[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2017-15119":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":86,"aliases":87,"duplicate_of":9,"upstream":88,"downstream":89,"duplicates":106,"related":107,"reserved_at":9,"published_at":110,"modified_at":111,"state":112,"summary":113,"references_raw":122,"kevs":168,"epss":169,"epss_history":172,"metrics":433,"affected":449},"CVE-2017-15119","The Network Block Device (NBD) server in Quick Emulator (QEMU) before 2.11 is vulnerable to a denial of service issue. It could occur if a client sent large option requests, making the server waste CPU time on reading up to 4GB per request. A client could use this flaw to keep the NBD server from serving other requests, resulting in DoS.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-400","Uncontrolled Resource Consumption","The product does not properly control the allocation and maintenance of a limited resource.","weakness","Draft","Class","High",[20,24,82],{"id":21,"name":22,"techniques":23},"CAPEC-147","XML Ping of the Death",[],{"id":25,"name":26,"techniques":27},"CAPEC-227","Sustained Client Engagement",[28],{"id":29,"name":30,"tactics":31,"countermeasures":35},"T1499","Endpoint Denial of Service",[32],{"id":33,"name":34},"TA0105","Impact",[36,41,45,49,53,57,61,65,69,73,78],{"id":37,"name":38,"tactic":39},"D3-UGLPA","User Geolocation Logon Pattern Analysis",{"name":40},"Detect",{"id":42,"name":43,"tactic":44},"D3-PMAD","Protocol Metadata Anomaly Detection",{"name":40},{"id":46,"name":47,"tactic":48},"D3-CSPP","Client-server Payload Profiling",{"name":40},{"id":50,"name":51,"tactic":52},"D3-PHDURA","Per Host Download-Upload Ratio Analysis",{"name":40},{"id":54,"name":55,"tactic":56},"D3-NTSA","Network Traffic Signature Analysis",{"name":40},{"id":58,"name":59,"tactic":60},"D3-APCA","Application Protocol Command Analysis",{"name":40},{"id":62,"name":63,"tactic":64},"D3-NTCD","Network Traffic Community Deviation",{"name":40},{"id":66,"name":67,"tactic":68},"D3-RTSD","Remote Terminal Session Detection",{"name":40},{"id":70,"name":71,"tactic":72},"D3-ISVA","Inbound Session Volume Analysis",{"name":40},{"id":74,"name":75,"tactic":76},"D3-NTF","Network Traffic Filtering",{"name":77},"Isolate",{"id":79,"name":80,"tactic":81},"D3-ITF","Inbound Traffic Filtering",{"name":77},{"id":83,"name":84,"techniques":85},"CAPEC-492","Regular Expression Exponential Blowup",[],[],[],[],[90,92,94,96,98,100,102,104],{"_key":91},"SUSE-SU-2018:0762-1",{"_key":93},"SUSE-SU-2018:0831-1",{"_key":95},"UBUNTU-CVE-2017-15119",{"_key":97},"USN-3575-1",{"_key":99},"DSA-4213-1",{"_key":101},"DEBIAN-CVE-2017-15119",{"_key":103},"RHSA-2018:1104",{"_key":105},"RHSA-2018:1113",[],[108,109],{"_key":91},{"_key":93},"2018-07-27T16:00:00.000Z","2024-08-05T19:50:16.089Z","Modified",{"cisa_kev":114,"cisa_ransomware":114,"cisa_vendor":9,"epss_severity":115,"epss_score":116,"severity":117,"severity_score":118,"severity_version":119,"severity_source":120,"severity_vector":121,"severity_status":112},false,"low",0.01559,"high",8.6,"v3.0","nvd","CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",[123,131,136,142,148,154,159,163],{"url":124,"sources":125,"tags":127},"https://lists.gnu.org/archive/html/qemu-devel/2017-11/msg05044.html",[126,120],"cve.org",[128,129,130],"X Refsource MISC","Mailing List","Third Party Advisory",{"url":132,"sources":133,"tags":134},"http://www.openwall.com/lists/oss-security/2017/11/28/9",[126,120],[128,129,135,130],"Patch",{"url":137,"sources":138,"tags":139},"http://www.securityfocus.com/bid/102011",[126,120],[140,141,130],"VDB Entry","X Refsource BID",{"url":143,"sources":144,"tags":145},"https://www.debian.org/security/2018/dsa-4213",[126,120],[146,147,130],"Vendor Advisory","X Refsource DEBIAN",{"url":149,"sources":150,"tags":151},"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-15119",[126,120],[152,153,135,130],"X Refsource CONFIRM","Issue Tracking",{"url":155,"sources":156,"tags":157},"https://access.redhat.com/errata/RHSA-2018:1104",[126,120],[146,158,130],"X Refsource REDHAT",{"url":160,"sources":161,"tags":162},"https://access.redhat.com/errata/RHSA-2018:1113",[126,120],[146,158,130],{"url":164,"sources":165,"tags":166},"https://usn.ubuntu.com/3575-1/",[126,120],[146,167,130],"X