[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2017-16642":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":23,"aliases":38,"duplicate_of":9,"upstream":39,"downstream":40,"duplicates":59,"related":60,"reserved_at":9,"published_at":64,"modified_at":65,"state":66,"summary":67,"references_raw":76,"kevs":143,"epss":144,"epss_history":147,"metrics":406,"affected":416},"CVE-2017-16642","In PHP before 5.6.32, 7.x before 7.0.25, and 7.1.x before 7.1.11, an error in the date extension's timelib_meridian handling of 'front of' and 'back of' directives could be used by attackers able to supply date strings to leak information from the interpreter, related to ext/date/lib/parse_date.c out-of-bounds reads affecting the php_parse_date function. NOTE: this is a different issue than CVE-2017-11145.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-125","Out-of-bounds Read","The product reads data past the end, or before the beginning, of the intended buffer.","weakness","Draft","Base",[19],{"id":20,"name":21,"techniques":22},"CAPEC-540","Overread Buffers",[],[24],{"_key":25,"name":26,"source":27,"url":28,"maturity":29,"reliability_score":30,"verified":31,"type":32,"platforms":33,"requires_auth":9,"exploitdb":35,"metasploit":9},"43133","PHP 7.1.8 - Heap Buffer Overflow","exploit-database","https://www.exploit-db.com/exploits/43133","poc",0.8,true,"dos",[34],"multiple",{"verified":31,"type":32,"platform":34,"file":36,"codes":37},"exploits/multiple/dos/43133.php",[7],[],[],[41,43,45,47,49,51,53,55,57],{"_key":42},"SUSE-SU-2017:3237-1",{"_key":44},"SUSE-SU-2017:3277-1",{"_key":46},"SUSE-SU-2018:0003-1",{"_key":48},"DSA-4080-1",{"_key":50},"DSA-4081-1",{"_key":52},"UBUNTU-CVE-2017-16642",{"_key":54},"USN-3566-1",{"_key":56},"RHSA-2018:1296",{"_key":58},"RHSA-2019:2519",[],[61,62,63],{"_key":42},{"_key":44},{"_key":46},"2017-11-07T21:00:00.000Z","2024-08-05T20:27:04.310Z","Modified",{"cisa_kev":68,"cisa_ransomware":68,"cisa_vendor":9,"epss_severity":69,"epss_score":70,"severity":71,"severity_score":72,"severity_version":73,"severity_source":74,"severity_vector":75,"severity_status":66},false,"low",0.08257,"high",7.5,"v3.0","nvd","CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",[77,84,92,97,102,107,112,117,121,126,130,135,139],{"url":78,"sources":79,"tags":81},"https://security.netapp.com/advisory/ntap-20181123-0001/",[80,74],"cve.org",[82,83],"X Refsource CONFIRM","Third Party Advisory",{"url":85,"sources":86,"tags":87},"https://www.exploit-db.com/exploits/43133/",[80,74],[88,89,90,83,91],"Exploit","X Refsource EXPLOIT DB","Issue Tracking","VDB Entry",{"url":93,"sources":94,"tags":95},"https://bugs.php.net/bug.php?id=75055",[80,74],[82,90,96],"Vendor Advisory",{"url":98,"sources":99,"tags":100},"https://access.redhat.com/errata/RHSA-2018:1296",[80,74],[96,101,83],"X Refsource REDHAT",{"url":103,"sources":104,"tags":105},"http://php.net/ChangeLog-5.php",[80,74],[82,90,106,96],"Release Notes",{"url":108,"sources":109,"tags":110},"http://www.securityfocus.com/bid/101745",[80,74],[91,111,83],"X Refsource BID",{"url":113,"sources":114,"tags":115},"https://www.debian.org/security/2018/dsa-4081",[80,74],[96,116,83],"X Refsource DEBIAN",{"url":118,"sources":119,"tags":120},"https://www.debian.org/security/2018/dsa-4080",[80,74],[96,116,83],{"url":122,"sources":123,"tags":124},"https://usn.ubuntu.com/3566-1/",[80,74],[96,125,83],"X Refsource UBUNTU",{"url":127,"sources":128,"tags":129},"http://php.net/ChangeLog-7.php",[80,74],[82,90,106,96],{"url":131,"sources":132,"tags":133},"https://github.com/derickr/timelib/commit/aa9156006e88565e1f1a5f7cc088b18322d57536",[80,74],[82,90,134,83],"Patch",{"url":136,"sources":137,"tags":138},"https://github.com/php/php-src/commit/5c0455bf2c8cd3c25401407f158e820aa3b239e1",[80,74],[82,90,134,83],{"url":140,"sources":141,"tags":142},"https://access.redhat.com/errata/RHSA-2019:2519",[80,74],[96,101],[],{"date":145,"score":70,"percentile":146},"2026-06-04",0.92375,[148,152,155,158,161,164,166,168,171,174,177,180,182,185,188,192,195,198,201,204,207,210,213,216