[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2016-9445":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-06T08:55:34.825Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":24,"aliases":25,"duplicate_of":9,"upstream":26,"downstream":27,"duplicates":52,"related":53,"reserved_at":9,"published_at":59,"modified_at":60,"state":61,"summary":62,"references_raw":71,"kevs":122,"epss":123,"epss_history":126,"metrics":383,"affected":393},"CVE-2016-9445","Integer overflow in the vmnc decoder in the gstreamer allows remote attackers to cause a denial of service (crash) via large width and height values, which triggers a buffer overflow.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-190","Integer Overflow or Wraparound","The product performs a calculation that can\n         produce an integer overflow or wraparound when the logic\n         assumes that the resulting value will always be larger than\n         the original value. This occurs when an integer value is\n         incremented to a value that is too large to store in the\n         associated representation. When this occurs, the value may\n         become a very small or negative number.","weakness","Stable","Base","Medium",[20],{"id":21,"name":22,"techniques":23},"CAPEC-92","Forced Integer Overflow",[],[],[],[],[28,30,32,34,36,38,40,42,44,46,48,50],{"_key":29},"SUSE-SU-2016:3296-1",{"_key":31},"SUSE-SU-2016:3297-1",{"_key":33},"SUSE-SU-2017:0027-1",{"_key":35},"SUSE-SU-2017:0028-1",{"_key":37},"DLA-712-1",{"_key":39},"DSA-3717-1",{"_key":41},"RHSA-2016:2974",{"_key":43},"MGASA-2018-0012",{"_key":45},"UBUNTU-CVE-2016-9445",{"_key":47},"DEBIAN-CVE-2016-9445",{"_key":49},"RHSA-2017:0018",{"_key":51},"RHSA-2017:0021",[],[54,55,56,57,58],{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":43},"2017-01-23T21:00:00.000Z","2024-08-06T02:50:38.398Z","Modified",{"cisa_kev":63,"cisa_ransomware":63,"cisa_vendor":9,"epss_severity":64,"epss_score":65,"severity":66,"severity_score":67,"severity_version":68,"severity_source":69,"severity_vector":70,"severity_status":61},false,"low",0.05952,"high",7.5,"v3.1","nvd","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",[72,79,84,90,96,100,104,108,112,117],{"url":73,"sources":74,"tags":76},"http://rhn.redhat.com/errata/RHSA-2017-0021.html",[75,69],"cve.org",[77,78],"Vendor Advisory","X Refsource REDHAT",{"url":80,"sources":81,"tags":82},"https://bugzilla.gnome.org/show_bug.cgi?id=774533",[75,69],[83],"X Refsource CONFIRM",{"url":85,"sources":86,"tags":87},"http://www.securityfocus.com/bid/94421",[75,69],[88,89],"VDB Entry","X Refsource BID",{"url":91,"sources":92,"tags":93},"http://www.openwall.com/lists/oss-security/2016/11/18/13",[75,69],[94,95],"Mailing List","X Refsource MLIST",{"url":97,"sources":98,"tags":99},"http://rhn.redhat.com/errata/RHSA-2017-0018.html",[75,69],[77,78],{"url":101,"sources":102,"tags":103},"https://cgit.freedesktop.org/gstreamer/gst-plugins-bad/commit/gst/vmnc/vmncdec.c?id=4cb1bcf1422bbcd79c0f683edb7ee85e3f7a31fe",[75,69],[83],{"url":105,"sources":106,"tags":107},"http://www.openwall.com/lists/oss-security/2016/11/18/12",[75,69],[94,95],{"url":109,"sources":110,"tags":111},"http://rhn.redhat.com/errata/RHSA-2016-2974.html",[75,69],[77,78],{"url":113,"sources":114,"tags":115},"https://scarybeastsecurity.blogspot.de/2016/11/0day-poc-risky-design-decisions-in.html",[75,69],[116],"X Refsource MISC",{"url":118,"sources":119,"tags":120},"https://security.gentoo.org/glsa/201705-10",[75,69],[77,121],"X