[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2018-10940":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":68,"aliases":69,"duplicate_of":9,"upstream":70,"downstream":71,"duplicates":120,"related":121,"reserved_at":9,"published_at":133,"modified_at":134,"state":135,"summary":136,"references_raw":145,"kevs":222,"epss":223,"epss_history":226,"metrics":494,"affected":505},"CVE-2018-10940","The cdrom_ioctl_media_changed function in drivers/cdrom/cdrom.c in the Linux kernel before 4.16.6 allows local attackers to use a incorrect bounds check in the CDROM driver CDROM_MEDIA_CHANGED ioctl to read out kernel memory.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-119","Improper Restriction of Operations within the Bounds of a Memory Buffer","The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.","weakness","Stable","Class","High",[20,24,28,32,36,40,44,48,52,56,60,64],{"id":21,"name":22,"techniques":23},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":25,"name":26,"techniques":27},"CAPEC-100","Overflow Buffers",[],{"id":29,"name":30,"techniques":31},"CAPEC-123","Buffer Manipulation",[],{"id":33,"name":34,"techniques":35},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":37,"name":38,"techniques":39},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":41,"name":42,"techniques":43},"CAPEC-42","MIME Conversion",[],{"id":45,"name":46,"techniques":47},"CAPEC-44","Overflow Binary Resource File",[],{"id":49,"name":50,"techniques":51},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":53,"name":54,"techniques":55},"CAPEC-46","Overflow Variables and Tags",[],{"id":57,"name":58,"techniques":59},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":61,"name":62,"techniques":63},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":65,"name":66,"techniques":67},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],[],[],[],[72,74,76,78,80,82,84,86,88,90,92,94,96,98,100,102,104,106,108,110,112,114,116,118],{"_key":73},"SUSE-SU-2018:2858-1",{"_key":75},"SUSE-SU-2018:2879-1",{"_key":77},"SUSE-SU-2018:2907-1",{"_key":79},"SUSE-SU-2018:2908-1",{"_key":81},"SUSE-SU-2018:2908-2",{"_key":83},"SUSE-SU-2018:2980-1",{"_key":85},"SUSE-SU-2018:2981-1",{"_key":87},"SUSE-SU-2018:3083-1",{"_key":89},"SUSE-SU-2018:3084-1",{"_key":91},"SUSE-SU-2018:3088-1",{"_key":93},"SUSE-SU-2018:3961-1",{"_key":95},"USN-3676-2",{"_key":97},"USN-3695-2",{"_key":99},"DLA-1392-1",{"_key":101},"DLA-1422-1",{"_key":103},"DLA-1423-1",{"_key":105},"USN-3676-1",{"_key":107},"USN-3695-1",{"_key":109},"DEBIAN-CVE-2018-10940",{"_key":111},"UBUNTU-CVE-2018-10940",{"_key":113},"RHSA-2018:3083",{"_key":115},"RHSA-2018:3096",{"_key":117},"RHSA-2018:2948",{"_key":119},"USN-3754-1",[],[122,123,124,125,126,127,128,129,130,131,132],{"_key":73},{"_key":75},{"_key":77},{"_key":79},{"_key":81},{"_key":83},{"_key":85},{"_key":87},{"_key":89},{"_key":91},{"_key":93},"2018-05-09T17:00:00.000Z","2024-08-05T07:54:35.969Z","Modified",{"cisa_kev":137,"cisa_ransomware":137,"cisa_vendor":9,"epss_severity":138,"epss_score":139,"severity":140,"severity_score":141,"severity_version":142,"severity_source":143,"severity_vector":144,"severity_status":135},false,"low",0.00056,"medium",5.5,"v3.0","nvd","CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",[146,154,159,165,169,173,179,183,187,192,196,200,204,208,212,218],{"url":147,"sources":148,"tags":150},"https://usn.ubuntu.com/3676-1/",[149,143],"cve.org",[151,152,153],"Vendor Advisory","X Refsource UBUNTU","Third Party Advisory",{"url":155,"sources":156,"tags":157},"https://access.redhat.com/errata/RHSA-2018:3083",[149,143],[151,158],"X Refsource REDHAT",{"url":160,"sources":161,"tags":162},"https://lists.debian.org/debian-lts-announce/2018/07/msg00015.html",[149,143],[163,164],"Mailing List","X Refsource MLIST",{"url":166,"sources":167,"tags":168},"https://usn.ubuntu.com/3695-1/",[149,143],[151,152],{"url":170,"sources":171,"tags":172},"https://usn.ubuntu.com/3695-2/",[149,143],[151,152],{"url":174,"sources":175,"tags":176},"http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=9de4ee40547fd315d4a0ed1dd15a2fa3559ad707",[149,143],[177,178],"X