[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2018-0739":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":27,"aliases":28,"duplicate_of":9,"upstream":29,"downstream":30,"duplicates":87,"related":88,"reserved_at":9,"published_at":106,"modified_at":107,"state":108,"summary":109,"references_raw":117,"kevs":269,"epss":270,"epss_history":273,"metrics":532,"affected":543},"CVE-2018-0739","Constructed ASN.1 types with a recursive definition (such as can be found in PKCS7) could eventually exceed the stack given malicious input with excessive recursion. This could result in a Denial Of Service attack. There are no such structures used within SSL/TLS that come from untrusted sources so this is considered safe. Fixed in OpenSSL 1.1.0h (Affected 1.1.0-1.1.0g). Fixed in OpenSSL 1.0.2o (Affected 1.0.2b-1.0.2n).",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-674","Uncontrolled Recursion","The product does not properly control the amount of recursion that takes place,  consuming excessive resources, such as allocated memory or the program stack.","weakness","Draft","Class",[19,23],{"id":20,"name":21,"techniques":22},"CAPEC-230","Serialized Data with Nested Payloads",[],{"id":24,"name":25,"techniques":26},"CAPEC-231","Oversized Serialized Data Payloads",[],[],[],[],[31,33,35,37,39,41,43,45,47,49,51,53,55,57,59,61,63,65,67,69,71,73,75,77,79,81,83,85],{"_key":32},"ALPINE-CVE-2018-0739",{"_key":34},"SUSE-SU-2018:0906-1",{"_key":36},"OPENSUSE-SU-2024:11127-1",{"_key":38},"SUSE-SU-2018:0902-1",{"_key":40},"SUSE-SU-2018:0905-1",{"_key":42},"SUSE-SU-2018:0925-1",{"_key":44},"SUSE-SU-2018:0975-1",{"_key":46},"SUSE-SU-2018:2072-1",{"_key":48},"SUSE-SU-2018:2158-1",{"_key":50},"SUSE-SU-2018:2534-1",{"_key":52},"SUSE-SU-2018:2683-1",{"_key":54},"SUSE-SU-2020:0495-1",{"_key":56},"OPENSUSE-SU-2024:11126-1",{"_key":58},"OPENSUSE-SU-2024:11134-1",{"_key":60},"OPENSUSE-SU-2024:11501-1",{"_key":62},"DLA-1330-1",{"_key":64},"DSA-4157-1",{"_key":66},"DSA-4158-1",{"_key":68},"MGASA-2018-0190",{"_key":70},"MGASA-2018-0257",{"_key":72},"MGASA-2018-0339",{"_key":74},"UBUNTU-CVE-2018-0739",{"_key":76},"USN-3611-1",{"_key":78},"DEBIAN-CVE-2018-0739",{"_key":80},"RHSA-2018:3090",{"_key":82},"RHSA-2018:3221",{"_key":84},"RHSA-2019:0367",{"_key":86},"RHSA-2019:1711",[],[89,90,91,92,93,94,95,96,97,98,99,100,101,102,103,104,105],{"_key":34},{"_key":36},{"_key":38},{"_key":40},{"_key":42},{"_key":44},{"_key":46},{"_key":48},{"_key":50},{"_key":52},{"_key":54},{"_key":56},{"_key":58},{"_key":60},{"_key":68},{"_key":70},{"_key":72},"2018-03-27T21:00:00.000Z","2024-09-16T22:35:29.998Z","Modified",{"cisa_kev":110,"cisa_ransomware":110,"cisa_vendor":9,"epss_severity":111,"epss_score":112,"severity":111,"severity_score":113,"severity_version":114,"severity_source":115,"severity_vector":116,"severity_status":108},false,"medium",0.14445,6.5,"v3.0","nvd","CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",[118,126,131,136,141,145,149,155,160,164,168,172,178,182,186,190,194,199,204,208,212,217,221,225,229,233,237,241,245,249,253,257,261,265],{"url":119,"sources":120,"tags":122},"https://usn.ubuntu.com/3611-2/",[121,115],"cve.org",[123,124,125],"Vendor Advisory","X Refsource UBUNTU","Third Party Advisory",{"url":127,"sources":128,"tags":129},"https://www.debian.org/security/2018/dsa-4158",[121,115],[123,130,125],"X Refsource DEBIAN",{"url":132,"sources":133,"tags":134},"https://security.gentoo.org/glsa/201811-21",[121,115],[123,135],"X Refsource GENTOO",{"url":137,"sources":138,"tags":139},"https://access.redhat.com/errata/RHSA-2019:0367",[121,115],[123,140],"X Refsource REDHAT",{"url":142,"sources":143,"tags":144},"https://www.debian.org/security/2018/dsa-4157",[121,115],[123,130,125],{"url":146,"sources":147,"tags":148},"https://access.redhat.com/errata/RHSA-2018:3505",[121,115],[123,140],{"url":150,"sources":151,"tags":152},"http://www.securityfocus.com/bid/103518",[121,115],[153,154,125],"VDB