[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2017-16995":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":68,"aliases":121,"duplicate_of":9,"upstream":122,"downstream":123,"duplicates":148,"related":149,"reserved_at":9,"published_at":155,"modified_at":156,"state":157,"summary":158,"references_raw":166,"kevs":235,"epss":236,"epss_history":239,"metrics":460,"affected":471},"CVE-2017-16995","The check_alu_op function in kernel/bpf/verifier.c in the Linux kernel through 4.4 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging incorrect sign extension.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-119","Improper Restriction of Operations within the Bounds of a Memory Buffer","The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.","weakness","Stable","Class","High",[20,24,28,32,36,40,44,48,52,56,60,64],{"id":21,"name":22,"techniques":23},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":25,"name":26,"techniques":27},"CAPEC-100","Overflow Buffers",[],{"id":29,"name":30,"techniques":31},"CAPEC-123","Buffer Manipulation",[],{"id":33,"name":34,"techniques":35},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":37,"name":38,"techniques":39},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":41,"name":42,"techniques":43},"CAPEC-42","MIME Conversion",[],{"id":45,"name":46,"techniques":47},"CAPEC-44","Overflow Binary Resource File",[],{"id":49,"name":50,"techniques":51},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":53,"name":54,"techniques":55},"CAPEC-46","Overflow Variables and Tags",[],{"id":57,"name":58,"techniques":59},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":61,"name":62,"techniques":63},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":65,"name":66,"techniques":67},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],[69,83,91,102],{"_key":70,"name":71,"source":72,"url":73,"maturity":74,"reliability_score":75,"verified":76,"type":77,"platforms":78,"requires_auth":9,"exploitdb":80,"metasploit":9},"45058","Linux - BPF Sign Extension Local Privilege Escalation (Metasploit)","exploit-database","https://www.exploit-db.com/exploits/45058","weaponized",0.8,true,"local",[79],"linux",{"verified":76,"type":77,"platform":79,"file":81,"codes":82},"exploits/linux/local/45058.rb",[7],{"_key":84,"name":85,"source":72,"url":86,"maturity":74,"reliability_score":75,"verified":76,"type":77,"platforms":87,"requires_auth":9,"exploitdb":88,"metasploit":9},"45010","Linux Kernel \u003C 4.13.9 (Ubuntu 16.04 / Fedora 27) - Local Privilege Escalation","https://www.exploit-db.com/exploits/45010",[79],{"verified":76,"type":77,"platform":79,"file":89,"codes":90},"exploits/linux/local/45010.c",[7],{"_key":92,"name":93,"source":72,"url":94,"maturity":95,"reliability_score":96,"verified":97,"type":77,"platforms":98,"requires_auth":9,"exploitdb":99,"metasploit":9},"44298","Linux Kernel \u003C 4.4.0-116 (Ubuntu 16.04.4) - Local Privilege Escalation","https://www.exploit-db.com/exploits/44298","poc",0.5,false,[79],{"verified":97,"type":77,"platform":79,"file":100,"codes":101},"exploits/linux/local/44298.c",[7],{"_key":103,"name":104,"source":105,"url":106,"maturity":74,"reliability_score":107,"verified":76,"type":108,"platforms":109,"requires_auth":97,"exploitdb":9,"metasploit":110},"MSF_EXPLOIT_LINUX_LOCAL_BPF_SIGN_EXTENSION_PRIV_ESC","Linux BPF Sign Extension Local Privilege