[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2018-14553":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T14:55:33.319Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":20,"aliases":21,"duplicate_of":9,"upstream":22,"downstream":23,"duplicates":52,"related":53,"reserved_at":9,"published_at":60,"modified_at":61,"state":62,"summary":63,"references_raw":72,"kevs":116,"epss":117,"epss_history":120,"metrics":379,"affected":390},"CVE-2018-14553","gdImageClone in gd.c in libgd 2.1.0-rc2 through 2.2.5 has a NULL pointer dereference allowing attackers to crash an application via a specific function call sequence. Only affects PHP when linked with an external libgd (not bundled).",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-476","NULL Pointer Dereference","The product dereferences a pointer that it expects to be valid but is NULL.","weakness","Stable","Base","Medium",[],[],[],[],[24,26,28,30,32,34,36,38,40,42,44,46,48,50],{"_key":25},"ALPINE-CVE-2018-14553",{"_key":27},"RHSA-2020:4659",{"_key":29},"SUSE-SU-2020:0594-1",{"_key":31},"SUSE-SU-2020:0594-2",{"_key":33},"SUSE-SU-2020:0623-1",{"_key":35},"OPENSUSE-SU-2020:0332-1",{"_key":37},"OPENSUSE-SU-2024:10777-1",{"_key":39},"DLA-2106-1",{"_key":41},"DLA-3781-1",{"_key":43},"MGASA-2020-0098",{"_key":45},"USN-4316-1",{"_key":47},"USN-4316-2",{"_key":49},"DEBIAN-CVE-2018-14553",{"_key":51},"UBUNTU-CVE-2018-14553",[],[54,55,56,57,58,59],{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":43},"2020-02-11T00:00:00.000Z","2024-08-05T09:29:51.696Z","Modified",{"cisa_kev":64,"cisa_ransomware":64,"cisa_vendor":9,"epss_severity":65,"epss_score":66,"severity":67,"severity_score":68,"severity_version":69,"severity_source":70,"severity_vector":71,"severity_status":62},false,"low",0.00979,"high",7.5,"v3.1","nvd","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",[73,80,85,90,95,100,104,108,112],{"url":74,"sources":75,"tags":77},"https://bugzilla.redhat.com/show_bug.cgi?id=1599032",[76,70],"cve.org",[78,79],"Issue Tracking","Permissions Required",{"url":81,"sources":82,"tags":83},"https://github.com/libgd/libgd/pull/580",[76,70],[84],"Third Party Advisory",{"url":86,"sources":87,"tags":88},"https://github.com/libgd/libgd/commit/a93eac0e843148dc2d631c3ba80af17e9c8c860f",[76,70],[89,84],"Patch",{"url":91,"sources":92,"tags":93},"https://lists.debian.org/debian-lts-announce/2020/02/msg00014.html",[76,70],[94,84],"Mailing List",{"url":96,"sources":97,"tags":98},"http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00020.html",[76,70],[99,84],"Vendor Advisory",{"url":101,"sources":102,"tags":103},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CZ2QADQTKRHTGB2AHD7J4QQNDLBEMM6/",[76,70],[99],{"url":105,"sources":106,"tags":107},"https://usn.ubuntu.com/4316-2/",[76,70],[99,84],{"url":109,"sources":110,"tags":111},"https://usn.ubuntu.com/4316-1/",[76,70],[99,84],{"url":113,"sources":114,"tags":115},"https://lists.debian.org/debian-lts-announce/2024/04/msg00003.html",[76,70],[94],[],{"date":118,"score":66,"percentile":119},"2026-06-04",0.77103,[121,125,128,131,134,137,140,143,146,149,152,155,157,160,163,167,170,173,176,179,181,184,186,188,191,194,197,200,203,206,208,210,212,215,218,222,225,228,231,234,237,239,242,245,248,251,254,256,259,261,263,266,269,272,276,279,282,285,288,291,294,296,299,302,305,308,311,314,317,320,323,326,328,331,334,337,340,342,345,348,351,354,357,360,363,365,367,370,373,376],{"date":122,"score":123,"percentile":124},"2025-11-04",0.00751,0.72356,{"date":126,"score":123,"percentile":127},"2025-11-05",0.7234,{"date":129,"score":123,"percentile":130},"2025-11-06",0.72336,{"date":132,"score":123,"percentile":133},"2025-11-07",0.72353,{"date":135,"score":123,"percentile":136},"2025-11-08",0.7235,{"date":138,"score":123,"percentile