[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2018-14662":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":1017,"aliases":1018,"duplicate_of":9,"upstream":1019,"downstream":1020,"duplicates":1041,"related":1042,"reserved_at":9,"published_at":1046,"modified_at":1047,"state":1048,"summary":1049,"references_raw":1058,"kevs":1103,"epss":1104,"epss_history":1107,"metrics":1374,"affected":1392},"CVE-2018-14662","It was found Ceph versions before 13.2.4 that authenticated ceph users with read only permissions could steal dm-crypt encryption keys used in ceph disk encryption.",null,[11,548],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-732","Incorrect Permission Assignment for Critical Resource","The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.","weakness","Draft","Class","High",[20,68,222,256,298,320,333,337,498,502,506],{"id":21,"name":22,"techniques":23},"CAPEC-1","Accessing Functionality Not Properly Constrained by ACLs",[24],{"id":25,"name":26,"tactics":27,"countermeasures":43},"T1574.010","Services File Permissions Weakness",[28,31,34,37,40],{"id":29,"name":30},"TA0110","Persistence",{"id":32,"name":33},"TA0111","Privilege Escalation",{"id":35,"name":36},"TA0030","Defense Evasion",{"id":38,"name":39},"TA0005","Stealth",{"id":41,"name":42},"TA0104","Execution",[44,49,53,58,63],{"id":45,"name":46,"tactic":47},"D3-SWI","Software Inventory",{"name":48},"Model",{"id":50,"name":51,"tactic":52},"D3-AVE","Asset Vulnerability Enumeration",{"name":48},{"id":54,"name":55,"tactic":56},"D3-SBV","Service Binary Verification",{"name":57},"Detect",{"id":59,"name":60,"tactic":61},"D3-SU","Software Update",{"name":62},"Harden",{"id":64,"name":65,"tactic":66},"D3-RS","Restore Software",{"name":67},"Restore",{"id":69,"name":70,"techniques":71},"CAPEC-122","Privilege Abuse",[72],{"id":73,"name":74,"tactics":75,"countermeasures":78},"T1548","Abuse Elevation Control Mechanism",[76,77],{"id":35,"name":36},{"id":32,"name":33},[79,83,87,91,95,99,103,107,111,115,119,123,127,131,136,140,145,149,153,157,161,165,169,173,177,181,186,190,194,198,202,206,210,214,218],{"id":80,"name":81,"tactic":82},"D3-CI","Configuration Inventory",{"name":48},{"id":84,"name":85,"tactic":86},"D3-AM","Access Modeling",{"name":48},{"id":88,"name":89,"tactic":90},"D3-DI","Data Inventory",{"name":48},{"id":92,"name":93,"tactic":94},"D3-NTPM","Network Traffic Policy Mapping",{"name":48},{"id":96,"name":97,"tactic":98},"D3-AEM","Application Exception Monitoring",{"name":57},{"id":100,"name":101,"tactic":102},"D3-SCA","System Call Analysis",{"name":57},{"id":104,"name":105,"tactic":106},"D3-SFA","System File Analysis",{"name":57},{"id":108,"name":109,"tactic":110},"D3-FA","File Analysis",{"name":57},{"id":112,"name":113,"tactic":114},"D3-FIM","File Integrity Monitoring",{"name":57},{"id":116,"name":117,"tactic":118},"D3-OPM","Operational Process Monitoring",{"name":57},{"id":120,"name":121,"tactic":122},"D3-DA","Dynamic Analysis",{"name":57},{"id":124,"name":125,"tactic":126},"D3-EFA","Emulated File Analysis",{"name":57},{"id":128,"name":129,"tactic":130},"D3-PSA","Process Spawn Analysis",{"name":57},{"id":132,"name":133,"tactic":134},"D3-FEV","File Eviction",{"name":135},"Evict",{"id":137,"name":138,"tactic":139},"D3-AL","Account Locking",{"name":135},{"id":141,"name":142,"tactic":143},"D3-DF","Decoy File",{"name":144},"Deceive",{"id":146,"name":147,"tactic":148},"D3-FE","File Encryption",{"name":62},{"id":150,"name":151,"tactic":152},"D3-AA","Agent Authentication",{"name":62},{"id":154,"name":155,"tactic":156},"D3-CDP","Change Default Password",{"name":62},{"id":158,"name":159,"tactic":160},"D3-SCP","System Configuration Permissions",{"name":62},{"id":162,"name":163,"tactic":164},"D3-RC","Restore