Refsource MISC","Patch",{"url":180,"sources":181,"tags":182},"https://lists.debian.org/debian-lts-announce/2018/07/msg00016.html",[149,143],[163,164],{"url":184,"sources":185,"tags":186},"https://lists.debian.org/debian-lts-announce/2018/06/msg00000.html",[149,143],[163,164,153],{"url":188,"sources":189,"tags":190},"https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.16.6",[149,143],[177,191],"Release Notes",{"url":193,"sources":194,"tags":195},"https://usn.ubuntu.com/3754-1/",[149,143],[151,152],{"url":197,"sources":198,"tags":199},"https://lists.debian.org/debian-lts-announce/2018/07/msg00020.html",[149,143],[163,164],{"url":201,"sources":202,"tags":203},"https://access.redhat.com/errata/RHSA-2018:2948",[149,143],[151,158],{"url":205,"sources":206,"tags":207},"https://github.com/torvalds/linux/commit/9de4ee40547fd315d4a0ed1dd15a2fa3559ad707",[149,143],[177,178],{"url":209,"sources":210,"tags":211},"https://usn.ubuntu.com/3676-2/",[149,143],[151,152,153],{"url":213,"sources":214,"tags":215},"http://www.securityfocus.com/bid/104154",[149,143],[216,217,153],"VDB Entry","X Refsource BID",{"url":219,"sources":220,"tags":221},"https://access.redhat.com/errata/RHSA-2018:3096",[149,143],[151,158],[],{"date":224,"score":139,"percentile":225},"2026-06-03",0.1763,[227,231,234,237,239,242,245,248,251,254,257,260,263,266,269,273,276,279,282,285,288,291,294,297,300,303,306,309,312,315,318,321,324,327,330,332,335,338,341,344,347,350,353,356,359,362,365,368,371,374,377,380,383,386,389,392,395,398,401,404,407,410,413,416,419,422,425,427,430,433,435,438,440,443,446,449,452,455,458,461,464,467,470,473,476,479,482,485,488,491],{"date":228,"score":229,"percentile":230},"2025-11-04",0.0008,0.24347,{"date":232,"score":229,"percentile":233},"2025-11-05",0.24331,{"date":235,"score":229,"percentile":236},"2025-11-06",0.24339,{"date":238,"score":229,"percentile":230},"2025-11-07",{"date":240,"score":229,"percentile":241},"2025-11-08",0.24352,{"date":243,"score":229,"percentile":244},"2025-11-09",0.24309,{"date":246,"score":229,"percentile":247},"2025-11-10",0.24267,{"date":249,"score":229,"percentile":250},"2025-11-11",0.24274,{"date":252,"score":229,"percentile":253},"2025-11-12",0.24305,{"date":255,"score":229,"percentile":256},"2025-11-13",0.24306,{"date":258,"score":229,"percentile":259},"2025-11-14",0.24299,{"date":261,"score":229,"percentile":262},"2025-11-15",0.24283,{"date":264,"score":229,"percentile":265},"2025-11-16",0.24236,{"date":267,"score":229,"percentile":268},"2025-11-17",0.24191,{"date":270,"score":271,"percentile":272},"2025-11-18",0.0004,0.07424,{"date":274,"score":271,"percentile":275},"2025-11-19",0.07438,{"date":277,"score":271,"percentile":278},"2025-11-20",0.0747,{"date":280,"score":229,"percentile":281},"2025-11-21",0.24113,{"date":283,"score":229,"percentile":284},"2025-11-22",0.24111,{"date":286,"score":229,"percentile":287},"2025-11-23",0.24061,{"date":289,"score":229,"percentile":290},"2025-11-24",0.24029,{"date":292,"score":229,"percentile":293},"2025-11-25",0.24019,{"date":295,"score":229,"percentile":296},"2025-11-26",0.24005,{"date":298,"score":229,"percentile":299},"2025-11-27",0.23998,{"date":301,"score":229,"percentile":302},"2025-11-28",0.23975,{"date":304,"score":229,"percentile":305},"2025-11-29",0.23954,{"date":307,"score":229,"percentile":308},"2025-11-30",0.23933,{"date":310,"score":229,"percentile":311},"2025-12-01",0.2398,{"date":313,"score":229,"percentile":314},"2025-12-02",0.23997,{"date":316,"score":229,"percentile":317},"2025-12-03",0.24012,{"date":319,"score":229,"percentile":320},"2025-12-04",0.23937,{"date":322,"score":229,"percentile":323},"2025-12-05",0.23986,{"date":325,"score":229,"percentile":326},"2025-12-06",0.23984,{"date":328,"score":229,"percentile":329},"2025-12-07",0.23947,{"date":331,"score":229,"percentile":305},"2025-12-08",{"date":333,"score":229,"percentile":334},"2025-12-09",0.24011,{"date":336,"score":229,"percentile":337},"2025-12-10",0.24081,{"date":339,"score":229,"percentile":340},"2025-12-11",0.24103,{"date":342,"score":229,"percentile":343},"2025-12-12",0.24118,{"date":345,"score":229,"percentile":346},"