[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2016-7422":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":72,"aliases":73,"duplicate_of":9,"upstream":74,"downstream":75,"duplicates":86,"related":87,"reserved_at":9,"published_at":90,"modified_at":91,"state":92,"summary":93,"references_raw":102,"kevs":151,"epss":152,"epss_history":155,"metrics":422,"affected":433},"CVE-2016-7422","The virtqueue_map_desc function in hw/virtio/virtio.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (NULL pointer dereference and QEMU process crash) via a large I/O descriptor buffer length value.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-120","Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')","The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer.","weakness","Incomplete","Base","High",[20,24,28,32,36,40,44,48,52,56,60,64,68],{"id":21,"name":22,"techniques":23},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":25,"name":26,"techniques":27},"CAPEC-100","Overflow Buffers",[],{"id":29,"name":30,"techniques":31},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":33,"name":34,"techniques":35},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":37,"name":38,"techniques":39},"CAPEC-42","MIME Conversion",[],{"id":41,"name":42,"techniques":43},"CAPEC-44","Overflow Binary Resource File",[],{"id":45,"name":46,"techniques":47},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":49,"name":50,"techniques":51},"CAPEC-46","Overflow Variables and Tags",[],{"id":53,"name":54,"techniques":55},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":57,"name":58,"techniques":59},"CAPEC-67","String Format Overflow in syslog()",[],{"id":61,"name":62,"techniques":63},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":65,"name":66,"techniques":67},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],{"id":69,"name":70,"techniques":71},"CAPEC-92","Forced Integer Overflow",[],[],[],[],[76,78,80,82,84],{"_key":77},"OPENSUSE-SU-2024:11287-1",{"_key":79},"SUSE-SU-2016:2879-1",{"_key":81},"DEBIAN-CVE-2016-7422",{"_key":83},"RHSA-2017:2392",{"_key":85},"RHSA-2017:2408",[],[88,89],{"_key":77},{"_key":79},"2016-12-10T00:00:00.000Z","2024-08-06T01:57:47.613Z","Modified",{"cisa_kev":94,"cisa_ransomware":94,"cisa_vendor":9,"epss_severity":95,"epss_score":96,"severity":97,"severity_score":98,"severity_version":99,"severity_source":100,"severity_vector":101,"severity_status":92},false,"low",0.00094,"medium",6,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",[103,109,117,123,128,133,139,143,147],{"url":104,"sources":105,"tags":107},"http://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=973e7170dddefb491a48df5cba33b2ae151013a0",[106,100],"cve.org",[108],"X Refsource CONFIRM",{"url":110,"sources":111,"tags":112},"https://lists.gnu.org/archive/html/qemu-devel/2016-09/msg03546.html",[106,100],[113,114,115,116],"Mailing List","X Refsource MLIST","Patch","Third Party Advisory",{"url":118,"sources":119,"tags":120},"https://access.redhat.com/errata/RHSA-2017:2392",[106,100],[121,122,116],"Vendor Advisory","X Refsource REDHAT",{"url":124,"sources":125,"tags":126},"http://lists.opensuse.org/opensuse-updates/2016-12/msg00140.html",[106,100],[121,127,113,116],"X Refsource SUSE",{"url":129,"sources":130,"tags":131},"https://security.gentoo.org/glsa/201609-01",[106,100],[121,132,116],"X Refsource GENTOO",{"url":134,"sources":135,"tags":136},"http://www.securityfocus.com/bid/92996",[106,100],[137,138,116],"VDB Entry","X Refsource