Entry","X Refsource BID",{"url":156,"sources":157,"tags":158},"http://www.securitytracker.com/id/1040576",[121,115],[153,159,125],"X Refsource SECTRACK",{"url":161,"sources":162,"tags":163},"https://access.redhat.com/errata/RHSA-2018:3221",[121,115],[123,140],{"url":165,"sources":166,"tags":167},"http://www.securityfocus.com/bid/105609",[121,115],[153,154],{"url":169,"sources":170,"tags":171},"https://usn.ubuntu.com/3611-1/",[121,115],[123,124,125],{"url":173,"sources":174,"tags":175},"https://lists.debian.org/debian-lts-announce/2018/03/msg00033.html",[121,115],[176,177,125],"Mailing List","X Refsource MLIST",{"url":179,"sources":180,"tags":181},"https://access.redhat.com/errata/RHSA-2019:0366",[121,115],[123,140],{"url":183,"sources":184,"tags":185},"https://access.redhat.com/errata/RHSA-2018:3090",[121,115],[123,140],{"url":187,"sources":188,"tags":189},"https://access.redhat.com/errata/RHSA-2019:1711",[121,115],[123,140],{"url":191,"sources":192,"tags":193},"https://access.redhat.com/errata/RHSA-2019:1712",[121,115],[123,140],{"url":195,"sources":196,"tags":197},"http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html",[121,115],[198],"X Refsource CONFIRM",{"url":200,"sources":201,"tags":202},"http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html",[121,115],[198,203,125],"Patch",{"url":205,"sources":206,"tags":207},"http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html",[121,115],[198],{"url":209,"sources":210,"tags":211},"https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html",[121,115],[198],{"url":213,"sources":214,"tags":215},"https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html",[121,115],[216],"X Refsource MISC",{"url":218,"sources":219,"tags":220},"https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html",[121,115],[216],{"url":222,"sources":223,"tags":224},"https://security.netapp.com/advisory/ntap-20180726-0002/",[121,115],[198],{"url":226,"sources":227,"tags":228},"https://security.gentoo.org/glsa/202007-53",[121,115],[123,135],{"url":230,"sources":231,"tags":232},"https://securityadvisories.paloaltonetworks.com/Home/Detail/133",[121,115],[198],{"url":234,"sources":235,"tags":236},"https://www.oracle.com//security-alerts/cpujul2021.html",[121,115],[216],{"url":238,"sources":239,"tags":240},"https://www.tenable.com/security/tns-2018-07",[121,115],[198],{"url":242,"sources":243,"tags":244},"https://www.tenable.com/security/tns-2018-04",[121,115],[198],{"url":246,"sources":247,"tags":248},"https://nodejs.org/en/blog/vulnerability/march-2018-security-releases/",[121,115],[198],{"url":250,"sources":251,"tags":252},"https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=2ac4c6f7b2b2af20c0e2b0ba05367e454cd11b33",[121,115],[198],{"url":254,"sources":255,"tags":256},"https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=9310d45087ae546e27e61ddf8f6367f29848220d",[121,115],[198],{"url":258,"sources":259,"tags":260},"https://www.tenable.com/security/tns-2018-06",[121,115],[198],{"url":262,"sources":263,"tags":264},"https://security.netapp.com/advisory/ntap-20180330-0002/",[121,115],[198,125],{"url":266,"sources":267,"tags":268},"https://www.openssl.org/news/secadv/20180327.txt",[121,115],[198,123],[],{"date":271,"score":112,"percentile":272},"2026-06-04",0.94557,[274,278,281,284,287,289,291,293,295,299,302,305,307,310,312,316,319,322,325,328,332,336,339,342,345,347,349,352,356,359,362,365,367,370,373,376,379,382,385,388,391,394,397,399,402,405,407,410,413,416,418,421,424,427,431,434,437,440,442,446,449,452,455,458,460,462,464,468,470,473,476,478,481,483,486,489,492,495,497,500,503,506,509,511,514,517,520,522,525,528],{"date":275,"score":276,"percentile":277},"2025-11-04",0.15979,0.94481,{"date":279,"score":276,"percentile":280},"2025-11-05",0.9448,{"date":