Escalation","metasploit","https://github.com/rapid7/metasploit-framework/blob/master/modules/exploit/linux/local/bpf_sign_extension_priv_esc.rb",0.8333333333333334,"remote",[],{"fullname":111,"rank":112,"rank_name":113,"post_auth":97,"check":76,"notes":114},"exploit/linux/local/bpf_sign_extension_priv_esc",500,"great",{"Stability":115,"SideEffects":117,"Reliability":119},[116],"crash-os-down",[118],"unknown-side-effects",[120],"repeatable-session",[],[],[124,126,128,130,132,134,136,138,140,142,144,146],{"_key":125},"USN-3619-2",{"_key":127},"USN-3633-1",{"_key":129},"OPENSUSE-SU-2024:10728-1",{"_key":131},"OPENSUSE-SU-2024:13704-1",{"_key":133},"DSA-4073-1",{"_key":135},"MGASA-2018-0062",{"_key":137},"MGASA-2018-0063",{"_key":139},"MGASA-2018-0064",{"_key":141},"UBUNTU-CVE-2017-16995",{"_key":143},"USN-3619-1",{"_key":145},"DEBIAN-CVE-2017-16995",{"_key":147},"USN-3523-2",[],[150,151,152,153,154],{"_key":129},{"_key":131},{"_key":135},{"_key":137},{"_key":139},"2017-12-22T10:00:00.000Z","2024-08-05T20:43:57.863Z","Modified",{"cisa_kev":97,"cisa_ransomware":97,"cisa_vendor":9,"epss_severity":159,"epss_score":160,"severity":161,"severity_score":162,"severity_version":163,"severity_source":164,"severity_vector":165,"severity_status":157},"critical",0.84048,"high",7.8,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",[167,176,181,187,191,195,200,204,208,213,217,222,226,230],{"url":168,"sources":169,"tags":171},"https://www.exploit-db.com/exploits/45058/",[170,164],"cve.org",[172,173,174,175],"Exploit","X Refsource EXPLOIT DB","Third Party Advisory","VDB Entry",{"url":177,"sources":178,"tags":179},"https://github.com/torvalds/linux/commit/95a762e2c8c942780948091f8f2a4f32fce1ac6f",[170,164],[180,174],"X Refsource MISC",{"url":182,"sources":183,"tags":184},"https://usn.ubuntu.com/3619-2/",[170,164],[185,186,174],"Vendor Advisory","X Refsource UBUNTU",{"url":188,"sources":189,"tags":190},"https://bugs.chromium.org/p/project-zero/issues/detail?id=1454",[170,164],[180,174],{"url":192,"sources":193,"tags":194},"https://usn.ubuntu.com/3633-1/",[170,164],[185,186,174],{"url":196,"sources":197,"tags":198},"http://www.securityfocus.com/bid/102288",[170,164],[175,199,174],"X Refsource BID",{"url":201,"sources":202,"tags":203},"https://www.exploit-db.com/exploits/44298/",[170,164],[172,173,174,175],{"url":205,"sources":206,"tags":207},"https://www.exploit-db.com/exploits/45010/",[170,164],[172,173,174,175],{"url":209,"sources":210,"tags":211},"https://www.debian.org/security/2017/dsa-4073",[170,164],[185,212,174],"X Refsource DEBIAN",{"url":214,"sources":215,"tags":216},"https://usn.ubuntu.com/usn/usn-3523-2/",[170,164],[185,186,174],{"url":218,"sources":219,"tags":220},"http://openwall.com/lists/oss-security/2017/12/21/2",[170,164],[180,221,174],"Mailing List",{"url":223,"sources":224,"tags":225},"https://usn.ubuntu.com/3619-1/",[170,164],[185,186,174],{"url":227,"sources":228,"tags":229},"http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=95a762e2c8c942780948091f8f2a4f32fce1ac6f",[170,164],[180,185],{"url":231,"sources":232,"tags":233},"https://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/?id=a6132276ab5dcc38b3299082efeb25b948263adb",[170,164],[234,185],"X Refsource