Refsource GENTOO",[],{"date":124,"score":65,"percentile":125},"2026-06-05",0.90825,[127,131,134,137,140,143,146,149,152,155,158,161,164,167,170,173,176,179,181,183,185,187,190,193,196,199,202,204,207,210,212,215,218,220,223,226,229,232,235,238,241,243,246,249,252,255,258,261,264,267,270,273,276,279,282,285,288,291,294,297,300,303,306,309,312,315,318,321,323,326,328,330,333,336,339,342,345,347,349,352,355,358,361,364,367,370,373,376,378,380],{"date":128,"score":129,"percentile":130},"2025-11-04",0.02406,0.84528,{"date":132,"score":129,"percentile":133},"2025-11-05",0.84532,{"date":135,"score":129,"percentile":136},"2025-11-06",0.84535,{"date":138,"score":129,"percentile":139},"2025-11-07",0.84541,{"date":141,"score":129,"percentile":142},"2025-11-08",0.84547,{"date":144,"score":129,"percentile":145},"2025-11-09",0.8454,{"date":147,"score":129,"percentile":148},"2025-11-10",0.84538,{"date":150,"score":129,"percentile":151},"2025-11-11",0.84543,{"date":153,"score":129,"percentile":154},"2025-11-12",0.84554,{"date":156,"score":129,"percentile":157},"2025-11-13",0.8456,{"date":159,"score":129,"percentile":160},"2025-11-14",0.84562,{"date":162,"score":129,"percentile":163},"2025-11-15",0.84555,{"date":165,"score":129,"percentile":166},"2025-11-16",0.84557,{"date":168,"score":129,"percentile":169},"2025-11-17",0.84545,{"date":171,"score":129,"percentile":172},"2025-11-18",0.8375,{"date":174,"score":129,"percentile":175},"2025-11-19",0.83752,{"date":177,"score":129,"percentile":178},"2025-11-20",0.83757,{"date":180,"score":129,"percentile":157},"2025-11-21",{"date":182,"score":129,"percentile":166},"2025-11-22",{"date":184,"score":129,"percentile":142},"2025-11-23",{"date":186,"score":129,"percentile":169},"2025-11-24",{"date":188,"score":129,"percentile":189},"2025-11-25",0.84546,{"date":191,"score":129,"percentile":192},"2025-11-26",0.84548,{"date":194,"score":129,"percentile":195},"2025-11-27",0.84549,{"date":197,"score":129,"percentile":198},"2025-11-28",0.84531,{"date":200,"score":129,"percentile":201},"2025-11-29",0.84567,{"date":203,"score":129,"percentile":201},"2025-11-30",{"date":205,"score":129,"percentile":206},"2025-12-01",0.84633,{"date":208,"score":129,"percentile":209},"2025-12-02",0.84636,{"date":211,"score":129,"percentile":209},"2025-12-03",{"date":213,"score":129,"percentile":214},"2025-12-04",0.84568,{"date":216,"score":129,"percentile":217},"2025-12-05",0.84571,{"date":219,"score":129,"percentile":217},"2025-12-06",{"date":221,"score":129,"percentile":222},"2025-12-07",0.84563,{"date":224,"score":129,"percentile":225},"2025-12-08",0.84565,{"date":227,"score":129,"percentile":228},"2025-12-09",0.84577,{"date":230,"score":129,"percentile":231},"2025-12-10",0.84599,{"date":233,"score":129,"percentile":234},"2025-12-11",0.84603,{"date":236,"score":129,"percentile":237},"2025-12-12",0.84609,{"date":239,"score":129,"percentile":240},"2025-12-13",0.84605,{"date":242,"score":129,"percentile":240},"2025-12-14",{"date":244,"score":129,"percentile":245},"2025-12-15",0.84604,{"date":247,"score":129,"percentile":248},"2025-12-16",0.84611,{"date":250,"score":129,"percentile":251},"2025-12-17",0.84615,{"date":253,"score":129,"percentile":254},"2025-12-18",0.84621,{"date":256,"score":129,"percentile":257},"2025-12-19",0.84627,{"date":259,"score":129,"percentile":260},"2025-12-20",0.84622,{"date":262,"score":129,"percentile":263},"2025-12-21",