,219,222,225,228,232,235,238,241,244,247,250,252,255,258,261,264,267,270,273,276,279,282,285,288,291,293,296,299,302,305,309,312,314,317,320,323,326,328,331,334,337,339,342,345,348,350,352,354,357,360,363,366,368,371,374,377,379,381,384,387,390,393,396,398,401,403],{"date":149,"score":150,"percentile":151},"2025-11-04",0.08366,0.91898,{"date":153,"score":150,"percentile":154},"2025-11-05",0.91897,{"date":156,"score":150,"percentile":157},"2025-11-06",0.91899,{"date":159,"score":150,"percentile":160},"2025-11-07",0.91902,{"date":162,"score":150,"percentile":163},"2025-11-08",0.919,{"date":165,"score":150,"percentile":157},"2025-11-09",{"date":167,"score":150,"percentile":163},"2025-11-10",{"date":169,"score":150,"percentile":170},"2025-11-11",0.91906,{"date":172,"score":150,"percentile":173},"2025-11-12",0.91911,{"date":175,"score":150,"percentile":176},"2025-11-13",0.91913,{"date":178,"score":150,"percentile":179},"2025-11-14",0.91915,{"date":181,"score":150,"percentile":173},"2025-11-15",{"date":183,"score":150,"percentile":184},"2025-11-16",0.91918,{"date":186,"score":150,"percentile":187},"2025-11-17",0.91919,{"date":189,"score":190,"percentile":191},"2025-11-18",0.08574,0.91534,{"date":193,"score":190,"percentile":194},"2025-11-19",0.91538,{"date":196,"score":190,"percentile":197},"2025-11-20",0.91544,{"date":199,"score":190,"percentile":200},"2025-11-21",0.92041,{"date":202,"score":190,"percentile":203},"2025-11-22",0.9204,{"date":205,"score":190,"percentile":206},"2025-11-23",0.92045,{"date":208,"score":190,"percentile":209},"2025-11-24",0.92046,{"date":211,"score":190,"percentile":212},"2025-11-25",0.92048,{"date":214,"score":190,"percentile":215},"2025-11-26",0.92049,{"date":217,"score":190,"percentile":218},"2025-11-27",0.92047,{"date":220,"score":190,"percentile":221},"2025-11-28",0.92039,{"date":223,"score":190,"percentile":224},"2025-11-29",0.92062,{"date":226,"score":190,"percentile":227},"2025-11-30",0.9206,{"date":229,"score":230,"percentile":231},"2025-12-01",0.10771,0.93094,{"date":233,"score":230,"percentile":234},"2025-12-02",0.93099,{"date":236,"score":230,"percentile":237},"2025-12-03",0.93102,{"date":239,"score":150,"percentile":240},"2025-12-04",0.91946,{"date":242,"score":150,"percentile":243},"2025-12-05",0.91949,{"date":245,"score":150,"percentile":246},"2025-12-06",0.91952,{"date":248,"score":150,"percentile":249},"2025-12-07",0.9195,{"date":251,"score":150,"percentile":249},"2025-12-08",{"date":253,"score":150,"percentile":254},"2025-12-09",0.91955,{"date":256,"score":150,"percentile":257},"2025-12-10",0.91964,{"date":259,"score":150,"percentile":260},"2025-12-11",0.91967,{"date":262,"score":150,"percentile":263},"2025-12-12",0.91969,{"date":265,"score":150,"percentile":266},"2025-12-13",0.9196,{"date":268,"score":150,"percentile":269},"2025-12-14",0.91957,{"date":271,"score":150,"percentile":272},"2025-12-15",0.91959,{"date":274,"score":150,"percentile":275},"2025-12-16",0.9197,{"date":277,"score":150,"percentile":278},"2025-12-17",0.91975,{"date":280,"score":150,"percentile":281},"2025-12-18",0.9198,{"date":283,"score":150,"percentile":284},"2025-12-19",0.91983,{"date":286,"score":150,"percentile":287},"2025-12-20",0.91984,{"date":289,"score":150,"percentile":290},"2025-12-21",0.91985,{"date":292,"score":150,"percentile":284},"2025-12-22",{"date":294,"score":150,"percentile":295},"2025-12-23",0.91986,{"date":297,"score":150,"percentile":298},"2025-12-24",0.91991,{"date":300,"score":150,"percentile":301},"2025-12-25",0.91995,{"date":303,"score":150,"percentile":304},"2025-12-26",0.91994,{"date":306,"score":307,"percentile":308},"2025-12-27",0.06222,0.90612,{"date":310,"score":150,"percentile":311},"2025-12-28",0.9199,{"date":313,"score":150,"percentile":295},"2025-12-29",{"date":315,"score":150,"percentile":316},"2025-12-30",0.91992,{"date":318,"score":150,"percentile":319},"2025-12-31",0.91999,{"date":321,"score":230,"percentile":322},"2026-01-01",0.93146,{"date":324,"score":230,"percentile":325},"2026-01-02",0.9314,{"date":327,"score":230,"percentile":325},"2026-01-03",{"date":329,"score":150,"percentile":330},"2026-01-04",0.92008,{"date":332,"score":150,"percentile":333},"2026-01-05",0.92007,{"date":335,"score":150,"percentile":336},"2026-01-06",0.92009,{"date":338,"score":150,"percentile":330},"2026-01-07",{"date":340,"score":150,"percentile":341},"2026-01-08",0.9201,{"date":343,"score":150,"percentile":344},"2026-01-09",0.92013,{"date":346,"score":150,"percentile":347},"2026-01-10",0.92015,{"date":349,"score":150,"percentile":330},"2026-01-11",{"date":351,"score":150,"percentile":336},"2026-01-12",{"date":353,"score":150,"percentile":336},"2026-01-13",{"date":355,"score":150,"percentile":356},"2026-01-14",0.92022,{"date":358,"score":150,"percentile":359},"2026-01-15",0.92024,{"date":361,"score":150,"percentile":362},"2026-01-16",0.92025,{"date":364,"score":150,"percentile":365},"2026-01-17",0.9203,{"date":367,"score":150,"percentile":362},"2026-01-18",{"date":369,"score":150,"percentile":370},"2026-01-19",0.92029,{"date":372,"score":150,"percentile":373},"2026-01-20",0.92031,{"date":375,"score":150,"percentile":376},"2026-01-21",0.92036,{"date":378,"score":150,"percentile":221},"2026-01-22",{"date":380,"score":150,"percentile":218},"2026-01-23",{"date":382,"score":150,"percentile":383},"2026-01-24",0.92054,{"date":385,"score":150,"percentile":386},"2026-01-25",0.92056,{"date":388,"score":150,"percentile":389},"2026-01-26",0.92058,{"date":391,"score":150,"percentile":392},"2026-01-27",0.92061,{"date":394,"score":150,"percentile":395},"2026-01-28",0.92065,{"date":397,"score":150,"percentile":395},"2026-01-29",{"date":399,"score":150,"percentile":400},"2026-01-30",0.92064,{"date":402,"score":150,"percentile":224},"2026-01-31",{"date":404,"score":230,"percentile":405},"2026-02-01",0.93187,[407],{"source":74,"cvss_v2_0":408,"cvss_v3_0":413,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":409,"baseSeverity":9,"vectorString":410,"impactScore":411,"exploitabilityScore":412},5,"AV:N/AC:L/Au:N/C:P/I:N/A:N",2.9,10,{"baseScore":72,"baseSeverity":414,"vectorString":75,"impactScore":415,"exploitabilityScore":412},"HIGH",6,[417,426,435,443,448],{"ecosystem":9,"name":418,"vendor":419,"product":420,"cpe_part":421,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":422},"ubuntu linux","canonical","ubuntu_linux","o",[423],{"version":424,"is_range":68,"range_type":425,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"14.04","cpe",{"ecosystem":9,"name":427,"vendor":428,"product":429,"cpe_part":421,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":430},"debian linux","debian","debian_linux",[431,433],{"version":432,"is_range":68,"range_type":425,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0",{"version":434,"is_range":68,"range_type":425,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0",{"ecosystem":9,"name":436,"vendor":437,"product":438,"cpe_part":439,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":440},"clustered data ontap","netapp","clustered_data_ontap","a",[441],{"version":442,"is_range":68,"range_type":425,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"na",{"ecosystem":9,"name":444,"vendor":437,"product":445,"cpe_part":439,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":446},"storage automation store","storage_automation_store",[447],{"version":442,"is_range":68,"range_type":425,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":449,"vendor":9,"product":449,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":450},"PHP",[451,455,460],{"version":452,"is_range":31,"range_type":425,"version_start":9,"version_start_type":9,"version_end":453,"version_end_type":454,"fixed_in":9},"lt5.6.32","5.6.32","excluding",{"version":456,"is_range":31,"range_type":425,"version_start":457,"version_start_type":458,"version_end":459,"version_end_type":454,"fixed_in":9},"gte7.0.0_lt7.0.25","7.0.0","including","7.0.25",{"version":461,"is_range":31,"range_type":425,"version_start":462,"version_start_type":458,"version_end":463,"version_end_type":454,"fixed_in":9},"gte7.1.0_lt7.1.11","7.1.0","7.1.11"]