[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2018-1120":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":79,"aliases":106,"duplicate_of":9,"upstream":107,"downstream":108,"duplicates":151,"related":152,"reserved_at":9,"published_at":161,"modified_at":162,"state":163,"summary":164,"references_raw":172,"kevs":247,"epss":248,"epss_history":251,"metrics":507,"affected":525},"CVE-2018-1120","A flaw was found affecting the Linux kernel before version 4.17. By mmap()ing a FUSE-backed file onto a process's memory containing command line arguments (or environment strings), an attacker can cause utilities from psutils or procps (such as ps, w) or any other program which makes a read() call to the /proc/\u003Cpid>/cmdline (or /proc/\u003Cpid>/environ) files to block indefinitely (denial of service) or for some controlled time (as a synchronization primitive for other attacks).",null,[11,68],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-119","Improper Restriction of Operations within the Bounds of a Memory Buffer","The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.","weakness","Stable","Class","High",[20,24,28,32,36,40,44,48,52,56,60,64],{"id":21,"name":22,"techniques":23},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":25,"name":26,"techniques":27},"CAPEC-100","Overflow Buffers",[],{"id":29,"name":30,"techniques":31},"CAPEC-123","Buffer Manipulation",[],{"id":33,"name":34,"techniques":35},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":37,"name":38,"techniques":39},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":41,"name":42,"techniques":43},"CAPEC-42","MIME Conversion",[],{"id":45,"name":46,"techniques":47},"CAPEC-44","Overflow Binary Resource File",[],{"id":49,"name":50,"techniques":51},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":53,"name":54,"techniques":55},"CAPEC-46","Overflow Variables and Tags",[],{"id":57,"name":58,"techniques":59},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":61,"name":62,"techniques":63},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":65,"name":66,"techniques":67},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],{"_key":69,"id":69,"name":70,"description":71,"type":15,"status":72,"abstraction":73,"likelihood_of_exploit":18,"capec":74},"CWE-122","Heap-based Buffer Overflow","A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().","Draft","Variant",[75],{"id":76,"name":77,"techniques":78},"CAPEC-92","Forced Integer Overflow",[],[80,89],{"_key":81,"name":82,"source":83,"url":84,"maturity":85,"reliability_score":86,"verified":87,"type":9,"platforms":88,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_026915E32925CA82","Exploit Reference (seclists.org)","reference","http://seclists.org/oss-sec/2018/q2/122","unknown",0.2,false,[],{"_key":90,"name":91,"source":92,"url":93,"maturity":94,"reliability_score":95,"verified":87,"type":96,"platforms":97,"requires_auth":9,"exploitdb":99,"metasploit":9},"44806","Procps-ng - Multiple Vulnerabilities","exploit-database","https://www.exploit-db.com/exploits/44806","poc",0.5,"local",[98],"linux",{"verified":87,"type":96,"platform":98,"file":100,"codes":101},"exploits/linux/local/44806.txt",[102,103,104,105,7],"CVE-2018-1124","CVE-2018-1123","CVE-2018-1122","CVE-2018-1121",[],[],[109,111,113,115,117,119,121,123,125,127,129,131,133,135,137,139,141,143,145,147,149],{"_key":110},"RHSA-2020:3804",{"_key":112},"RHSA-2020:3810",{"_key":114},"SUSE-SU-2018:2092-1",{"_key":116},"SUSE-SU-2019:0148-1",{"_key":118},"SUSE-SU-2019:0320-1",{"_key":120},"SUSE-SU-2019:0541-1",{"_key":122},"SUSE-SU-2019:1287-1",{"_key":124},"DLA-1423-1",{"_key":126},"MGASA-2018-0263",{"_key":128},"MGASA-2018-0264",{"_key":130},"MGASA-2018-0265",{"_key":132},"DEBIAN-CVE-2018-1120",{"_key":134},"UBUNTU-CVE-2018-1120",{"_key":136},"RHSA-2018:3083",{"_key":138},"RHSA-2018:3096",{"_key":140},"RHSA-2018:2948",{"_key