CONFIRM",[],{"date":237,"score":160,"percentile":238},"2026-06-03",0.9932,[240,244,247,249,252,255,257,259,261,263,265,267,269,271,274,277,280,282,284,286,288,290,292,294,297,299,301,303,307,309,312,315,318,320,323,326,328,331,334,336,338,340,343,345,348,351,353,355,357,360,363,365,367,371,374,376,379,381,384,387,389,391,393,396,400,402,405,407,410,412,414,416,418,420,423,427,430,432,434,436,438,441,443,445,447,449,451,453,455,457],{"date":241,"score":242,"percentile":243},"2025-11-04",0.82457,0.99179,{"date":245,"score":242,"percentile":246},"2025-11-05",0.99178,{"date":248,"score":242,"percentile":246},"2025-11-06",{"date":250,"score":242,"percentile":251},"2025-11-07",0.99176,{"date":253,"score":242,"percentile":254},"2025-11-08",0.99177,{"date":256,"score":242,"percentile":246},"2025-11-09",{"date":258,"score":242,"percentile":254},"2025-11-10",{"date":260,"score":242,"percentile":251},"2025-11-11",{"date":262,"score":242,"percentile":254},"2025-11-12",{"date":264,"score":242,"percentile":254},"2025-11-13",{"date":266,"score":242,"percentile":251},"2025-11-14",{"date":268,"score":242,"percentile":251},"2025-11-15",{"date":270,"score":242,"percentile":251},"2025-11-16",{"date":272,"score":242,"percentile":273},"2025-11-17",0.99175,{"date":275,"score":242,"percentile":276},"2025-11-18",0.99303,{"date":278,"score":242,"percentile":279},"2025-11-19",0.99304,{"date":281,"score":242,"percentile":276},"2025-11-20",{"date":283,"score":242,"percentile":246},"2025-11-21",{"date":285,"score":242,"percentile":254},"2025-11-22",{"date":287,"score":242,"percentile":254},"2025-11-23",{"date":289,"score":242,"percentile":254},"2025-11-24",{"date":291,"score":242,"percentile":246},"2025-11-25",{"date":293,"score":242,"percentile":243},"2025-11-26",{"date":295,"score":242,"percentile":296},"2025-11-27",0.9918,{"date":298,"score":242,"percentile":243},"2025-11-28",{"date":300,"score":242,"percentile":296},"2025-11-29",{"date":302,"score":242,"percentile":296},"2025-11-30",{"date":304,"score":305,"percentile":306},"2025-12-01",0.82988,0.99219,{"date":308,"score":305,"percentile":306},"2025-12-02",{"date":310,"score":305,"percentile":311},"2025-12-03",0.9922,{"date":313,"score":305,"percentile":314},"2025-12-04",0.99208,{"date":316,"score":305,"percentile":317},"2025-12-05",0.99209,{"date":319,"score":305,"percentile":317},"2025-12-06",{"date":321,"score":305,"percentile":322},"2025-12-07",0.9921,{"date":324,"score":305,"percentile":325},"2025-12-08",0.99211,{"date":327,"score":305,"percentile":325},"2025-12-09",{"date":329,"score":305,"percentile":330},"2025-12-10",0.99212,{"date":332,"score":305,"percentile":333},"2025-12-11",0.99213,{"date":335,"score":305,"percentile":330},"2025-12-12",{"date":337,"score":305,"percentile":333},"2025-12-13",{"date":339,"score":305,"percentile":333},"2025-12-14",{"date":341,"score":305,"percentile":342},"2025-12-15",0.99214,{"date":344,"score":305,"percentile":342},"2025-12-16",{"date":346,"score":305,"percentile":347},"2025-12-17",0.99216,{"date":349,"score":305,"percentile":350},"2025-12-18",0.99215,{"date":352,"score":305,"percentile":350},"2025-12-19",{"date":354,"score":305,"percentile":347},"2025-12-20",{"date":356,"score":305,"percentile":347},"2025-12-21",{"date":358,"score":305,"percentile":359},"2025-12-22",0.99218,{"date":361,"score":305,"percentile":362},"2025-12-23",0.99217,{"date":364,"score":305,"percentile":359},"2025-12-24",{"date":366,"score":305,"percentile":306},"2025-12-25",{"date":368,"score":369,"percentile":370},"2025-12-26",0.86553,0.99383,{"date":372,"score":369,"percentile":373},"2025-12-27",0.99386,{"date":375,"score":369,"percentile":370},"2025-12-28",{"date":377,"score":369,"percentile":378},"2025-12-29",0.99384,{"date":380,"score":369,"percentile":378},"2025-12-30",{"date":382,"score":369,"