[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2017-16939":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":20,"aliases":43,"duplicate_of":9,"upstream":44,"downstream":45,"duplicates":262,"related":263,"reserved_at":9,"published_at":357,"modified_at":358,"state":359,"summary":360,"references_raw":368,"kevs":439,"epss":440,"epss_history":443,"metrics":699,"affected":710},"CVE-2017-16939","The XFRM dump policy implementation in net/xfrm/xfrm_user.c in the Linux kernel before 4.13.11 allows local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM_MSG_GETPOLICY Netlink messages.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-416","Use After Free","The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory \"belongs\" to the code that operates on the new pointer.","weakness","Stable","Variant","High",[],[21,30],{"_key":22,"name":23,"source":24,"url":25,"maturity":26,"reliability_score":27,"verified":28,"type":9,"platforms":29,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_4468D7DCE2D79BD2","Exploit Reference (blogs.securiteam.com)","reference","https://blogs.securiteam.com/index.php/archives/3535","unknown",0.2,false,[],{"_key":31,"name":32,"source":33,"url":34,"maturity":35,"reliability_score":36,"verified":28,"type":37,"platforms":38,"requires_auth":9,"exploitdb":40,"metasploit":9},"44049","Linux Kernel (Ubuntu 17.04) - 'XFRM' Local Privilege Escalation","exploit-database","https://www.exploit-db.com/exploits/44049","poc",0.5,"local",[39],"linux",{"verified":28,"type":37,"platform":39,"file":41,"codes":42},"exploits/linux/local/44049.md",[7],[],[],[46,48,50,52,54,56,58,60,62,64,66,68,70,72,74,76,78,80,82,84,86,88,90,92,94,96,98,100,102,104,106,108,110,112,114,116,118,120,122,124,126,128,130,132,134,136,138,140,142,144,146,148,150,152,154,156,158,160,162,164,166,168,170,172,174,176,178,180,182,184,186,188,190,192,194,196,198,200,202,204,206,208,210,212,214,216,218,220,222,224,226,228,230,232,234,236,238,240,242,244,246,248,250,252,254,256,258,260],{"_key":47},"SUSE-SU-2017:3308-1",{"_key":49},"SUSE-SU-2017:3310-1",{"_key":51},"SUSE-SU-2017:3338-1",{"_key":53},"SUSE-SU-2018:0239-1",{"_key":55},"SUSE-SU-2018:0278-1",{"_key":57},"SUSE-SU-2018:0346-1",{"_key":59},"SUSE-SU-2017:3210-1",{"_key":61},"SUSE-SU-2017:3225-1",{"_key":63},"SUSE-SU-2017:3226-1",{"_key":65},"SUSE-SU-2017:3249-1",{"_key":67},"SUSE-SU-2017:3284-1",{"_key":69},"SUSE-SU-2017:3285-1",{"_key":71},"SUSE-SU-2017:3286-1",{"_key":73},"SUSE-SU-2017:3287-1",{"_key":75},"SUSE-SU-2017:3288-1",{"_key":77},"SUSE-SU-2017:3289-1",{"_key":79},"SUSE-SU-2017:3290-1",{"_key":81},"SUSE-SU-2017:3291-1",{"_key":83},"SUSE-SU-2017:3292-1",{"_key":85},"SUSE-SU-2017:3293-1",{"_key":87},"SUSE-SU-2017:3295-1",{"_key":89},"SUSE-SU-2017:3296-1",{"_key":91},"SUSE-SU-2017:3297-1",{"_key":93},"SUSE-SU-2017:3299-1",{"_key":95},"SUSE-SU-2017:3300-1",{"_key":97},"SUSE-SU-2017:3301-1",{"_key":99},"SUSE-SU-2017:3302-1",{"_key":101},"SUSE-SU-2017:3303-1",{"_key":103},"SUSE-SU-2017:3304-1",{"_key":105},"SUSE-SU-2017:3305-1",{"_key":107},"SUSE-SU-2017:3306-1",{"_key":109},"SUSE-SU-2017:3307-1",{"_key":111},"SUSE-SU-2017:3309-1",{"_key":113},"SUSE-SU-2017:3312-1",{"_key":115},"SUSE-SU-2017:3313-1",{"_key":117},"SUSE-SU-2017:3314-1",{"_key":119},"SUSE-SU-2017:3316-1",{"_key":121},"SUSE-SU-2017:3317-1",{"_key":123},"SUSE-SU-2017:3318-1",{"_key":125},"SUSE-SU-2017:3319-1",{"_key":127},"SUSE-SU-2017:3320-1",{"_key":129},"SUSE-SU-2017:3321-1",{"_key":131},"SUSE-SU-2017:3322-1",{"_key":133},"SUSE-SU-2017:3323-1",{"