[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2017-1000083":6},{"stargazers_count":4,"fetched_at":5},5,"2026-04-08T08:11:26.341Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":18,"aliases":63,"duplicate_of":9,"upstream":64,"downstream":65,"duplicates":90,"related":91,"reserved_at":9,"published_at":101,"modified_at":102,"state":103,"summary":104,"references_raw":112,"kevs":158,"epss":159,"epss_history":162,"metrics":372,"affected":383},"CVE-2017-1000083","backend/comics/comics-document.c (aka the comic book backend) in GNOME Evince before 3.24.1 allows remote attackers to execute arbitrary commands via a .cbt file that is a TAR archive containing a filename beginning with a \"--\" command-line option substring, as demonstrated by a --checkpoint-action=exec=bash at the beginning of the filename.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":9,"likelihood_of_exploit":9,"capec":17},"NVD-CWE-NOINFO","Insufficient Information","NVD uses this CWE ID when there is insufficient information to assign a specific CWE.","placeholder","NVD-Reserved",[],[19,33,43],{"_key":20,"name":21,"source":22,"url":23,"maturity":24,"reliability_score":25,"verified":26,"type":27,"platforms":28,"requires_auth":9,"exploitdb":30,"metasploit":9},"45824","Evince 3.24.0 - Command Injection","exploit-database","https://www.exploit-db.com/exploits/45824","poc",0.8,true,"dos",[29],"linux",{"verified":26,"type":27,"platform":29,"file":31,"codes":32},"exploits/linux/dos/45824.txt",[7],{"_key":34,"name":35,"source":22,"url":36,"maturity":37,"reliability_score":25,"verified":26,"type":38,"platforms":39,"requires_auth":9,"exploitdb":40,"metasploit":9},"46341","Evince - CBT File Command Injection (Metasploit)","https://www.exploit-db.com/exploits/46341","weaponized","local",[29],{"verified":26,"type":38,"platform":29,"file":41,"codes":42},"exploits/linux/local/46341.rb",[7],{"_key":44,"name":45,"source":46,"url":47,"maturity":37,"reliability_score":48,"verified":26,"type":49,"platforms":50,"requires_auth":51,"exploitdb":9,"metasploit":52},"MSF_EXPLOIT_MULTI_FILEFORMAT_EVINCE_CBT_CMD_INJECTION","Evince CBT File Command Injection","metasploit","https://github.com/rapid7/metasploit-framework/blob/master/modules/exploit/multi/fileformat/evince_cbt_cmd_injection.rb",1,"remote",[],false,{"fullname":53,"rank":54,"rank_name":55,"post_auth":51,"check":51,"notes":56},"exploit/multi/fileformat/evince_cbt_cmd_injection",600,"excellent",{"Stability":57,"SideEffects":59,"Reliability":61},[58],"unknown-stability",[60],"unknown-side-effects",[62],"unknown-reliability",[],[],[66,68,70,72,74,76,78,80,82,84,86,88],{"_key":67},"SUSE-SU-2017:2390-1",{"_key":69},"RHSA-2017:2388",{"_key":71},"DEBIAN-CVE-2017-1000083",{"_key":73},"SUSE-SU-2017:1893-1",{"_key":75},"SUSE-SU-2017:1894-1",{"_key":77},"SUSE-SU-2017:3428-1",{"_key":79},"UBUNTU-CVE-2017-1000083",{"_key":81},"USN-3351-1",{"_key":83},"OPENSUSE-SU-2024:10742-1",{"_key":85},"DLA-1031-1",{"_key":87},"DSA-3911-1",{"_key":89},"DSA-3916-1",[],[92,93,95,97,98,99,100],{"_key":67},{"_key":94},"MGASA-2017-0244",{"_key":96},"MGASA-2017-0251",{"_key":73},{"_key":75},{"_key":77},{"_key":83},"2017-09-05T06:00:00.000Z","2024-08-05T21:53:06.517Z","Deferred",{"cisa_kev":51,"cisa_ransomware":51,"cisa_vendor":9,"epss_severity":105,"epss_score":106,"severity":107,"severity_score":108,"severity_version":109,"severity_source":110,"severity_vector":111,"severity_status":103},"critical",0.76668,"high",7.8,"v3.0","nvd","CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",[113,122,128,134,138,143,149,154],{"url":114,"sources":115,"tags":117},"https://www.exploit-db.com/exploits/46341/",[116,110],"cve.org",[118,119,120,121],"Exploit","X Refsource EXPLOIT DB","Third Party Advisory","VDB Entry",{"url":123,"sources":124,"tags":125},"http://seclists.org/oss-sec/2017/q3/128",[116,110],[126,127,120],"X Refsource MISC","Mailing List",{"url":129,"sources":130,"tags":131},"https://github.com/GNOME/evince/commit/717df38fd8509bf883b70d680c9b1b3cf36732ee",[116,110],[126,132,133,120],"Issue Tracking","Patch",{"url":135,"sources":136,"tags":137},"https://bugzilla.gnome.org/show_bug.cgi?id=784630",[116,110],[126,132,120],{"url":139,"sources":140,"tags":141},"http://www.securityfocus.com/bid/99597",[116,110],[121,142,120],"X Refsource BID",{"url":144,"sources":145,"tags":146},"https://access.redhat.com/errata/RHSA-2017:2388",[116,110],[147,148,120],"Vendor Advisory","X Refsource REDHAT",{"url":150,"sources":151,"tags":152},"http://www.debian.org/security/2017/dsa-3911",[116,110],[147,153,120],"X