282,"score":276,"percentile":283},"2025-11-06",0.94482,{"date":285,"score":276,"percentile":286},"2025-11-07",0.94484,{"date":288,"score":276,"percentile":283},"2025-11-08",{"date":290,"score":276,"percentile":280},"2025-11-09",{"date":292,"score":276,"percentile":277},"2025-11-10",{"date":294,"score":276,"percentile":283},"2025-11-11",{"date":296,"score":297,"percentile":298},"2025-11-12",0.1242,0.93602,{"date":300,"score":297,"percentile":301},"2025-11-13",0.93603,{"date":303,"score":297,"percentile":304},"2025-11-14",0.93606,{"date":306,"score":297,"percentile":301},"2025-11-15",{"date":308,"score":297,"percentile":309},"2025-11-16",0.93607,{"date":311,"score":297,"percentile":304},"2025-11-17",{"date":313,"score":314,"percentile":315},"2025-11-18",0.161,0.9424,{"date":317,"score":314,"percentile":318},"2025-11-19",0.94244,{"date":320,"score":314,"percentile":321},"2025-11-20",0.94247,{"date":323,"score":297,"percentile":324},"2025-11-21",0.93614,{"date":326,"score":297,"percentile":327},"2025-11-22",0.93615,{"date":329,"score":330,"percentile":331},"2025-11-23",0.12712,0.93715,{"date":333,"score":334,"percentile":335},"2025-11-24",0.16197,0.94541,{"date":337,"score":334,"percentile":338},"2025-11-25",0.94544,{"date":340,"score":334,"percentile":341},"2025-11-26",0.94546,{"date":343,"score":334,"percentile":344},"2025-11-27",0.94549,{"date":346,"score":334,"percentile":341},"2025-11-28",{"date":348,"score":334,"percentile":344},"2025-11-29",{"date":350,"score":334,"percentile":351},"2025-11-30",0.94547,{"date":353,"score":354,"percentile":355},"2025-12-01",0.05946,0.90333,{"date":357,"score":354,"percentile":358},"2025-12-02",0.90336,{"date":360,"score":354,"percentile":361},"2025-12-03",0.90337,{"date":363,"score":334,"percentile":364},"2025-12-04",0.94543,{"date":366,"score":334,"percentile":341},"2025-12-05",{"date":368,"score":297,"percentile":369},"2025-12-06",0.93627,{"date":371,"score":297,"percentile":372},"2025-12-07",0.93626,{"date":374,"score":297,"percentile":375},"2025-12-08",0.93629,{"date":377,"score":297,"percentile":378},"2025-12-09",0.93631,{"date":380,"score":297,"percentile":381},"2025-12-10",0.93636,{"date":383,"score":297,"percentile":384},"2025-12-11",0.93639,{"date":386,"score":297,"percentile":387},"2025-12-12",0.93641,{"date":389,"score":297,"percentile":390},"2025-12-13",0.93645,{"date":392,"score":297,"percentile":393},"2025-12-14",0.93644,{"date":395,"score":297,"percentile":396},"2025-12-15",0.93648,{"date":398,"score":297,"percentile":390},"2025-12-16",{"date":400,"score":297,"percentile":401},"2025-12-17",0.93649,{"date":403,"score":297,"percentile":404},"2025-12-18",0.93653,{"date":406,"score":297,"percentile":404},"2025-12-19",{"date":408,"score":297,"percentile":409},"2025-12-20",0.93652,{"date":411,"score":297,"percentile":412},"2025-12-21",0.93655,{"date":414,"score":297,"percentile":415},"2025-12-22",0.93661,{"date":417,"score":297,"percentile":409},"2025-12-23",{"date":419,"score":297,"percentile":420},"2025-12-24",0.93657,{"date":422,"score":297,"percentile":423},"2025-12-25",0.93672,{"date":425,"score":297,"percentile":426},"2025-12-26",0.93671,{"date":428,"score":429,"percentile":430},"2025-12-27",0.08174,0.91921,{"date":432,"score":297,"percentile":433},"2025-12-28",0.93666,{"date":435,"score":297,"percentile":436},"2025-12-29",0.93664,{"date":438,"score":297,"percentile":439},"2025-12-30",0.93667,{"date":441,"score":297,"percentile":426},"2025-12-31",{"date":443,"score":444,"percentile":445},"2026-01-01",0.04397,0.88703,{"date":447,"score":444,"percentile":448},"2026-01-02",0.88699,{"date":450,"score":444,"percentile":451},"2026-01-03",0.88695,{"date":453,"score":297,"percentile":454},"2026-01-04",0.93665,{"date":456,"score":297,"percentile":457},"2026-01-05",0.9366,{"date":459,"score":297,"percentile":415},"2026-01-06",{"date":461,"score":297