":142},"USN-3752-1",{"_key":144},"USN-3752-2",{"_key":146},"USN-3752-3",{"_key":148},"USN-3910-1",{"_key":150},"USN-3910-2",[],[153,154,155,156,157,158,159,160],{"_key":114},{"_key":116},{"_key":118},{"_key":120},{"_key":122},{"_key":126},{"_key":128},{"_key":130},"2018-06-20T13:00:00.000Z","2024-08-05T03:51:48.863Z","Modified",{"cisa_kev":87,"cisa_ransomware":87,"cisa_vendor":9,"epss_severity":165,"epss_score":166,"severity":167,"severity_score":168,"severity_version":169,"severity_source":170,"severity_vector":171,"severity_status":163},"low",0.0144,"medium",5.3,"v3.0","nvd","CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",[173,181,186,192,196,201,207,211,217,222,226,232,236,239,243],{"url":174,"sources":175,"tags":177},"https://usn.ubuntu.com/3752-2/",[176,170],"cve.org",[178,179,180],"Vendor Advisory","X Refsource UBUNTU","Third Party Advisory",{"url":182,"sources":183,"tags":184},"https://access.redhat.com/errata/RHSA-2018:3083",[176,170],[178,185,180],"X Refsource REDHAT",{"url":187,"sources":188,"tags":189},"http://www.securityfocus.com/bid/104229",[176,170],[190,191,180],"VDB Entry","X Refsource BID",{"url":193,"sources":194,"tags":195},"https://usn.ubuntu.com/3752-3/",[176,170],[178,179,180],{"url":197,"sources":198,"tags":199},"https://security.gentoo.org/glsa/201805-14",[176,170],[178,200,180],"X Refsource GENTOO",{"url":202,"sources":203,"tags":204},"https://www.exploit-db.com/exploits/44806/",[176,170],[205,206,180,190],"Exploit","X Refsource EXPLOIT DB",{"url":208,"sources":209,"tags":210},"https://usn.ubuntu.com/3910-1/",[176,170],[178,179],{"url":212,"sources":213,"tags":214},"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=7f7ccc2ccc2e70c6054685f5e3522efa81556830",[176,170],[215,216,180],"X Refsource CONFIRM","Patch",{"url":218,"sources":219,"tags":220},"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1120",[176,170],[215,221,216,180],"Issue Tracking",{"url":223,"sources":224,"tags":225},"https://usn.ubuntu.com/3910-2/",[176,170],[178,179],{"url":227,"sources":228,"tags":229},"https://lists.debian.org/debian-lts-announce/2018/07/msg00020.html",[176,170],[230,231,180],"Mailing List","X Refsource MLIST",{"url":233,"sources":234,"tags":235},"https://access.redhat.com/errata/RHSA-2018:2948",[176,170],[178,185,180],{"url":84,"sources":237,"tags":238},[176,170],[230,231,205,180],{"url":240,"sources":241,"tags":242},"https://usn.ubuntu.com/3752-1/",[176,170],[178,179,180],{"url":244,"sources":245,"tags":246},"https://access.redhat.com/errata/RHSA-2018:3096",[176,170],[178,185,180],[],{"date":249,"score":166,"percentile":250},"2026-06-03",0.81057,[252,256,259,262,265,268,271,273,276,279,282,285,288,291,294,298,301,304,307,309,311,313,316,319,322,325,328,330,333,336,339,341,344,346,348,350,353,356,359,362,365,368,371,374,377,379,382,385,388,391,393,396,399,402,405,407,410,413,416,419,422,425,428,431,433,436,439,442,445,448,451,453,456,459,462,465,468,471,474,477,479,482,485,488,491,493,496,499,501,504],{"date":253,"score":254,"percentile":255},"2025-11-04",0.00986,0.76104,{"date":257,"score":254,"percentile":258},"2025-11-05",0.76102,{"date":260,"score":254,"percentile":261},"2025-11-06",0.76099,{"date":263,"score":254,"percentile":264},"2025-11-07",0.76115,{"date":266,"score":254,"percentile":267},"2025-11-08",0.76119,{"date":269,"score":254,"percentile":270},"2025-11-09",0.76116,{"date":272,"score":254,"percentile":258},"2025-11-10",{"date":274,"score":254,"percentile":275},"2025-11-11",0.76103,{"date":277,"score":254,"percentile":278},"2025-11-12",0.76123,{"date":280,"score":254,"percentile":281},"2025-11-13",0.7613,{"date":283,"score":254,"percentile":284},"2025-11-14",0.76136,{"date":286,"score":254,"percentile":287},"2025-11-15",0.76133,{"date":289,"score":254,"percentile":290},"2025-11-16",0.76134,{"date":292,"score":254,"percentile":293},"2025-11-17",0.76126,{"date":295,"score":296,"percentile":297},"2025-11-18",0.01072,0.75876,{"date":299,"score":296,"percentile":300},"2025-11-19",0.75882,{"date":302,"score":296,"percentile":303},"2025-11-20",0.75893,{"date":305,"score":254,"percentile":306},"2025-11-21",0.7615,{"date":308,"score":254,"percentile":306},"2025-11-22",{"date":310,"score":254,"percentile":284},"2025-11-23",{"date":312,"score":254,"percentile":284},"2025-11-24",{"date":314,"score":254,"percentile":315},"2025-11-25",0.76144,{"date":317,"score":254,"percentile":318},"2025-11-26",0.76149,{"date":320,"score":254,"percentile":321},"2025-11-27",0.76152,{"date":323,"score":254,"percentile":324},"2025-11-28",0.7614,{"date":326,"score":254,"percentile":327},"2025-11-29",0.76146,{"date":329,"score":254,"percentile":315},"2025-11-30",{"date":331,"score":254,"percentile":332},"2025-12-01",0.7627,{"date":334,"score":254,"percentile":335},"2025-12-02",0.76274,{"date":337,"score":254,"percentile":338},"2025-12-03",0.76264,{"date":340,"score":254,"percentile":284},"2025-12-04",{"date":342,"score":254,"percentile":343},"2025-12-05",0.76145,{"date":345,"score":254,"percentile":318},"2025-12-06",{"date":347,"score":254,"percentile":315},"2025-12-07",{"date":349,"score":254,"percentile":318},"2025-12-08",{"date":351,"score":254,"percentile":352},"2025-12-09",0.76174,{"date":354,"score":254,"percentile":355},"2025-12-10",0.76199,{"date":357,"score":254,"percentile":358},"2025-12-11",0.76218,{"date":360,"score":254,"percentile":361},"2025-12-12",0.7624,{"date":363,"score":254,"percentile":364},"2025-12-13",0.76243,{"date":366,"score":254,"percentile":367},"2025-12-14",0.76238,{"date":369,"score":254,"percentile":370},"2025-12-15",0.76235,{"date":372,"score":254,"percentile":373},"2025-12-16",0.76247,{"date":375,"score":254,"percentile":376},"2025-12-17",0.76259,{"date":378,"score":254,"percentile":335},"2025-12-18",{"date":380,"score":254,"percentile":381},"2025-12-19",0.76288,{"date":383,"score":254,"percentile":384},"2025-12-20",0.76282,{"date":386,"score":254,"percentile":387},"2025-12-21",0.76277,{"date":389,"score":254,"percentile":390},"2025-12-22",0.76271,{"date":392,"score":254,"percentile":332},"2025-12-23",{"date":394,"score":254,"percentile":395},"2025-12-24",0.76281,{"date":397,"score":254,"percentile":398},"2025-12-25",0.76302,{"date":400,"score":254,"percentile":401},"2025-12-26",0.763,{"date":403,"score":254,"percentile":404},"2025-12-27",0.76352,{"date":406,"score":254,"percentile":395},"2025-12-28",{"date":408,"score":254,"percentile":409},"2025-12-29",0.76276,{"date":411,"score":254,"percentile":412},"2025-12-30",0.76287,{"date":414,"score":254,"percentile":415},"2025-12-31",0.76307,{"date":417,"score":254,"percentile":418},"2026-01-01",0.76442,{"date":420,"score":254,"percentile":421},"2026-01-02",0.76446,{"date":423,"score":254,"percentile":424},"2026-01-03",0.76445,{"date":426,"score":254,"percentile":427},"2026-01-04",0.76317,{"date":429,"score":254,"percentile":430},"2026-01-05",0.76308,{"date":432,"score":254,"percentile":427},"2026-01-06",{"date":434,"score":254,"percentile":435},"2026-01-07",0.76328,{"date":437,"score":254,"percentile":438},"2026-01-08",0.76338,{"date":440,"score":254,"percentile":441},"2026-01-09",0.76346,{"date":443,"score":254,"percentile":444},"2026-01-10",0.76347,{"date":446,"score":254,"percentile":447},"2026-01-11",0.76334,{"date":449,"score":254,"percentile":450},"2026-01-12",0.76324,{"date":452,"score":254,"percentile":450},"2026-01-13",{"date":454,"score":254,"percentile":455},"2026-01-14",0.7635,{"date":457,"score":254,"percentile":458},"2026-01-15",0.76356,{"date":460,"score":254,"percentile":461},"2026-01-16",0.76367,{"date":463,"score":254,"percentile":464},"2026-01-17",0.76366,{"date":466,"score":254,"percentile":467},"2026-01-18",0.76358,{"date":469,"score":254,"percentile":470},"2026-01-19",0.76353,{"date":472,"score":254,"percentile":473},"2026-01-20",0.76354,{"date":475,"score":254,"percentile":476},"2026-01-21",0.7636,{"date":478,"score":254,"percentile":464},"2026-01-22",{"date":480,"score":254,"percentile":481},"2026-01-23",0.76395,{"date":483,"score":254,"percentile":484},"2026-01-24",0.76406,{"date":486,"score":254,"percentile":487},"2026-01-25",0.76392,{"date":489,"score":254,"percentile":490},"2026-01-26",0.76391,{"date":492,"score":254,"percentile":490},"2026-01-27",{"date":494,"score":254,"percentile":495},"2026-01-28",0.764,{"date":497,"score":254,"percentile":498},"2026-01-29",0.76394,{"date":500,"score":254,"percentile":495},"2026-01-30",{"date":502,"score":254,"percentile":503},"2026-01-31",0.76397,{"date":505,"score":254,"percentile":506},"2026-02-01",0.76521,[508,515],{"source":176,"cvss_v2_0":9,"cvss_v3_0":509,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":510,"baseSeverity":511,"vectorString":512,"impactScore":513,"exploitabilityScore":514},2.8,"LOW","CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L",2.3,3.3,{"source":170,"cvss_v2_0":516,"cvss_v3_0":521,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":517,"baseSeverity":9,"vectorString":518,"impactScore":519,"exploitabilityScore":520},3.5,"AV:N/AC:M/Au:S/C:N/I:N/A:P",2.9,6.8,{"baseScore":168,"baseSeverity":522,"vectorString":171,"impactScore":523,"exploitabilityScore":524},"MEDIUM",6,4.1,[526,537,544,553,560,565,570,577],{"ecosystem":9,"name":527,"vendor":528,"product":529,"cpe_part":530,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":531},"ubuntu linux","canonical","ubuntu_linux","o",[532,535],{"version":533,"is_range":87,"range_type":534,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"16.04","cpe",{"version":536,"is_range":87,"range_type":534,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"18.04",{"ecosystem":9,"name":538,"vendor":539,"product":540,"cpe_part":530,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":541},"debian linux","debian","debian_linux",[542],{"version":543,"is_range":87,"range_type":534,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0",{"ecosystem":9,"name":545,"vendor":98,"product":546,"cpe_part":530,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":547},"linux kernel","linux_kernel",[548],{"version":549,"is_range":550,"range_type":534,"version_start":9,"version_start_type":9,"version_end":551,"version_end_type":552,"fixed_in":9},"lt4.17",true,"4.17","excluding",{"ecosystem":9,"name":554,"vendor":555,"product":556,"cpe_part":530,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":557},"enterprise linux desktop","redhat","enterprise_linux_desktop",[558],{"version":559,"is_range":87,"range_type":534,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0",{"ecosystem":9,"name":561,"vendor":555,"product":562,"cpe_part":530,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":563},"enterprise linux server","enterprise_linux_server",[564],{"version":559,"is_range":87,"range_type":534,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":566,"vendor":555,"product":567,"cpe_part":530,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":568},"enterprise linux workstation","enterprise_linux_workstation",[569],{"version":559,"is_range":87,"range_type":534,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":571,"vendor":555,"product":572,"cpe_part":573,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":574},"virtualization host","virtualization_host","a",[575],{"version":576,"is_range":87,"range_type":534,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0",{"ecosystem":9,"name":578,"vendor":579,"product":578,"cpe_part":573,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":580},"kernel","[unknown]",[581],{"version":582,"is_range":87,"range_type":176,"version_start":582,"version_start_type":583,"version_end":582,"version_end_type":583,"fixed_in":9},"kernel 4.17","including"]