Refsource DEBIAN",{"url":155,"sources":156,"tags":157},"https://www.exploit-db.com/exploits/45824/",[116,110],[118,119,120,121],[],{"date":160,"score":106,"percentile":161},"2026-04-07",0.98944,[163,166,169,172,175,178,181,184,187,189,191,193,195,197,199,202,205,207,209,211,213,215,217,219,222,224,226,228,231,234,236,238,240,242,244,246,248,251,254,257,259,262,264,266,268,270,272,274,276,278,280,283,286,288,291,293,296,298,300,303,305,308,311,313,315,317,319,321,323,325,327,329,331,333,335,337,339,341,343,345,347,350,352,354,356,359,362,365,367,369],{"date":164,"score":106,"percentile":165},"2025-11-04",0.9889,{"date":167,"score":106,"percentile":168},"2025-11-05",0.98889,{"date":170,"score":106,"percentile":171},"2025-11-06",0.98887,{"date":173,"score":106,"percentile":174},"2025-11-07",0.98886,{"date":176,"score":106,"percentile":177},"2025-11-08",0.98885,{"date":179,"score":106,"percentile":180},"2025-11-09",0.98884,{"date":182,"score":106,"percentile":183},"2025-11-10",0.98883,{"date":185,"score":106,"percentile":186},"2025-11-11",0.98882,{"date":188,"score":106,"percentile":180},"2025-11-12",{"date":190,"score":106,"percentile":180},"2025-11-13",{"date":192,"score":106,"percentile":180},"2025-11-14",{"date":194,"score":106,"percentile":183},"2025-11-15",{"date":196,"score":106,"percentile":177},"2025-11-16",{"date":198,"score":106,"percentile":177},"2025-11-17",{"date":200,"score":106,"percentile":201},"2025-11-18",0.99025,{"date":203,"score":106,"percentile":204},"2025-11-19",0.99026,{"date":206,"score":106,"percentile":204},"2025-11-20",{"date":208,"score":106,"percentile":174},"2025-11-21",{"date":210,"score":106,"percentile":177},"2025-11-22",{"date":212,"score":106,"percentile":177},"2025-11-23",{"date":214,"score":106,"percentile":174},"2025-11-24",{"date":216,"score":106,"percentile":174},"2025-11-25",{"date":218,"score":106,"percentile":174},"2025-11-26",{"date":220,"score":106,"percentile":221},"2025-11-27",0.98888,{"date":223,"score":106,"percentile":221},"2025-11-28",{"date":225,"score":106,"percentile":221},"2025-11-29",{"date":227,"score":106,"percentile":174},"2025-11-30",{"date":229,"score":106,"percentile":230},"2025-12-01",0.98899,{"date":232,"score":106,"percentile":233},"2025-12-02",0.98901,{"date":235,"score":106,"percentile":233},"2025-12-03",{"date":237,"score":106,"percentile":221},"2025-12-04",{"date":239,"score":106,"percentile":168},"2025-12-05",{"date":241,"score":106,"percentile":168},"2025-12-06",{"date":243,"score":106,"percentile":168},"2025-12-07",{"date":245,"score":106,"percentile":168},"2025-12-08",{"date":247,"score":106,"percentile":165},"2025-12-09",{"date":249,"score":106,"percentile":250},"2025-12-10",0.98892,{"date":252,"score":106,"percentile":253},"2025-12-11",0.98893,{"date":255,"score":106,"percentile":256},"2025-12-12",0.98894,{"date":258,"score":106,"percentile":256},"2025-12-13",{"date":260,"score":106,"percentile":261},"2025-12-14",0.98895,{"date":263,"score":106,"percentile":256},"2025-12-15",{"date":265,"score":106,"percentile":261},"2025-12-16",{"date":267,"score":106,"percentile":261},"2025-12-17",{"date":269,"score":106,"percentile":256},"2025-12-18",{"date":271,"score":106,"percentile":253},"2025-12-19",{"date":273,"score":106,"percentile":256},"2025-12-20",{"date":275,"score":106,"percentile":256},"2025-12-21",{"date":277,"score":106,"percentile":253},"2025-12-22",{"date":279,"score":106,"percentile":261},"2025-12-23",{"date":281,"score":106,"percentile":282},"2025-12-24",0.98896,{"date":284,"score":106,"percentile":285},"2025-12-25",0.98897,{"date":287,"score":106,"percentile":282},"2025-12-26",{"date":289,"score":106,"percentile":290},"2025-12-27",0.98904,{"date":292,"score":106,"percentile":285},"2025-12-28",{"date":294,"score":106,"percentile":295},"2025-12-29",0.98898,{"date":297,"score":106,"percentile":295},"2025-12-30",{"date":299,"score":106,"percentile":230},"2025-12-31",{"date":301,"score":106,"percentile":302},"2026-01-01",0.98913,{"date":304,"score":106,"percentile":302},"2026-01-02",{"date":306,"score":106,"percentile":307},"2026-01-03",0.98912,{"date":309,"score":106,"percentile":310},"2026-01-04",0.989,{"date":312,"score":106,"percentile":233},"2026-01-05",{"date":314,"score":106,"percentile":310},"2026-01-06",{"date":316,"score":106,"percentile":230},"2026-01-07",{"date":318,"score":106,"percentile":310},"2026-01-08",{"date":320,"score":106,"percentile":310},"2026-01-09",{"date":322,"score":106,"percentile