_key":135},"SUSE-SU-2017:3324-1",{"_key":137},"SUSE-SU-2017:3332-1",{"_key":139},"SUSE-SU-2017:3336-1",{"_key":141},"SUSE-SU-2017:3337-1",{"_key":143},"SUSE-SU-2017:3340-1",{"_key":145},"SUSE-SU-2018:0011-1",{"_key":147},"SUSE-SU-2018:0040-1",{"_key":149},"SUSE-SU-2018:0180-1",{"_key":151},"SUSE-SU-2018:0213-1",{"_key":153},"SUSE-SU-2018:0237-1",{"_key":155},"SUSE-SU-2018:0238-1",{"_key":157},"SUSE-SU-2018:0240-1",{"_key":159},"SUSE-SU-2018:0241-1",{"_key":161},"SUSE-SU-2018:0242-1",{"_key":163},"SUSE-SU-2018:0244-1",{"_key":165},"SUSE-SU-2018:0245-1",{"_key":167},"SUSE-SU-2018:0249-1",{"_key":169},"SUSE-SU-2018:0250-1",{"_key":171},"SUSE-SU-2018:0251-1",{"_key":173},"SUSE-SU-2018:0252-1",{"_key":175},"SUSE-SU-2018:0253-1",{"_key":177},"SUSE-SU-2018:0265-1",{"_key":179},"SUSE-SU-2018:0266-1",{"_key":181},"SUSE-SU-2018:0268-1",{"_key":183},"SUSE-SU-2018:0269-1",{"_key":185},"SUSE-SU-2018:0270-1",{"_key":187},"SUSE-SU-2018:0271-1",{"_key":189},"SUSE-SU-2018:0272-1",{"_key":191},"SUSE-SU-2018:0273-1",{"_key":193},"SUSE-SU-2018:0274-1",{"_key":195},"SUSE-SU-2018:0275-1",{"_key":197},"SUSE-SU-2018:0276-1",{"_key":199},"SUSE-SU-2018:0277-1",{"_key":201},"SUSE-SU-2018:0280-1",{"_key":203},"SUSE-SU-2018:0281-1",{"_key":205},"SUSE-SU-2018:0282-1",{"_key":207},"SUSE-SU-2018:0296-1",{"_key":209},"SUSE-SU-2018:0297-1",{"_key":211},"SUSE-SU-2018:0340-1",{"_key":213},"SUSE-SU-2018:0345-1",{"_key":215},"SUSE-SU-2018:0347-1",{"_key":217},"SUSE-SU-2019:0148-1",{"_key":219},"SUSE-SU-2019:0320-1",{"_key":221},"USN-3507-2",{"_key":223},"USN-3508-2",{"_key":225},"USN-3509-2",{"_key":227},"USN-3511-1",{"_key":229},"DLA-1200-1",{"_key":231},"DSA-4082-1",{"_key":233},"MGASA-2017-0463",{"_key":235},"MGASA-2017-0466",{"_key":237},"MGASA-2017-0467",{"_key":239},"MGASA-2018-0062",{"_key":241},"MGASA-2018-0063",{"_key":243},"MGASA-2018-0064",{"_key":245},"UBUNTU-CVE-2017-16939",{"_key":247},"USN-3509-1",{"_key":249},"USN-3510-1",{"_key":251},"DEBIAN-CVE-2017-16939",{"_key":253},"RHSA-2018:1318",{"_key":255},"RHSA-2018:1355",{"_key":257},"RHSA-2018:0654",{"_key":259},"RHSA-2019:1170",{"_key":261},"RHSA-2019:1190",[],[264,265,266,267,268,269,270,271,272,273,274,275,276,277,278,279,280,281,282,283,284,285,286,287,288,289,290,291,292,293,294,295,296,297,298,299,300,301,302,303,304,305,306,307,308,309,310,311,312,313,314,315,316,317,318,319,320,321,322,323,324,325,326,327,328,329,330,331,332,333,334,335,336,337,338,339,340,341,342,343,344,345,346,347,348,349,350,351,352,353,354,355,356],{"_key":47},{"_key":49},{"_key":51},{"_key":53},{"_key":55},{"_key":57},{"_key":59},{"_key":61},{"_key":63},{"_key":65},{"_key":67},{"_key":69},{"_key":71},{"_key":73},{"_key":75},{"_key":77},{"_key":79},{"_key":81},{"_key":83},{"_key":85},{"_key":87},{"_key":89},{"_key":91},{"_key":93},{"_key":95},{"_key":97},{"_key":99},{"_key":101},{"_key":103},{"_key":105},{"_key":107},{"_key":109},{"_key":111},{"_key":113},{"_key":115},{"_key":117},{"_key":119},{"_key":121},{"_key":123},{"_key":125},{"_key":127},{"_key":129},{"_key":131},{"_key":133},{"_key":135},{"_key":137},{"_key":139},{"_key":141},{"_key":143},{"_key":145},{"_key":147},{"_key":149},{"_key":151},{"_key":153},{"_key":155},{"_key":157},{"_key":159},{"_key":161},{"_key":163},{"_key":165},{"_key":167},{"_key":169},{"_key":171},{"_key":173},{"_key":175},{"_key":177},{"_key":179},{"_key":181},{"_key":183},{"_key":185},{"_key":187},{"_key":189},{"_key":191},{"_key":193},{"_key":195},{"_key":197},{"_key":199},{"_key":201},{"_key":203},{"_key":205},{"_key":207},