":139},"2025-11-09",0.72343,{"date":141,"score":123,"percentile":142},"2025-11-10",0.72333,{"date":144,"score":123,"percentile":145},"2025-11-11",0.72338,{"date":147,"score":123,"percentile":148},"2025-11-12",0.72354,{"date":150,"score":123,"percentile":151},"2025-11-13",0.72362,{"date":153,"score":123,"percentile":154},"2025-11-14",0.72369,{"date":156,"score":123,"percentile":154},"2025-11-15",{"date":158,"score":123,"percentile":159},"2025-11-16",0.72363,{"date":161,"score":123,"percentile":162},"2025-11-17",0.72358,{"date":164,"score":165,"percentile":166},"2025-11-18",0.0266,0.84462,{"date":168,"score":165,"percentile":169},"2025-11-19",0.84465,{"date":171,"score":165,"percentile":172},"2025-11-20",0.84472,{"date":174,"score":123,"percentile":175},"2025-11-21",0.7238,{"date":177,"score":123,"percentile":178},"2025-11-22",0.72373,{"date":180,"score":123,"percentile":124},"2025-11-23",{"date":182,"score":123,"percentile":183},"2025-11-24",0.72347,{"date":185,"score":123,"percentile":136},"2025-11-25",{"date":187,"score":123,"percentile":124},"2025-11-26",{"date":189,"score":123,"percentile":190},"2025-11-27",0.72357,{"date":192,"score":123,"percentile":193},"2025-11-28",0.72349,{"date":195,"score":123,"percentile":196},"2025-11-29",0.72339,{"date":198,"score":123,"percentile":199},"2025-11-30",0.72334,{"date":201,"score":123,"percentile":202},"2025-12-01",0.7246,{"date":204,"score":123,"percentile":205},"2025-12-02",0.72471,{"date":207,"score":123,"percentile":205},"2025-12-03",{"date":209,"score":123,"percentile":139},"2025-12-04",{"date":211,"score":123,"percentile":148},"2025-12-05",{"date":213,"score":123,"percentile":214},"2025-12-06",0.72355,{"date":216,"score":123,"percentile":217},"2025-12-07",0.72361,{"date":219,"score":220,"percentile":221},"2025-12-08",0.00815,0.73551,{"date":223,"score":220,"percentile":224},"2025-12-09",0.73579,{"date":226,"score":220,"percentile":227},"2025-12-10",0.73611,{"date":229,"score":220,"percentile":230},"2025-12-11",0.73628,{"date":232,"score":220,"percentile":233},"2025-12-12",0.73651,{"date":235,"score":220,"percentile":236},"2025-12-13",0.73653,{"date":238,"score":220,"percentile":236},"2025-12-14",{"date":240,"score":220,"percentile":241},"2025-12-15",0.73657,{"date":243,"score":220,"percentile":244},"2025-12-16",0.73664,{"date":246,"score":220,"percentile":247},"2025-12-17",0.73675,{"date":249,"score":220,"percentile":250},"2025-12-18",0.73697,{"date":252,"score":220,"percentile":253},"2025-12-19",0.73715,{"date":255,"score":220,"percentile":253},"2025-12-20",{"date":257,"score":220,"percentile":258},"2025-12-21",0.73708,{"date":260,"score":220,"percentile":258},"2025-12-22",{"date":262,"score":220,"percentile":250},"2025-12-23",{"date":264,"score":220,"percentile":265},"2025-12-24",0.73709,{"date":267,"score":220,"percentile":268},"2025-12-25",0.73737,{"date":270,"score":220,"percentile":271},"2025-12-26",0.73735,{"date":273,"score":274,"percentile":275},"2025-12-27",0.008,0.7351,{"date":277,"score":220,"percentile":278},"2025-12-28",0.73712,{"date":280,"score":220,"percentile":281},"2025-12-29",0.73705,{"date":283,"score":220,"percentile":284},"2025-12-30",0.73718,{"date":286,"score":220,"percentile":287},"2025-12-31",0.73748,{"date":289,"score":220,"percentile":290},"2026-01-01",0.73895,{"date":292,"score":220,"percentile":293},"2026-01-02",0.73894,{"date":295,"score":220,"percentile":293},"2026-01-03",{"date":297,"score":220,"percentile":298},"2026-01-04",0.7376,{"date":300,"score":220,"percentile":301},"2026-01-05",0.73751,{"date":303,"score":220,"percentile":304},"2026-01-06",0.73766,{"date":306,"score":220,"percentile":307},"2026-01-07",0.73775,{"date":309,"score":220,"percentile":310},"2026-01-08",0.73787,{"date":312,"score":220,"percentile":313},"2026