[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2017-9050":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T14:55:33.319Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":34,"aliases":44,"duplicate_of":9,"upstream":45,"downstream":46,"duplicates":67,"related":68,"reserved_at":9,"published_at":74,"modified_at":75,"state":76,"summary":77,"references_raw":85,"kevs":121,"epss":122,"epss_history":125,"metrics":397,"affected":411},"CVE-2017-9050","libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a heap-based buffer over-read in the xmlDictAddString function in dict.c. This vulnerability causes programs that use libxml2, such as PHP, to crash. This vulnerability exists because of an incomplete fix for CVE-2016-1839.",null,[11,23],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-125","Out-of-bounds Read","The product reads data past the end, or before the beginning, of the intended buffer.","weakness","Draft","Base",[19],{"id":20,"name":21,"techniques":22},"CAPEC-540","Overread Buffers",[],{"_key":24,"id":24,"name":25,"description":26,"type":15,"status":16,"abstraction":27,"likelihood_of_exploit":28,"capec":29},"CWE-122","Heap-based Buffer Overflow","A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().","Variant","High",[30],{"id":31,"name":32,"techniques":33},"CAPEC-92","Forced Integer Overflow",[],[35],{"_key":36,"name":37,"source":38,"url":39,"maturity":40,"reliability_score":41,"verified":42,"type":9,"platforms":43,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_E9F80E59CAF434D8","Exploit Reference (openwall.com)","reference","http://www.openwall.com/lists/oss-security/2017/05/15/1","unknown",0.2,false,[],[],[],[47,49,51,53,55,57,59,61,63,65],{"_key":48},"SUSE-SU-2017:1454-1",{"_key":50},"SUSE-SU-2017:1538-1",{"_key":52},"SUSE-SU-2017:1557-1",{"_key":54},"SUSE-SU-2017:1587-1",{"_key":56},"DLA-1008-1",{"_key":58},"DSA-3952-1",{"_key":60},"MGASA-2018-0048",{"_key":62},"UBUNTU-CVE-2017-9050",{"_key":64},"USN-3424-1",{"_key":66},"DEBIAN-CVE-2017-9050",[],[69,70,71,72,73],{"_key":48},{"_key":50},{"_key":52},{"_key":54},{"_key":60},"2017-05-18T06:13:00.000Z","2025-12-17T22:10:56.955Z","Modified",{"cisa_kev":42,"cisa_ransomware":42,"cisa_vendor":9,"epss_severity":78,"epss_score":79,"severity":80,"severity_score":81,"severity_version":82,"severity_source":83,"severity_vector":84,"severity_status":76},"low",0.00313,"high",7.5,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",[86,94,100,105,112,117],{"url":87,"sources":88,"tags":90},"http://www.securityfocus.com/bid/98568",[83,89],"nvd",[91,92,93],"VDB Entry","X Refsource BID","Third Party Advisory",{"url":95,"sources":96,"tags":97},"http://www.debian.org/security/2017/dsa-3952",[83,89],[98,99],"Vendor Advisory","X Refsource DEBIAN",{"url":101,"sources":102,"tags":103},"https://security.gentoo.org/glsa/201711-01",[83,89],[98,104],"X Refsource GENTOO",{"url":39,"sources":106,"tags":107},[83,89],[108,109,110,111,93],"X Refsource MISC","Exploit","Mailing List","Patch",{"url":113,"sources":114,"tags":115},"https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E",[83,89],[110,116],"X Refsource