{"_key":209},{"_key":211},{"_key":213},{"_key":215},{"_key":217},{"_key":219},{"_key":233},{"_key":235},{"_key":237},{"_key":239},{"_key":241},{"_key":243},"2017-11-24T10:00:00.000Z","2024-08-05T20:43:59.514Z","Modified",{"cisa_kev":28,"cisa_ransomware":28,"cisa_vendor":9,"epss_severity":361,"epss_score":362,"severity":363,"severity_score":364,"severity_version":365,"severity_source":366,"severity_vector":367,"severity_status":359},"medium",0.10155,"high",7.8,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",[369,377,383,388,394,399,403,407,412,416,422,426,431,435],{"url":370,"sources":371,"tags":373},"https://www.debian.org/security/2018/dsa-4082",[372,366],"cve.org",[374,375,376],"Vendor Advisory","X Refsource DEBIAN","Third Party Advisory",{"url":378,"sources":379,"tags":380},"https://lists.debian.org/debian-lts-announce/2017/12/msg00004.html",[372,366],[381,382,376],"Mailing List","X Refsource MLIST",{"url":384,"sources":385,"tags":386},"http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00007.html",[372,366],[374,387,381,376],"X Refsource SUSE",{"url":389,"sources":390,"tags":391},"https://bugzilla.suse.com/show_bug.cgi?id=1069702",[372,366],[392,393,376],"X Refsource MISC","Issue Tracking",{"url":395,"sources":396,"tags":397},"https://github.com/torvalds/linux/commit/1137b5e2529a8f5ca8ee709288ecba3e68044df2",[372,366],[392,398,376],"Patch",{"url":400,"sources":401,"tags":402},"http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.11",[372,366],[392,398,374],{"url":404,"sources":405,"tags":406},"http://seclists.org/fulldisclosure/2017/Nov/40",[372,366],[392,381,376],{"url":408,"sources":409,"tags":410},"https://access.redhat.com/errata/RHSA-2018:1355",[372,366],[374,411,376],"X Refsource REDHAT",{"url":413,"sources":414,"tags":415},"https://access.redhat.com/errata/RHSA-2018:1318",[372,366],[374,411,376],{"url":417,"sources":418,"tags":419},"http://www.securityfocus.com/bid/101954",[372,366],[420,421,376],"VDB Entry","X Refsource BID",{"url":25,"sources":423,"tags":424},[372,366],[392,425,398,376],"Exploit",{"url":427,"sources":428,"tags":429},"http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=1137b5e2529a8f5ca8ee709288ecba3e68044df2",[372,366],[392,398,430],"Technical Description",{"url":432,"sources":433,"tags":434},"https://access.redhat.com/errata/RHSA-2019:1170",[372,366],[374,411,376],{"url":436,"sources":437,"tags":438},"https://access.redhat.com/errata/RHSA-2019:1190",[372,366],[374,411,376],[],{"date":441,"score":362,"percentile":442},"2026-06-03",0.93246,[444,448,450,453,456,459,462,464,467,470,473,476,479,482,485,488,491,494,497,500,503,506,509,512,516,519,522,525,528,531,534,537,540,543,545,548,551,554,557,560,563,566,568,571,574,577,580,582,585,588,591,594,597,600,603,606,609,612,615,618,621,624,626,629,631,633,636,639,642,644,646,648,651,653,656,659,662,665,667,670,673,676,679,682,685,687,690,692,694,696],{"date":445,"score":446,"percentile":447},"2025-11-04",0.08986,0.92242,{"date":449,"score":446,"percentile":447},"2025-11-05",{"date":451,"score":446,"percentile":452},"2025-11-06",0.92243,{"date":454,"score":446,"percentile":455},"2025-11-07",0.92246,{"date":457,"score":446,"percentile":458},"2025-11-08",0.92244,{"date":460,"score":446,"percentile":461},"2025-11-09",0.92241,{"date":463,"score":446,"percentile":447},"2025-11-10",{"date":465,"score":446,"percentile":466},"2025-11-11",0.92248,{"date":468,"score":446,"percentile":469},"2025-11-12",0.92254,{"date":471,"score":446,"percentile":472},"2025-11-13",0.92257,{"