-01-09",0.73793,{"date":315,"score":220,"percentile":316},"2026-01-10",0.73786,{"date":318,"score":220,"percentile":319},"2026-01-11",0.73773,{"date":321,"score":220,"percentile":322},"2026-01-12",0.73763,{"date":324,"score":220,"percentile":325},"2026-01-13",0.73761,{"date":327,"score":220,"percentile":316},"2026-01-14",{"date":329,"score":220,"percentile":330},"2026-01-15",0.73796,{"date":332,"score":220,"percentile":333},"2026-01-16",0.73813,{"date":335,"score":220,"percentile":336},"2026-01-17",0.73811,{"date":338,"score":220,"percentile":339},"2026-01-18",0.73788,{"date":341,"score":220,"percentile":307},"2026-01-19",{"date":343,"score":220,"percentile":344},"2026-01-20",0.73779,{"date":346,"score":220,"percentile":347},"2026-01-21",0.73783,{"date":349,"score":220,"percentile":350},"2026-01-22",0.73789,{"date":352,"score":220,"percentile":353},"2026-01-23",0.73818,{"date":355,"score":220,"percentile":356},"2026-01-24",0.73827,{"date":358,"score":220,"percentile":359},"2026-01-25",0.7381,{"date":361,"score":220,"percentile":362},"2026-01-26",0.73808,{"date":364,"score":220,"percentile":333},"2026-01-27",{"date":366,"score":220,"percentile":356},"2026-01-28",{"date":368,"score":220,"percentile":369},"2026-01-29",0.73828,{"date":371,"score":220,"percentile":372},"2026-01-30",0.73833,{"date":374,"score":220,"percentile":375},"2026-01-31",0.73839,{"date":377,"score":220,"percentile":378},"2026-02-01",0.73962,[380],{"source":70,"cvss_v2_0":381,"cvss_v3_0":9,"cvss_v3_1":386,"cvss_v4_0":9},{"baseScore":382,"baseSeverity":9,"vectorString":383,"impactScore":384,"exploitabilityScore":385},4.3,"AV:N/AC:M/Au:N/C:N/I:N/A:P",2.9,8.6,{"baseScore":68,"baseSeverity":387,"vectorString":71,"impactScore":388,"exploitabilityScore":389},"HIGH",6,10,[391,406,413,419,433],{"ecosystem":9,"name":392,"vendor":393,"product":394,"cpe_part":395,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":396},"ubuntu linux","canonical","ubuntu_linux","o",[397,400,402,404],{"version":398,"is_range":64,"range_type":399,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"14.04","cpe",{"version":401,"is_range":64,"range_type":399,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"16.04",{"version":403,"is_range":64,"range_type":399,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"18.04",{"version":405,"is_range":64,"range_type":399,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"19.10",{"ecosystem":9,"name":407,"vendor":408,"product":409,"cpe_part":395,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":410},"debian linux","debian","debian_linux",[411],{"version":412,"is_range":64,"range_type":399,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0",{"ecosystem":9,"name":414,"vendor":415,"product":414,"cpe_part":395,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":416},"fedora","fedoraproject",[417],{"version":418,"is_range":64,"range_type":399,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"32",{"ecosystem":9,"name":420,"vendor":420,"product":420,"cpe_part":421,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":422},"libgd","a",[423,429,431],{"version":424,"is_range":425,"range_type":399,"version_start":426,"version_start_type":427,"version_end":428,"version_end_type":427,"fixed_in":9},"gte2.1.1_lte2.2.5",true,"2.1.1","including","2.2.5",{"version":430,"is_range":64,"range_type":399,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.1.0",{"version":432,"is_range":64,"range_type":399,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.1.0:rc2",{"ecosystem":9,"name":434,"vendor":435,"product":434,"cpe_part":395,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":436},"leap","opensuse",[437],{"version":438,"is_range":64,"range_type":399,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"15.1"]