Refsource UBUNTU",[],{"date":170,"score":116,"percentile":171},"2026-06-04",0.81804,[173,177,180,183,186,189,192,195,198,201,204,207,210,212,215,218,221,224,227,230,233,236,239,242,245,248,251,254,257,260,263,266,269,271,274,277,280,283,286,289,292,295,298,301,304,307,310,312,315,317,320,323,326,328,332,335,338,341,344,347,350,353,356,359,361,364,367,370,373,375,377,379,382,385,388,391,394,397,400,402,405,408,411,414,417,420,423,425,428,430],{"date":174,"score":175,"percentile":176},"2025-11-04",0.0155,0.80792,{"date":178,"score":175,"percentile":179},"2025-11-05",0.80794,{"date":181,"score":175,"percentile":182},"2025-11-06",0.80795,{"date":184,"score":175,"percentile":185},"2025-11-07",0.80806,{"date":187,"score":175,"percentile":188},"2025-11-08",0.80814,{"date":190,"score":175,"percentile":191},"2025-11-09",0.8081,{"date":193,"score":175,"percentile":194},"2025-11-10",0.80805,{"date":196,"score":175,"percentile":197},"2025-11-11",0.80807,{"date":199,"score":175,"percentile":200},"2025-11-12",0.8082,{"date":202,"score":175,"percentile":203},"2025-11-13",0.80826,{"date":205,"score":175,"percentile":206},"2025-11-14",0.80832,{"date":208,"score":175,"percentile":209},"2025-11-15",0.80827,{"date":211,"score":175,"percentile":209},"2025-11-16",{"date":213,"score":175,"percentile":214},"2025-11-17",0.80824,{"date":216,"score":175,"percentile":217},"2025-11-18",0.79852,{"date":219,"score":175,"percentile":220},"2025-11-19",0.79857,{"date":222,"score":175,"percentile":223},"2025-11-20",0.79863,{"date":225,"score":175,"percentile":226},"2025-11-21",0.80843,{"date":228,"score":175,"percentile":229},"2025-11-22",0.80845,{"date":231,"score":175,"percentile":232},"2025-11-23",0.80835,{"date":234,"score":175,"percentile":235},"2025-11-24",0.80837,{"date":237,"score":175,"percentile":238},"2025-11-25",0.8084,{"date":240,"score":175,"percentile":241},"2025-11-26",0.80842,{"date":243,"score":175,"percentile":244},"2025-11-27",0.80847,{"date":246,"score":175,"percentile":247},"2025-11-28",0.80839,{"date":249,"score":175,"percentile":250},"2025-11-29",0.80844,{"date":252,"score":175,"percentile":253},"2025-11-30",0.80849,{"date":255,"score":175,"percentile":256},"2025-12-01",0.80935,{"date":258,"score":175,"percentile":259},"2025-12-02",0.8094,{"date":261,"score":175,"percentile":262},"2025-12-03",0.80939,{"date":264,"score":175,"percentile":265},"2025-12-04",0.80854,{"date":267,"score":175,"percentile":268},"2025-12-05",0.80862,{"date":270,"score":175,"percentile":268},"2025-12-06",{"date":272,"score":175,"percentile":273},"2025-12-07",0.80861,{"date":275,"score":175,"percentile":276},"2025-12-08",0.80864,{"date":278,"score":175,"percentile":279},"2025-12-09",0.80879,{"date":281,"score":175,"percentile":282},"2025-12-10",0.80904,{"date":284,"score":175,"percentile":285},"2025-12-11",0.80916,{"date":287,"score":175,"percentile":288},"2025-12-12",0.8093,{"date":290,"score":175,"percentile":291},"2025-12-13",0.80929,{"date":293,"score":175,"percentile":294},"2025-12-14",0.80927,{"date":296,"score":175,"percentile":297},"2025-12-15",0.80924,{"date":299,"score":175,"percentile":300},"2025-12-16",0.80934,{"date":302,"score":175,"percentile":303},"2025-12-17",0.80942,{"date":305,"score":175,"percentile":306},"2025-12-18",0.80961,{"date":308,"score":175,"percentile":309},"2025-12-19",0.80967,{"date":311,"score":175,"percentile":306},"2025-12-20",{"date":313,"score":175,"percentile":314},"2025-12-21",0.80955,{"date":316,"score":175,"percentile":314},"2025-12-22",{"date":318,"score":175,"percentile":319},"2025-12-23",0.80959,{"date":321,"score":175,"percentile":322},"2025-12-24",0.80972,{"date":324,"score":175,"percentile":325},"2025-12-25",0.80989,{"date":327,"score":175,"percentile":325},"2025-12-26",{"date":329,"score":330,"percentile":331},"2025-12-27",0.01766,0.8221,{"date":333,"score":175,"percentile":334},"2025-12-28",0.80976,{"date":336,"score":175,"percentile":337},"2025-12-29",0.80973,{"date":339,"score":175,"percentile":340},"2025-12-30",0.8098,{"date":342,"score":175,"percentile":343},"2025