0.84624,{"date":265,"score":129,"percentile":266},"2025-12-22",0.84626,{"date":268,"score":129,"percentile":269},"2025-12-23",0.8463,{"date":271,"score":129,"percentile":272},"2025-12-24",0.84638,{"date":274,"score":129,"percentile":275},"2025-12-25",0.84654,{"date":277,"score":129,"percentile":278},"2025-12-26",0.84656,{"date":280,"score":129,"percentile":281},"2025-12-27",0.84709,{"date":283,"score":129,"percentile":284},"2025-12-28",0.84647,{"date":286,"score":129,"percentile":287},"2025-12-29",0.84642,{"date":289,"score":129,"percentile":290},"2025-12-30",0.84649,{"date":292,"score":129,"percentile":293},"2025-12-31",0.84659,{"date":295,"score":129,"percentile":296},"2026-01-01",0.84722,{"date":298,"score":129,"percentile":299},"2026-01-02",0.8472,{"date":301,"score":129,"percentile":302},"2026-01-03",0.84716,{"date":304,"score":129,"percentile":305},"2026-01-04",0.84646,{"date":307,"score":129,"percentile":308},"2026-01-05",0.84639,{"date":310,"score":129,"percentile":311},"2026-01-06",0.84645,{"date":313,"score":129,"percentile":314},"2026-01-07",0.84644,{"date":316,"score":129,"percentile":317},"2026-01-08",0.84653,{"date":319,"score":129,"percentile":320},"2026-01-09",0.84658,{"date":322,"score":129,"percentile":275},"2026-01-10",{"date":324,"score":129,"percentile":325},"2026-01-11",0.84652,{"date":327,"score":129,"percentile":284},"2026-01-12",{"date":329,"score":129,"percentile":311},"2026-01-13",{"date":331,"score":129,"percentile":332},"2026-01-14",0.84664,{"date":334,"score":129,"percentile":335},"2026-01-15",0.8466,{"date":337,"score":129,"percentile":338},"2026-01-16",0.84668,{"date":340,"score":129,"percentile":341},"2026-01-17",0.84673,{"date":343,"score":129,"percentile":344},"2026-01-18",0.84671,{"date":346,"score":129,"percentile":332},"2026-01-19",{"date":348,"score":129,"percentile":338},"2026-01-20",{"date":350,"score":129,"percentile":351},"2026-01-21",0.84674,{"date":353,"score":129,"percentile":354},"2026-01-22",0.84678,{"date":356,"score":129,"percentile":357},"2026-01-23",0.84692,{"date":359,"score":129,"percentile":360},"2026-01-24",0.84702,{"date":362,"score":129,"percentile":363},"2026-01-25",0.84698,{"date":365,"score":129,"percentile":366},"2026-01-26",0.84697,{"date":368,"score":129,"percentile":369},"2026-01-27",0.84701,{"date":371,"score":129,"percentile":372},"2026-01-28",0.84705,{"date":374,"score":129,"percentile":375},"2026-01-29",0.84707,{"date":377,"score":129,"percentile":281},"2026-01-30",{"date":379,"score":129,"percentile":281},"2026-01-31",{"date":381,"score":129,"percentile":382},"2026-02-01",0.84778,[384],{"source":69,"cvss_v2_0":385,"cvss_v3_0":9,"cvss_v3_1":390,"cvss_v4_0":9},{"baseScore":386,"baseSeverity":9,"vectorString":387,"impactScore":388,"exploitabilityScore":389},5,"AV:N/AC:L/Au:N/C:N/I:N/A:P",2.9,10,{"baseScore":67,"baseSeverity":391,"vectorString":70,"impactScore":392,"exploitabilityScore":389},"HIGH",6,[394,402],{"ecosystem":9,"name":395,"vendor":396,"product":395,"cpe_part":397,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":398},"gstreamer","gstreamer_project","a",[399],{"version":400,"is_range":63,"range_type":401,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.10.0","cpe",{"ecosystem":9,"name":395,"vendor":395,"product":395,"cpe_part":397,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":403},[404],{"version":400,"is_range":63,"range_type":401,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9}]