MLIST",{"url":118,"sources":119,"tags":120},"https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E",[83,89],[110,116],[],{"date":123,"score":79,"percentile":124},"2026-06-04",0.54753,[126,130,133,136,139,143,147,150,153,156,159,162,166,170,173,177,180,183,186,189,192,195,198,201,204,207,210,213,216,219,222,225,228,231,234,236,239,242,245,248,251,253,256,258,261,265,268,272,275,278,281,285,288,291,294,297,300,303,306,309,312,315,318,321,324,327,330,333,336,339,342,345,348,351,354,357,359,362,365,368,371,374,377,380,382,384,386,389,392,394],{"date":127,"score":128,"percentile":129},"2025-11-04",0.00335,0.55794,{"date":131,"score":128,"percentile":132},"2025-11-05",0.55757,{"date":134,"score":128,"percentile":135},"2025-11-06",0.55767,{"date":137,"score":128,"percentile":138},"2025-11-07",0.55787,{"date":140,"score":141,"percentile":142},"2025-11-08",0.00352,0.56978,{"date":144,"score":145,"percentile":146},"2025-11-09",0.00395,0.59635,{"date":148,"score":145,"percentile":149},"2025-11-10",0.59611,{"date":151,"score":145,"percentile":152},"2025-11-11",0.59624,{"date":154,"score":145,"percentile":155},"2025-11-12",0.59649,{"date":157,"score":145,"percentile":158},"2025-11-13",0.59655,{"date":160,"score":145,"percentile":161},"2025-11-14",0.59662,{"date":163,"score":164,"percentile":165},"2025-11-15",0.00516,0.658,{"date":167,"score":168,"percentile":169},"2025-11-16",0.00359,0.57366,{"date":171,"score":168,"percentile":172},"2025-11-17",0.57363,{"date":174,"score":175,"percentile":176},"2025-11-18",0.00958,0.745,{"date":178,"score":175,"percentile":179},"2025-11-19",0.74508,{"date":181,"score":175,"percentile":182},"2025-11-20",0.74516,{"date":184,"score":168,"percentile":185},"2025-11-21",0.57381,{"date":187,"score":168,"percentile":188},"2025-11-22",0.57377,{"date":190,"score":168,"percentile":191},"2025-11-23",0.5735,{"date":193,"score":168,"percentile":194},"2025-11-24",0.57346,{"date":196,"score":168,"percentile":197},"2025-11-25",0.57348,{"date":199,"score":168,"percentile":200},"2025-11-26",0.57351,{"date":202,"score":168,"percentile":203},"2025-11-27",0.57352,{"date":205,"score":168,"percentile":206},"2025-11-28",0.57325,{"date":208,"score":168,"percentile":209},"2025-11-29",0.57312,{"date":211,"score":168,"percentile":212},"2025-11-30",0.57306,{"date":214,"score":168,"percentile":215},"2025-12-01",0.57462,{"date":217,"score":168,"percentile":218},"2025-12-02",0.57477,{"date":220,"score":168,"percentile":221},"2025-12-03",0.57475,{"date":223,"score":168,"percentile":224},"2025-12-04",0.57304,{"date":226,"score":168,"percentile":227},"2025-12-05",0.57317,{"date":229,"score":168,"percentile":230},"2025-12-06",0.57316,{"date":232,"score":168,"percentile":233},"2025-12-07",0.57314,{"date":235,"score":168,"percentile":233},"2025-12-08",{"date":237,"score":168,"percentile":238},"2025-12-09",0.57339,{"date":240,"score":168,"percentile":241},"2025-12-10",0.57394,{"date":243,"score":168,"percentile":244},"2025-12-11",0.5742,{"date":246,"score":168,"percentile":247},"2025-12-12",0.57444,{"date":249,"score":168,"percentile":250},"2025-12-13",0.57442,{"date":252,"score":168,"percentile":247},"2025-12-14",{"date":254,"score":168,"percentile":255},"2025-12-15",0.57428,{"date":257,"score":168,"percentile":250},"2025-12-16",{"date":259,"score":168,"percentile":260},"2025-12-17",0.57454,{"date":262,"score":263,"percentile":264},"2025-12-18",0.00269,0.50244,{"date":266,"score":263,"percentile":267},"2025-12-19",0.50248,{"date":269,"score":270,"percentile":271},"2025-12-20",0.00277,0.50825,{"date":273,"score":270,"percentile":274},"2025-12-21",0.50799,{"date":276,"score":270,"percentile":277},"2025-12-22",0.50778,{"date":279,"score":270,"percentile":280},"2