Configuration",{"name":67},{"id":166,"name":167,"tactic":168},"D3-RF","Restore File",{"name":67},{"id":170,"name":171,"tactic":172},"D3-ULA","Unlock Account",{"name":67},{"id":174,"name":175,"tactic":176},"D3-RUAA","Restore User Account Access",{"name":67},{"id":178,"name":179,"tactic":180},"D3-RD","Restore Database",{"name":67},{"id":182,"name":183,"tactic":184},"D3-SCF","System Call Filtering",{"name":185},"Isolate",{"id":187,"name":188,"tactic":189},"D3-CF","Content Filtering",{"name":185},{"id":191,"name":192,"tactic":193},"D3-LFP","Local File Permissions",{"name":185},{"id":195,"name":196,"tactic":197},"D3-RFAM","Remote File Access Mediation",{"name":185},{"id":199,"name":200,"tactic":201},"D3-CQ","Content Quarantine",{"name":185},{"id":203,"name":204,"tactic":205},"D3-CM","Content Modification",{"name":185},{"id":207,"name":208,"tactic":209},"D3-UAP","User Account Permissions",{"name":185},{"id":211,"name":212,"tactic":213},"D3-EAL","Executable Allowlisting",{"name":185},{"id":215,"name":216,"tactic":217},"D3-EDL","Executable Denylisting",{"name":185},{"id":219,"name":220,"tactic":221},"D3-HBPI","Hardware-based Process Isolation",{"name":185},{"id":223,"name":224,"techniques":225},"CAPEC-127","Directory Indexing",[226],{"id":227,"name":228,"tactics":229,"countermeasures":233},"T1083","File and Directory Discovery",[230],{"id":231,"name":232},"TA0102","Discovery",[234,236,238,240,242,244,246,248,250,252,254],{"id":108,"name":109,"tactic":235},{"name":57},{"id":112,"name":113,"tactic":237},{"name":57},{"id":132,"name":133,"tactic":239},{"name":135},{"id":141,"name":142,"tactic":241},{"name":144},{"id":146,"name":147,"tactic":243},{"name":62},{"id":166,"name":167,"tactic":245},{"name":67},{"id":191,"name":192,"tactic":247},{"name":185},{"id":187,"name":188,"tactic":249},{"name":185},{"id":195,"name":196,"tactic":251},{"name":185},{"id":199,"name":200,"tactic":253},{"name":185},{"id":203,"name":204,"tactic":255},{"name":185},{"id":257,"name":258,"techniques":259},"CAPEC-17","Using Malicious Files",[260,280],{"id":261,"name":262,"tactics":263,"countermeasures":269},"T1574.005","Executable Installer File Permissions Weakness",[264,265,266,267,268],{"id":29,"name":30},{"id":32,"name":33},{"id":35,"name":36},{"id":38,"name":39},{"id":41,"name":42},[270,272,274,276,278],{"id":45,"name":46,"tactic":271},{"name":48},{"id":50,"name":51,"tactic":273},{"name":48},{"id":54,"name":55,"tactic":275},{"name":57},{"id":59,"name":60,"tactic":277},{"name":62},{"id":64,"name":65,"tactic":279},{"name":67},{"id":25,"name":26,"tactics":281,"countermeasures":287},[282,283,284,285,286],{"id":29,"name":30},{"id":32,"name":33},{"id":35,"name":36},{"id":38,"name":39},{"id":41,"name":42},[288,290,292,294,296],{"id":45,"name":46,"tactic":289},{"name":48},{"id":50,"name":51,"tactic":291},{"name":48},{"id":54,"name":55,"tactic":293},{"name":57},{"id":59,"name":60,"tactic":295},{"name":62},{"id":64,"name":65,"tactic":297},{"name":67},{"id":299,"name":300,"techniques":301},"CAPEC-180","Exploiting Incorrectly Configured Access Control Security Levels",[302],{"id":25,"name":26,"tactics":303,"countermeasures":309},[304,305,306,307,308],{"id":29,"name":30},{"id":32,"name":33},{"id":35,"name":36},{"id":38,"name":39},{"id":41,"name":42},[310,312,314,316,318],{"id":45,"name":46,"tactic":311},{"name":48},{"id":50,"name":51,"tactic":313},{"name":48},{"id":54,"name":55,"tactic":315},{"name":57},{"id":59,"name":60,"tactic":317},{"name":62},{"id":64,"name":65,"tactic":319},{"name":67},{"id":321,"name":322,"techniques":323},"CAPEC-206","Signing Malicious Code",[324],{"id":325,"name":326,"tactics":327,"countermeasures":332},"T1553.002","Code