,"range_type":505,"version_start":524,"version_start_type":507,"version_end":508,"version_end_type":507,"fixed_in":9},"gte5.5.0_lte5.5.52","5.5.0",{"version":526,"is_range":504,"range_type":505,"version_start":527,"version_start_type":507,"version_end":528,"version_end_type":507,"fixed_in":9},"gte5.6.0_lte5.6.33","5.6.0","5.6.33",{"version":530,"is_range":504,"range_type":505,"version_start":531,"version_start_type":507,"version_end":532,"version_end_type":507,"fixed_in":9},"gte5.7.0_lte5.7.15","5.7.0","5.7.15",{"version":534,"is_range":36,"range_type":505,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0",{"ecosystem":9,"name":536,"vendor":537,"product":538,"cpe_part":500,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":539},"percona server","percona","percona_server",[540,544,548],{"version":541,"is_range":504,"range_type":505,"version_start":542,"version_start_type":507,"version_end":543,"version_end_type":509,"fixed_in":9},"gte5.5_lt5.5.51-38.2","5.5","5.5.51-38.2",{"version":545,"is_range":504,"range_type":505,"version_start":546,"version_start_type":507,"version_end":547,"version_end_type":509,"fixed_in":9},"gte5.6_lt5.6.32-78.1","5.6","5.6.32-78.1",{"version":549,"is_range":504,"range_type":505,"version_start":550,"version_start_type":507,"version_end":551,"version_end_type":509,"fixed_in":9},"gte5.7_lt5.7.14-8","5.7","5.7.14-8",{"ecosystem":9,"name":553,"vendor":537,"product":554,"cpe_part":500,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":555},"xtradb cluster","xtradb_cluster",[556,559,562],{"version":557,"is_range":504,"range_type":505,"version_start":542,"version_start_type":507,"version_end":558,"version_end_type":509,"fixed_in":9},"gte5.5_lt5.5.41-37.0","5.5.41-37.0",{"version":560,"is_range":504,"range_type":505,"version_start":546,"version_start_type":507,"version_end":561,"version_end_type":509,"fixed_in":9},"gte5.6_lt5.6.32-25.17","5.6.32-25.17",{"version":563,"is_range":504,"range_type":505,"version_start":550,"version_start_type":507,"version_end":564,"version_end_type":509,"fixed_in":9},"gte5.7_lt5.7.14-26.17","5.7.14-26.17"]