2025-12-13",0.24119,{"date":348,"score":229,"percentile":349},"2025-12-14",0.2409,{"date":351,"score":229,"percentile":352},"2025-12-15",0.24066,{"date":354,"score":229,"percentile":355},"2025-12-16",0.24088,{"date":357,"score":229,"percentile":358},"2025-12-17",0.24167,{"date":360,"score":229,"percentile":361},"2025-12-18",0.24228,{"date":363,"score":229,"percentile":364},"2025-12-19",0.24247,{"date":366,"score":229,"percentile":367},"2025-12-20",0.24215,{"date":369,"score":229,"percentile":370},"2025-12-21",0.24161,{"date":372,"score":229,"percentile":373},"2025-12-22",0.2412,{"date":375,"score":229,"percentile":376},"2025-12-23",0.24095,{"date":378,"score":229,"percentile":379},"2025-12-24",0.24105,{"date":381,"score":229,"percentile":382},"2025-12-25",0.24186,{"date":384,"score":229,"percentile":385},"2025-12-26",0.24173,{"date":387,"score":229,"percentile":388},"2025-12-27",0.24171,{"date":390,"score":229,"percentile":391},"2025-12-28",0.24039,{"date":393,"score":229,"percentile":394},"2025-12-29",0.24008,{"date":396,"score":229,"percentile":397},"2025-12-30",0.24001,{"date":399,"score":229,"percentile":400},"2025-12-31",0.24069,{"date":402,"score":229,"percentile":403},"2026-01-01",0.2417,{"date":405,"score":229,"percentile":406},"2026-01-02",0.24162,{"date":408,"score":229,"percentile":409},"2026-01-03",0.24142,{"date":411,"score":229,"percentile":412},"2026-01-04",0.24049,{"date":414,"score":229,"percentile":415},"2026-01-05",0.2403,{"date":417,"score":229,"percentile":418},"2026-01-06",0.24036,{"date":420,"score":229,"percentile":421},"2026-01-07",0.24068,{"date":423,"score":229,"percentile":424},"2026-01-08",0.24116,{"date":426,"score":229,"percentile":376},"2026-01-09",{"date":428,"score":229,"percentile":429},"2026-01-10",0.24067,{"date":431,"score":229,"percentile":432},"2026-01-11",0.24047,{"date":434,"score":229,"percentile":334},"2026-01-12",{"date":436,"score":229,"percentile":437},"2026-01-13",0.23987,{"date":439,"score":229,"percentile":412},"2026-01-14",{"date":441,"score":229,"percentile":442},"2026-01-15",0.24045,{"date":444,"score":229,"percentile":445},"2026-01-16",0.24079,{"date":447,"score":229,"percentile":448},"2026-01-17",0.24077,{"date":450,"score":229,"percentile":451},"2026-01-18",0.24043,{"date":453,"score":229,"percentile":454},"2026-01-19",0.23995,{"date":456,"score":229,"percentile":457},"2026-01-20",0.23974,{"date":459,"score":229,"percentile":460},"2026-01-21",0.2392,{"date":462,"score":229,"percentile":463},"2026-01-22",0.23908,{"date":465,"score":229,"percentile":466},"2026-01-23",0.23992,{"date":468,"score":229,"percentile":469},"2026-01-24",0.24003,{"date":471,"score":229,"percentile":472},"2026-01-25",0.23922,{"date":474,"score":229,"percentile":475},"2026-01-26",0.23822,{"date":477,"score":229,"percentile":478},"2026-01-27",0.23813,{"date":480,"score":229,"percentile":481},"2026-01-28",0.23812,{"date":483,"score":229,"percentile":484},"2026-01-29",0.23767,{"date":486,"score":229,"percentile":487},"2026-01-30",0.23763,{"date":489,"score":229,"percentile":490},"2026-01-31",0.2376,{"date":492,"score":229,"percentile":493},"2026-02-01",0.23805,[495],{"source":143,"cvss_v2_0":496,"cvss_v3_0":501,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":497,"baseSeverity":9,"vectorString":498,"impactScore":499,"exploitabilityScore":500},4.9,"AV:L/AC:L/Au:N/C:N/I:N/A:C",6.9,3.9,{"baseScore":141,"baseSeverity":502,"vectorString":144,"impactScore":503,"exploitabilityScore":504},"MEDIUM",6,4.6,[506,515],{"ecosystem":9,"name":507,"vendor":508,"product":509,"cpe_part":510,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":511},"debian linux","debian","debian_linux","o",[512],{"version":513,"is_range":137,"range_type":514,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0","cpe",{"ecosystem":9,"name":516,"vendor":517,"product":518,"cpe_part":510,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":519},"linux kernel","linux","linux_kernel",[520],{"version":521,"is_range":522,"range_type":514,"version_start":9,"version_start_type":9,"version_end":523,"version_end_type":524,"fixed_in":9},"lt4.16.6",true,"4.16.6","excluding"]