":233},"2026-01-10",{"date":324,"score":106,"percentile":230},"2026-01-11",{"date":326,"score":106,"percentile":230},"2026-01-12",{"date":328,"score":106,"percentile":230},"2026-01-13",{"date":330,"score":106,"percentile":233},"2026-01-14",{"date":332,"score":106,"percentile":310},"2026-01-15",{"date":334,"score":106,"percentile":233},"2026-01-16",{"date":336,"score":106,"percentile":233},"2026-01-17",{"date":338,"score":106,"percentile":310},"2026-01-18",{"date":340,"score":106,"percentile":233},"2026-01-19",{"date":342,"score":106,"percentile":233},"2026-01-20",{"date":344,"score":106,"percentile":233},"2026-01-21",{"date":346,"score":106,"percentile":233},"2026-01-22",{"date":348,"score":106,"percentile":349},"2026-01-23",0.98903,{"date":351,"score":106,"percentile":349},"2026-01-24",{"date":353,"score":106,"percentile":290},"2026-01-25",{"date":355,"score":106,"percentile":290},"2026-01-26",{"date":357,"score":106,"percentile":358},"2026-01-27",0.98905,{"date":360,"score":106,"percentile":361},"2026-01-28",0.98906,{"date":363,"score":106,"percentile":364},"2026-01-29",0.98907,{"date":366,"score":106,"percentile":364},"2026-01-30",{"date":368,"score":106,"percentile":364},"2026-01-31",{"date":370,"score":106,"percentile":371},"2026-02-01",0.98916,[373],{"source":110,"cvss_v2_0":374,"cvss_v3_0":379,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":375,"baseSeverity":9,"vectorString":376,"impactScore":377,"exploitabilityScore":378},6.8,"AV:N/AC:M/Au:N/C:P/I:P/A:P",6.4,8.6,{"baseScore":108,"baseSeverity":380,"vectorString":111,"impactScore":381,"exploitabilityScore":382},"HIGH",9.8,4.6,[384,395,404,411,422,428,435,441],{"ecosystem":9,"name":385,"vendor":386,"product":387,"cpe_part":388,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":389},"debian linux","debian","debian_linux","o",[390,393],{"version":391,"is_range":51,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0","cpe",{"version":394,"is_range":51,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0",{"ecosystem":9,"name":396,"vendor":397,"product":396,"cpe_part":398,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":399},"evince","gnome","a",[400],{"version":401,"is_range":26,"range_type":392,"version_start":9,"version_start_type":9,"version_end":402,"version_end_type":403,"fixed_in":9},"lte3.24.0","3.24.0","including",{"ecosystem":9,"name":405,"vendor":406,"product":407,"cpe_part":388,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":408},"enterprise linux desktop","redhat","enterprise_linux_desktop",[409],{"version":410,"is_range":51,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0",{"ecosystem":9,"name":412,"vendor":406,"product":413,"cpe_part":388,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":414},"enterprise linux server","enterprise_linux_server",[415,416,418,420],{"version":410,"is_range":51,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":417,"is_range":51,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.4",{"version":419,"is_range":51,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.5",{"version":421,"is_range":51,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.6",{"ecosystem":9,"name":423,"vendor":406,"product":424,"cpe_part":388,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":425},"enterprise linux server aus","enterprise_linux_server_aus",[426,427],{"version":417,"is_range":51,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":421,"is_range":51,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":429,"vendor":406,"product":430,"cpe_part":388,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":431},"enterprise linux server eus","enterprise_linux_server_eus",[432,433,434],{"version":417,"is_range":51,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":419,"is_range":51,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":421,"is_range":51,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":436,"vendor":406,"product":437,"cpe_part":388,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":438},"enterprise linux server tus","enterprise_linux_server_tus",[439,440],{"version":417,"is_range":51,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":421,"is_range":51,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":442,"vendor":406,"product":443,"cpe_part":388,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":444},"enterprise linux workstation","enterprise_linux_workstation",[445],{"version":410,"is_range":51,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9}]