percentile":383},"2025-12-31",0.99385,{"date":385,"score":369,"percentile":386},"2026-01-01",0.99401,{"date":388,"score":369,"percentile":386},"2026-01-02",{"date":390,"score":369,"percentile":386},"2026-01-03",{"date":392,"score":369,"percentile":373},"2026-01-04",{"date":394,"score":369,"percentile":395},"2026-01-05",0.99387,{"date":397,"score":398,"percentile":399},"2026-01-06",0.858,0.9935,{"date":401,"score":398,"percentile":399},"2026-01-07",{"date":403,"score":305,"percentile":404},"2026-01-08",0.99225,{"date":406,"score":305,"percentile":404},"2026-01-09",{"date":408,"score":305,"percentile":409},"2026-01-10",0.99226,{"date":411,"score":305,"percentile":404},"2026-01-11",{"date":413,"score":305,"percentile":404},"2026-01-12",{"date":415,"score":305,"percentile":404},"2026-01-13",{"date":417,"score":305,"percentile":404},"2026-01-14",{"date":419,"score":305,"percentile":409},"2026-01-15",{"date":421,"score":305,"percentile":422},"2026-01-16",0.99227,{"date":424,"score":425,"percentile":426},"2026-01-17",0.83668,0.99262,{"date":428,"score":425,"percentile":429},"2026-01-18",0.99261,{"date":431,"score":425,"percentile":426},"2026-01-19",{"date":433,"score":425,"percentile":426},"2026-01-20",{"date":435,"score":425,"percentile":426},"2026-01-21",{"date":437,"score":425,"percentile":426},"2026-01-22",{"date":439,"score":425,"percentile":440},"2026-01-23",0.99263,{"date":442,"score":425,"percentile":426},"2026-01-24",{"date":444,"score":425,"percentile":440},"2026-01-25",{"date":446,"score":425,"percentile":440},"2026-01-26",{"date":448,"score":425,"percentile":440},"2026-01-27",{"date":450,"score":425,"percentile":440},"2026-01-28",{"date":452,"score":425,"percentile":440},"2026-01-29",{"date":454,"score":425,"percentile":426},"2026-01-30",{"date":456,"score":425,"percentile":426},"2026-01-31",{"date":458,"score":425,"percentile":459},"2026-02-01",0.99273,[461],{"source":164,"cvss_v2_0":462,"cvss_v3_0":9,"cvss_v3_1":467,"cvss_v4_0":9},{"baseScore":463,"baseSeverity":9,"vectorString":464,"impactScore":465,"exploitabilityScore":466},7.2,"AV:L/AC:L/Au:N/C:C/I:C/A:C",10,3.9,{"baseScore":162,"baseSeverity":468,"vectorString":165,"impactScore":469,"exploitabilityScore":470},"HIGH",9.8,4.6,[472,483,490],{"ecosystem":9,"name":473,"vendor":474,"product":475,"cpe_part":476,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":477},"ubuntu linux","canonical","ubuntu_linux","o",[478,481],{"version":479,"is_range":97,"range_type":480,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"14.04","cpe",{"version":482,"is_range":97,"range_type":480,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"16.04",{"ecosystem":9,"name":484,"vendor":485,"product":486,"cpe_part":476,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":487},"debian linux","debian","debian_linux",[488],{"version":489,"is_range":97,"range_type":480,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0",{"ecosystem":9,"name":491,"vendor":79,"product":492,"cpe_part":476,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":493},"linux kernel","linux_kernel",[494,500],{"version":495,"is_range":76,"range_type":480,"version_start":496,"version_start_type":497,"version_end":498,"version_end_type":499,"fixed_in":9},"gte4.9_lt4.9.72","4.9","including","4.9.72","excluding",{"version":501,"is_range":76,"range_type":480,"version_start":502,"version_start_type":497,"version_end":503,"version_end_type":499,"fixed_in":9},"gte4.10_lt4.14.9","4.10","4.14.9"]