-12-31",0.80994,{"date":345,"score":175,"percentile":346},"2026-01-01",0.81073,{"date":348,"score":175,"percentile":349},"2026-01-02",0.81069,{"date":351,"score":175,"percentile":352},"2026-01-03",0.81063,{"date":354,"score":175,"percentile":355},"2026-01-04",0.80974,{"date":357,"score":175,"percentile":358},"2026-01-05",0.8097,{"date":360,"score":175,"percentile":355},"2026-01-06",{"date":362,"score":175,"percentile":363},"2026-01-07",0.80977,{"date":365,"score":175,"percentile":366},"2026-01-08",0.80986,{"date":368,"score":175,"percentile":369},"2026-01-09",0.80987,{"date":371,"score":175,"percentile":372},"2026-01-10",0.80988,{"date":374,"score":175,"percentile":340},"2026-01-11",{"date":376,"score":175,"percentile":337},"2026-01-12",{"date":378,"score":175,"percentile":358},"2026-01-13",{"date":380,"score":175,"percentile":381},"2026-01-14",0.80991,{"date":383,"score":175,"percentile":384},"2026-01-15",0.80992,{"date":386,"score":175,"percentile":387},"2026-01-16",0.81001,{"date":389,"score":175,"percentile":390},"2026-01-17",0.81009,{"date":392,"score":175,"percentile":393},"2026-01-18",0.80999,{"date":395,"score":175,"percentile":396},"2026-01-19",0.80993,{"date":398,"score":175,"percentile":399},"2026-01-20",0.80995,{"date":401,"score":175,"percentile":387},"2026-01-21",{"date":403,"score":175,"percentile":404},"2026-01-22",0.8101,{"date":406,"score":175,"percentile":407},"2026-01-23",0.81034,{"date":409,"score":175,"percentile":410},"2026-01-24",0.81041,{"date":412,"score":175,"percentile":413},"2026-01-25",0.81035,{"date":415,"score":175,"percentile":416},"2026-01-26",0.81036,{"date":418,"score":175,"percentile":419},"2026-01-27",0.81039,{"date":421,"score":175,"percentile":422},"2026-01-28",0.81038,{"date":424,"score":175,"percentile":407},"2026-01-29",{"date":426,"score":175,"percentile":427},"2026-01-30",0.81032,{"date":429,"score":175,"percentile":419},"2026-01-31",{"date":431,"score":175,"percentile":432},"2026-02-01",0.81124,[434,441],{"source":126,"cvss_v2_0":9,"cvss_v3_0":435,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":436,"baseSeverity":437,"vectorString":438,"impactScore":439,"exploitabilityScore":440},5.8,"MEDIUM","CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L",2.3,10,{"source":120,"cvss_v2_0":442,"cvss_v3_0":446,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":443,"baseSeverity":9,"vectorString":444,"impactScore":445,"exploitabilityScore":440},5,"AV:N/AC:L/Au:N/C:N/I:N/A:P",2.9,{"baseScore":118,"baseSeverity":447,"vectorString":121,"impactScore":448,"exploitabilityScore":440},"HIGH",6.7,[450,463,470,483],{"ecosystem":9,"name":451,"vendor":452,"product":453,"cpe_part":454,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":455},"ubuntu linux","canonical","ubuntu_linux","o",[456,459,461],{"version":457,"is_range":114,"range_type":458,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"14.04","cpe",{"version":460,"is_range":114,"range_type":458,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"16.04",{"version":462,"is_range":114,"range_type":458,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"17.10",{"ecosystem":9,"name":464,"vendor":465,"product":466,"cpe_part":454,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":467},"debian linux","debian","debian_linux",[468],{"version":469,"is_range":114,"range_type":458,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0",{"ecosystem":9,"name":471,"vendor":471,"product":471,"cpe_part":472,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":473},"qemu","a",[474,479],{"version":475,"is_range":476,"range_type":458,"version_start":9,"version_start_type":9,"version_end":477,"version_end_type":478,"fixed_in":9},"lt2.11.0",true,"2.11.0","excluding",{"version":480,"is_range":114,"range_type":126,"version_start":481,"version_start_type":482,"version_end":481,"version_end_type":482,"fixed_in":9},"2.1.1","2.11","including",{"ecosystem":9,"name":484,"vendor":485,"product":484,"cpe_part":472,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":486},"virtualization","redhat",[487],{"version":488,"is_range":114,"range_type":458,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0"]