BID",{"url":140,"sources":141,"tags":142},"http://www.openwall.com/lists/oss-security/2016/09/16/10",[106,100],[113,114,116],{"url":144,"sources":145,"tags":146},"http://www.openwall.com/lists/oss-security/2016/09/16/4",[106,100],[113,114,116],{"url":148,"sources":149,"tags":150},"https://access.redhat.com/errata/RHSA-2017:2408",[106,100],[121,122,116],[],{"date":153,"score":96,"percentile":154},"2026-06-03",0.26153,[156,159,162,165,168,171,174,177,180,183,186,189,191,194,197,200,203,206,209,212,215,218,221,224,227,230,233,236,239,242,245,248,251,254,257,260,262,265,268,271,274,278,281,284,287,290,293,296,299,302,305,308,311,314,317,320,323,326,329,332,334,337,340,343,346,349,351,354,357,360,363,366,369,372,375,378,381,384,387,390,393,396,399,402,405,408,411,414,417,419],{"date":157,"score":96,"percentile":158},"2025-11-04",0.26997,{"date":160,"score":96,"percentile":161},"2025-11-05",0.26978,{"date":163,"score":96,"percentile":164},"2025-11-06",0.2699,{"date":166,"score":96,"percentile":167},"2025-11-07",0.26991,{"date":169,"score":96,"percentile":170},"2025-11-08",0.26986,{"date":172,"score":96,"percentile":173},"2025-11-09",0.26939,{"date":175,"score":96,"percentile":176},"2025-11-10",0.26904,{"date":178,"score":96,"percentile":179},"2025-11-11",0.26923,{"date":181,"score":96,"percentile":182},"2025-11-12",0.26958,{"date":184,"score":96,"percentile":185},"2025-11-13",0.26964,{"date":187,"score":96,"percentile":188},"2025-11-14",0.2695,{"date":190,"score":96,"percentile":173},"2025-11-15",{"date":192,"score":96,"percentile":193},"2025-11-16",0.26896,{"date":195,"score":96,"percentile":196},"2025-11-17",0.26858,{"date":198,"score":96,"percentile":199},"2025-11-18",0.22547,{"date":201,"score":96,"percentile":202},"2025-11-19",0.22559,{"date":204,"score":96,"percentile":205},"2025-11-20",0.22567,{"date":207,"score":96,"percentile":208},"2025-11-21",0.26829,{"date":210,"score":96,"percentile":211},"2025-11-22",0.2683,{"date":213,"score":96,"percentile":214},"2025-11-23",0.26784,{"date":216,"score":96,"percentile":217},"2025-11-24",0.26752,{"date":219,"score":96,"percentile":220},"2025-11-25",0.26743,{"date":222,"score":96,"percentile":223},"2025-11-26",0.26734,{"date":225,"score":96,"percentile":226},"2025-11-27",0.26737,{"date":228,"score":96,"percentile":229},"2025-11-28",0.26707,{"date":231,"score":96,"percentile":232},"2025-11-29",0.26689,{"date":234,"score":96,"percentile":235},"2025-11-30",0.2665,{"date":237,"score":96,"percentile":238},"2025-12-01",0.26702,{"date":240,"score":96,"percentile":241},"2025-12-02",0.26725,{"date":243,"score":96,"percentile":244},"2025-12-03",0.26731,{"date":246,"score":96,"percentile":247},"2025-12-04",0.26666,{"date":249,"score":96,"percentile":250},"2025-12-05",0.26705,{"date":252,"score":96,"percentile":253},"2025-12-06",0.26704,{"date":255,"score":96,"percentile":256},"2025-12-07",0.26672,{"date":258,"score":96,"percentile":259},"2025-12-08",0.26676,{"date":261,"score":96,"percentile":223},"2025-12-09",{"date":263,"score":96,"percentile":264},"2025-12-10",0.26808,{"date":266,"score":96,"percentile":267},"2025-12-11",0.26825,{"date":269,"score":96,"percentile":270},"2025-12-12",0.26836,{"date":272,"score":96,"percentile":273},"2025-12-13",0.26834,{"date":275,"score":276,"percentile":277},"2025-12-14",0.00098,0.27682,{"date":279,"score":276,"percentile":280},"2025-12-15",0.2765,{"date":282,"score":276,"percentile":283},"2025-12-16",0.27665,{"date":285,"score":276,"percentile":286},"2025-12-17",0.27723,{"date":288,"score":276,"percentile":289},"2025-12-18",0.27774,{"date":291,"score":276,"percentile":292},"2025-12-19",0.27788,{"date":294,"score":276,"percentile":295},"2025-12-20",0.27752,{"date":297,"score":276,"percentile":298},"2025-12-21",0.27705,{"date":300,"score":276,"percentile":301},"2025-12-22",0.27672,{"date":303,"score":276,"percentile":304},"2025-12-23",0.27642,{"date":306,"score":276,"percentile":307},"2025-12-24",0.27649,{"date":309,"score":276,"percentile":310},"2025-12-25",0.27726,{"date":312,"score":276,"percentile":313},"2025-12-26",0.27719,{"date":315,"score":276,"percentile":316},"2025-12-27",0.27717,{"date":318,"score":276,"percentile":319},"2025-12-28",0.27641,{"date":321,"score":276,"percentile":322},"2025-12-29",0.27611,{"date":324,"score":276,"percentile":325},"2025-12-30",0.27608,{"date":327,"score":276,"percentile":328},"2025-12-31",0.27675,{"date":330,"score