025-12-23",0.50779,{"date":282,"score":283,"percentile":284},"2025-12-24",0.00322,0.54785,{"date":286,"score":283,"percentile":287},"2025-12-25",0.54832,{"date":289,"score":283,"percentile":290},"2025-12-26",0.54826,{"date":292,"score":283,"percentile":293},"2025-12-27",0.54872,{"date":295,"score":283,"percentile":296},"2025-12-28",0.54793,{"date":298,"score":283,"percentile":299},"2025-12-29",0.54776,{"date":301,"score":283,"percentile":302},"2025-12-30",0.54768,{"date":304,"score":283,"percentile":305},"2025-12-31",0.54782,{"date":307,"score":283,"percentile":308},"2026-01-01",0.54952,{"date":310,"score":283,"percentile":311},"2026-01-02",0.54933,{"date":313,"score":283,"percentile":314},"2026-01-03",0.54923,{"date":316,"score":283,"percentile":317},"2026-01-04",0.54754,{"date":319,"score":283,"percentile":320},"2026-01-05",0.54742,{"date":322,"score":79,"percentile":323},"2026-01-06",0.54011,{"date":325,"score":79,"percentile":326},"2026-01-07",0.54035,{"date":328,"score":79,"percentile":329},"2026-01-08",0.54057,{"date":331,"score":79,"percentile":332},"2026-01-09",0.5405,{"date":334,"score":79,"percentile":335},"2026-01-10",0.54047,{"date":337,"score":79,"percentile":338},"2026-01-11",0.54027,{"date":340,"score":79,"percentile":341},"2026-01-12",0.5398,{"date":343,"score":79,"percentile":344},"2026-01-13",0.53959,{"date":346,"score":79,"percentile":347},"2026-01-14",0.54003,{"date":349,"score":79,"percentile":350},"2026-01-15",0.54005,{"date":352,"score":79,"percentile":353},"2026-01-16",0.54026,{"date":355,"score":79,"percentile":356},"2026-01-17",0.54013,{"date":358,"score":79,"percentile":350},"2026-01-18",{"date":360,"score":79,"percentile":361},"2026-01-19",0.53996,{"date":363,"score":79,"percentile":364},"2026-01-20",0.53999,{"date":366,"score":79,"percentile":367},"2026-01-21",0.54004,{"date":369,"score":79,"percentile":370},"2026-01-22",0.54009,{"date":372,"score":79,"percentile":373},"2026-01-23",0.54052,{"date":375,"score":79,"percentile":376},"2026-01-24",0.54053,{"date":378,"score":79,"percentile":379},"2026-01-25",0.54012,{"date":381,"score":79,"percentile":364},"2026-01-26",{"date":383,"score":79,"percentile":370},"2026-01-27",{"date":385,"score":79,"percentile":353},"2026-01-28",{"date":387,"score":79,"percentile":388},"2026-01-29",0.54022,{"date":390,"score":79,"percentile":391},"2026-01-30",0.54029,{"date":393,"score":79,"percentile":326},"2026-01-31",{"date":395,"score":79,"percentile":396},"2026-02-01",0.54177,[398,403],{"source":83,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":399,"cvss_v4_0":9},{"baseScore":81,"baseSeverity":400,"vectorString":84,"impactScore":401,"exploitabilityScore":402},"HIGH",6,10,{"source":89,"cvss_v2_0":404,"cvss_v3_0":408,"cvss_v3_1":410,"cvss_v4_0":9},{"baseScore":405,"baseSeverity":9,"vectorString":406,"impactScore":407,"exploitabilityScore":402},5,"AV:N/AC:L/Au:N/C:N/I:N/A:P",2.9,{"baseScore":81,"baseSeverity":400,"vectorString":409,"impactScore":401,"exploitabilityScore":402},"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",{"baseScore":81,"baseSeverity":400,"vectorString":84,"impactScore":401,"exploitabilityScore":402},[412],{"ecosystem":9,"name":413,"vendor":414,"product":413,"cpe_part":415,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":416},"libxml2","xmlsoft","a",[417],{"version":418,"is_range":42,"range_type":419,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.9.4","cpe"]