date":474,"score":446,"percentile":475},"2025-11-14",0.92259,{"date":477,"score":446,"percentile":478},"2025-11-15",0.92256,{"date":480,"score":446,"percentile":481},"2025-11-16",0.92262,{"date":483,"score":446,"percentile":484},"2025-11-17",0.92261,{"date":486,"score":446,"percentile":487},"2025-11-18",0.91764,{"date":489,"score":446,"percentile":490},"2025-11-19",0.91767,{"date":492,"score":446,"percentile":493},"2025-11-20",0.91773,{"date":495,"score":446,"percentile":496},"2025-11-21",0.92272,{"date":498,"score":446,"percentile":499},"2025-11-22",0.92271,{"date":501,"score":446,"percentile":502},"2025-11-23",0.92277,{"date":504,"score":446,"percentile":505},"2025-11-24",0.92278,{"date":507,"score":446,"percentile":508},"2025-11-25",0.9228,{"date":510,"score":446,"percentile":511},"2025-11-26",0.92279,{"date":513,"score":514,"percentile":515},"2025-11-27",0.10879,0.9309,{"date":517,"score":514,"percentile":518},"2025-11-28",0.93084,{"date":520,"score":514,"percentile":521},"2025-11-29",0.93092,{"date":523,"score":514,"percentile":524},"2025-11-30",0.93091,{"date":526,"score":514,"percentile":527},"2025-12-01",0.93138,{"date":529,"score":514,"percentile":530},"2025-12-02",0.93142,{"date":532,"score":514,"percentile":533},"2025-12-03",0.93145,{"date":535,"score":514,"percentile":536},"2025-12-04",0.93099,{"date":538,"score":514,"percentile":539},"2025-12-05",0.93102,{"date":541,"score":514,"percentile":542},"2025-12-06",0.93103,{"date":544,"score":514,"percentile":539},"2025-12-07",{"date":546,"score":514,"percentile":547},"2025-12-08",0.93106,{"date":549,"score":514,"percentile":550},"2025-12-09",0.93108,{"date":552,"score":514,"percentile":553},"2025-12-10",0.93113,{"date":555,"score":514,"percentile":556},"2025-12-11",0.93118,{"date":558,"score":514,"percentile":559},"2025-12-12",0.93122,{"date":561,"score":514,"percentile":562},"2025-12-13",0.93127,{"date":564,"score":514,"percentile":565},"2025-12-14",0.93124,{"date":567,"score":514,"percentile":562},"2025-12-15",{"date":569,"score":514,"percentile":570},"2025-12-16",0.93125,{"date":572,"score":514,"percentile":573},"2025-12-17",0.93131,{"date":575,"score":514,"percentile":576},"2025-12-18",0.93133,{"date":578,"score":514,"percentile":579},"2025-12-19",0.93135,{"date":581,"score":514,"percentile":573},"2025-12-20",{"date":583,"score":514,"percentile":584},"2025-12-21",0.93132,{"date":586,"score":514,"percentile":587},"2025-12-22",0.93141,{"date":589,"score":514,"percentile":590},"2025-12-23",0.9313,{"date":592,"score":514,"percentile":593},"2025-12-24",0.93136,{"date":595,"score":514,"percentile":596},"2025-12-25",0.93151,{"date":598,"score":514,"percentile":599},"2025-12-26",0.9315,{"date":601,"score":514,"percentile":602},"2025-12-27",0.93191,{"date":604,"score":514,"percentile":605},"2025-12-28",0.93146,{"date":607,"score":514,"percentile":608},"2025-12-29",0.93144,{"date":610,"score":514,"percentile":611},"2025-12-30",0.93147,{"date":613,"score":514,"percentile":614},"2025-12-31",0.93153,{"date":616,"score":514,"percentile":617},"2026-01-01",0.9319,{"date":619,"score":514,"percentile":620},"2026-01-02",0.93185,{"date":622,"score":514,"percentile":623},"2026-01-03",0.93184,{"date":625,"score":514,"percentile":587},"2026-01-04",{"date":627,"score":514,"percentile":628},"2026-01-05",0.93139,{"date":630,"score":514,"percentile":587},"2026-01-06",{"date":632,"score":514,"percentile":587},"2026-01-07",{"date":634,"score":514,"percentile":635},"2026-01-08",0.93143,{"date":637,"score":514,"percentile":638},