,"percentile":415},"2026-01-07",{"date":463,"score":297,"percentile":436},"2026-01-08",{"date":465,"score":466,"percentile":467},"2026-01-09",0.15843,0.94519,{"date":469,"score":466,"percentile":467},"2026-01-10",{"date":471,"score":466,"percentile":472},"2026-01-11",0.94517,{"date":474,"score":466,"percentile":475},"2026-01-12",0.94515,{"date":477,"score":466,"percentile":472},"2026-01-13",{"date":479,"score":466,"percentile":480},"2026-01-14",0.94522,{"date":482,"score":466,"percentile":480},"2026-01-15",{"date":484,"score":466,"percentile":485},"2026-01-16",0.94525,{"date":487,"score":466,"percentile":488},"2026-01-17",0.94529,{"date":490,"score":466,"percentile":491},"2026-01-18",0.94527,{"date":493,"score":466,"percentile":494},"2026-01-19",0.94524,{"date":496,"score":466,"percentile":488},"2026-01-20",{"date":498,"score":466,"percentile":499},"2026-01-21",0.9453,{"date":501,"score":466,"percentile":502},"2026-01-22",0.94533,{"date":504,"score":112,"percentile":505},"2026-01-23",0.94236,{"date":507,"score":112,"percentile":508},"2026-01-24",0.94239,{"date":510,"score":112,"percentile":315},"2026-01-25",{"date":512,"score":112,"percentile":513},"2026-01-26",0.94241,{"date":515,"score":112,"percentile":516},"2026-01-27",0.94242,{"date":518,"score":112,"percentile":519},"2026-01-28",0.94245,{"date":521,"score":112,"percentile":321},"2026-01-29",{"date":523,"score":112,"percentile":524},"2026-01-30",0.94246,{"date":526,"score":112,"percentile":527},"2026-01-31",0.94248,{"date":529,"score":530,"percentile":531},"2026-02-01",0.05214,0.89722,[533],{"source":115,"cvss_v2_0":534,"cvss_v3_0":539,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":535,"baseSeverity":9,"vectorString":536,"impactScore":537,"exploitabilityScore":538},4.3,"AV:N/AC:M/Au:N/C:N/I:N/A:P",2.9,8.6,{"baseScore":113,"baseSeverity":540,"vectorString":116,"impactScore":541,"exploitabilityScore":542},"MEDIUM",6,7.2,[544,557,568],{"ecosystem":9,"name":545,"vendor":546,"product":547,"cpe_part":548,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":549},"ubuntu linux","canonical","ubuntu_linux","o",[550,553,555],{"version":551,"is_range":110,"range_type":552,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"14.04","cpe",{"version":554,"is_range":110,"range_type":552,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"16.04",{"version":556,"is_range":110,"range_type":552,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"17.10",{"ecosystem":9,"name":558,"vendor":559,"product":560,"cpe_part":548,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":561},"debian linux","debian","debian_linux",[562,564,566],{"version":563,"is_range":110,"range_type":552,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0",{"version":565,"is_range":110,"range_type":552,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0",{"version":567,"is_range":110,"range_type":552,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0",{"ecosystem":9,"name":569,"vendor":9,"product":569,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":570},"OpenSSL",[571,577,581,583],{"version":572,"is_range":573,"range_type":552,"version_start":574,"version_start_type":575,"version_end":576,"version_end_type":575,"fixed_in":9},"gte1.0.2b_lte1.0.2n",true,"1.0.2b","including","1.0.2n",{"version":578,"is_range":573,"range_type":552,"version_start":579,"version_start_type":575,"version_end":580,"version_end_type":575,"fixed_in":9},"gte1.1.0_lte1.1.0g","1.1.0","1.1.0g",{"version":582,"is_range":110,"range_type":121,"version_start":582,"version_start_type":575,"version_end":582,"version_end_type":575,"fixed_in":9},"Fixed in OpenSSL 1.1.0h (Affected 1.1.0-1.1.0g)",{"version":584,"is_range":110,"range_type":121,"version_start":584,"version_start_type":575,"version_end":584,"version_end_type":575,"fixed_in":9},"Fixed in OpenSSL 1.0.2o (Affected 1.0.2b-1.0.2n)"]