":276,"percentile":331},"2026-01-01",0.27787,{"date":333,"score":276,"percentile":292},"2026-01-02",{"date":335,"score":276,"percentile":336},"2026-01-03",0.27764,{"date":338,"score":276,"percentile":339},"2026-01-04",0.27652,{"date":341,"score":276,"percentile":342},"2026-01-05",0.27644,{"date":344,"score":276,"percentile":345},"2026-01-06",0.27656,{"date":347,"score":276,"percentile":348},"2026-01-07",0.27684,{"date":350,"score":276,"percentile":310},"2026-01-08",{"date":352,"score":276,"percentile":353},"2026-01-09",0.27715,{"date":355,"score":276,"percentile":356},"2026-01-10",0.27695,{"date":358,"score":276,"percentile":359},"2026-01-11",0.27679,{"date":361,"score":276,"percentile":362},"2026-01-12",0.27632,{"date":364,"score":276,"percentile":365},"2026-01-13",0.27609,{"date":367,"score":96,"percentile":368},"2026-01-14",0.26718,{"date":370,"score":96,"percentile":371},"2026-01-15",0.26714,{"date":373,"score":96,"percentile":374},"2026-01-16",0.26745,{"date":376,"score":96,"percentile":377},"2026-01-17",0.26749,{"date":379,"score":96,"percentile":380},"2026-01-18",0.26698,{"date":382,"score":96,"percentile":383},"2026-01-19",0.26656,{"date":385,"score":96,"percentile":386},"2026-01-20",0.26638,{"date":388,"score":96,"percentile":389},"2026-01-21",0.26585,{"date":391,"score":96,"percentile":392},"2026-01-22",0.26563,{"date":394,"score":96,"percentile":395},"2026-01-23",0.26635,{"date":397,"score":96,"percentile":398},"2026-01-24",0.26634,{"date":400,"score":96,"percentile":401},"2026-01-25",0.26555,{"date":403,"score":96,"percentile":404},"2026-01-26",0.2647,{"date":406,"score":96,"percentile":407},"2026-01-27",0.26454,{"date":409,"score":96,"percentile":410},"2026-01-28",0.26448,{"date":412,"score":96,"percentile":413},"2026-01-29",0.26406,{"date":415,"score":96,"percentile":416},"2026-01-30",0.264,{"date":418,"score":96,"percentile":416},"2026-01-31",{"date":420,"score":96,"percentile":421},"2026-02-01",0.26455,[423],{"source":100,"cvss_v2_0":424,"cvss_v3_0":9,"cvss_v3_1":429,"cvss_v4_0":9},{"baseScore":425,"baseSeverity":9,"vectorString":426,"impactScore":427,"exploitabilityScore":428},2.1,"AV:L/AC:L/Au:N/C:N/I:N/A:P",2.9,3.9,{"baseScore":98,"baseSeverity":430,"vectorString":101,"impactScore":431,"exploitabilityScore":432},"MEDIUM",6.7,3.8,[434,442,451,467],{"ecosystem":9,"name":435,"vendor":436,"product":435,"cpe_part":437,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":438},"leap","opensuse","o",[439],{"version":440,"is_range":94,"range_type":441,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"42.2","cpe",{"ecosystem":9,"name":443,"vendor":443,"product":443,"cpe_part":444,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":445},"qemu","a",[446],{"version":447,"is_range":448,"range_type":441,"version_start":9,"version_start_type":9,"version_end":449,"version_end_type":450,"fixed_in":9},"lte2.7.1",true,"2.7.1","including",{"ecosystem":9,"name":452,"vendor":453,"product":452,"cpe_part":444,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":454},"openstack","redhat",[455,457,459,461,463,465],{"version":456,"is_range":94,"range_type":441,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0",{"version":458,"is_range":94,"range_type":441,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0",{"version":460,"is_range":94,"range_type":441,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8",{"version":462,"is_range":94,"range_type":441,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9",{"version":464,"is_range":94,"range_type":441,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10",{"version":466,"is_range":94,"range_type":441,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11",{"ecosystem":9,"name":468,"vendor":453,"product":468,"cpe_part":444,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":469},"virtualization",[470],{"version":471,"is_range":94,"range_type":441,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0"]