"2026-01-09",0.93148,{"date":640,"score":514,"percentile":641},"2026-01-10",0.93149,{"date":643,"score":514,"percentile":638},"2026-01-11",{"date":645,"score":514,"percentile":605},"2026-01-12",{"date":647,"score":514,"percentile":533},"2026-01-13",{"date":649,"score":514,"percentile":650},"2026-01-14",0.93155,{"date":652,"score":514,"percentile":650},"2026-01-15",{"date":654,"score":514,"percentile":655},"2026-01-16",0.93159,{"date":657,"score":514,"percentile":658},"2026-01-17",0.93163,{"date":660,"score":514,"percentile":661},"2026-01-18",0.93157,{"date":663,"score":514,"percentile":664},"2026-01-19",0.93158,{"date":666,"score":514,"percentile":655},"2026-01-20",{"date":668,"score":514,"percentile":669},"2026-01-21",0.93165,{"date":671,"score":514,"percentile":672},"2026-01-22",0.93167,{"date":674,"score":514,"percentile":675},"2026-01-23",0.93173,{"date":677,"score":514,"percentile":678},"2026-01-24",0.93177,{"date":680,"score":514,"percentile":681},"2026-01-25",0.93179,{"date":683,"score":514,"percentile":684},"2026-01-26",0.93181,{"date":686,"score":514,"percentile":623},"2026-01-27",{"date":688,"score":514,"percentile":689},"2026-01-28",0.93189,{"date":691,"score":514,"percentile":689},"2026-01-29",{"date":693,"score":514,"percentile":689},"2026-01-30",{"date":695,"score":514,"percentile":602},"2026-01-31",{"date":697,"score":514,"percentile":698},"2026-02-01",0.93227,[700],{"source":366,"cvss_v2_0":701,"cvss_v3_0":9,"cvss_v3_1":706,"cvss_v4_0":9},{"baseScore":702,"baseSeverity":9,"vectorString":703,"impactScore":704,"exploitabilityScore":705},7.2,"AV:L/AC:L/Au:N/C:C/I:C/A:C",10,3.9,{"baseScore":364,"baseSeverity":707,"vectorString":367,"impactScore":708,"exploitabilityScore":709},"HIGH",9.8,4.6,[711,720],{"ecosystem":9,"name":712,"vendor":713,"product":714,"cpe_part":715,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":716},"debian linux","debian","debian_linux","o",[717],{"version":718,"is_range":28,"range_type":719,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0","cpe",{"ecosystem":9,"name":721,"vendor":39,"product":722,"cpe_part":715,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":723},"linux kernel","linux_kernel",[724,731,735,739,743,747,751],{"version":725,"is_range":726,"range_type":719,"version_start":727,"version_start_type":728,"version_end":729,"version_end_type":730,"fixed_in":9},"gte2.6.28_lt3.2.97",true,"2.6.28","including","3.2.97","excluding",{"version":732,"is_range":726,"range_type":719,"version_start":733,"version_start_type":728,"version_end":734,"version_end_type":730,"fixed_in":9},"gte3.3_lt3.16.52","3.3","3.16.52",{"version":736,"is_range":726,"range_type":719,"version_start":737,"version_start_type":728,"version_end":738,"version_end_type":730,"fixed_in":9},"gte3.17_lt3.18.86","3.17","3.18.86",{"version":740,"is_range":726,"range_type":719,"version_start":741,"version_start_type":728,"version_end":742,"version_end_type":730,"fixed_in":9},"gte3.19_lt4.1.48","3.19","4.1.48",{"version":744,"is_range":726,"range_type":719,"version_start":745,"version_start_type":728,"version_end":746,"version_end_type":730,"fixed_in":9},"gte4.2_lt4.4.104","4.2","4.4.104",{"version":748,"is_range":726,"range_type":719,"version_start":749,"version_start_type":728,"version_end":750,"version_end_type":730,"fixed_in":9},"gte4.5_lt4.9.60","4.5","4.9.60",{"version":752,"is_range":726,"range_type":719,"version_start":753,"version_start_type":728,"version_end":754,"version_end_type":730,"fixed_in":9},"gte4.10_lt4.13.11","4.10","4.13.11"]