Signing",[328,329],{"id":35,"name":36},{"id":330,"name":331},"TA0112","Defense Impairment",[],{"id":334,"name":335,"techniques":336},"CAPEC-234","Hijacking a privileged process",[],{"id":338,"name":339,"techniques":340},"CAPEC-60","Reusing Session IDs (aka Session Replay)",[341,393],{"id":342,"name":343,"tactics":344,"countermeasures":348},"T1134.001","Token Impersonation/Theft",[345,346,347],{"id":35,"name":36},{"id":38,"name":39},{"id":32,"name":33},[349,353,357,361,365,369,373,377,381,385,389],{"id":350,"name":351,"tactic":352},"D3-CCSA","Credential Compromise Scope Analysis",{"name":57},{"id":354,"name":355,"tactic":356},"D3-CR","Credential Revocation",{"name":135},{"id":358,"name":359,"tactic":360},"D3-ANCI","Authentication Cache Invalidation",{"name":135},{"id":362,"name":363,"tactic":364},"D3-DUC","Decoy User Credential",{"name":144},{"id":366,"name":367,"tactic":368},"D3-CH","Credential Hardening",{"name":62},{"id":370,"name":371,"tactic":372},"D3-MFA","Multi-factor Authentication",{"name":62},{"id":374,"name":375,"tactic":376},"D3-CRO","Credential Rotation",{"name":62},{"id":378,"name":379,"tactic":380},"D3-TB","Token Binding",{"name":62},{"id":382,"name":383,"tactic":384},"D3-TBA","Token-based Authentication",{"name":62},{"id":386,"name":387,"tactic":388},"D3-RIC","Reissue Credential",{"name":67},{"id":390,"name":391,"tactic":392},"D3-CTS","Credential Transmission Scoping",{"name":185},{"id":394,"name":395,"tactics":396,"countermeasures":401},"T1550.004","Web Session Cookie",[397,398],{"id":35,"name":36},{"id":399,"name":400},"TA0109","Lateral Movement",[402,406,410,414,418,422,426,430,434,438,442,444,446,450,454,458,462,464,466,468,470,472,474,476,480,484,486,488,492,496],{"id":403,"name":404,"tactic":405},"D3-UGLPA","User Geolocation Logon Pattern Analysis",{"name":57},{"id":407,"name":408,"tactic":409},"D3-PMAD","Protocol Metadata Anomaly Detection",{"name":57},{"id":411,"name":412,"tactic":413},"D3-CSPP","Client-server Payload Profiling",{"name":57},{"id":415,"name":416,"tactic":417},"D3-PHDURA","Per Host Download-Upload Ratio Analysis",{"name":57},{"id":419,"name":420,"tactic":421},"D3-NTSA","Network Traffic Signature Analysis",{"name":57},{"id":423,"name":424,"tactic":425},"D3-APCA","Application Protocol Command Analysis",{"name":57},{"id":427,"name":428,"tactic":429},"D3-NTCD","Network Traffic Community Deviation",{"name":57},{"id":431,"name":432,"tactic":433},"D3-RTSD","Remote Terminal Session Detection",{"name":57},{"id":435,"name":436,"tactic":437},"D3-PLA","Process Lineage Analysis",{"name":57},{"id":439,"name":440,"tactic":441},"D3-PSMD","Process Self-Modification Detection",{"name":57},{"id":128,"name":129,"tactic":443},{"name":57},{"id":350,"name":351,"tactic":445},{"name":57},{"id":447,"name":448,"tactic":449},"D3-PT","Process Termination",{"name":135},{"id":451,"name":452,"tactic":453},"D3-PS","Process Suspension",{"name":135},{"id":455,"name":456,"tactic":457},"D3-HR","Host Reboot",{"name":135},{"id":459,"name":460,"tactic":461},"D3-HS","Host Shutdown",{"name":135},{"id":354,"name":355,"tactic":463},{"name":135},{"id":358,"name":359,"tactic":465},{"name":135},{"id":362,"name":363,"tactic":467},{"name":144},{"id":366,"name":367,"tactic":469},{"name":62},{"id":370,"name":371,"tactic":471},{"name":62},{"id":374,"name":375,"tactic":473},{"name":62},{"id":386,"name":387,"tactic":475},{"name":67},{"id":477,"name":478,"tactic":479},"D3-NTF","Network Traffic Filtering",{"name":185},{"id":481,"name":482,"tactic":483},"D3-KBPI","Kernel-based Process Isolation",{"name":185},{"id":182,"name":183,"tactic":485},{"name":185},{"id":219,"name":220,"tactic":487},{"name":185},{"id":489,"name":490,"tactic":491},"D3-ABPI","Application-based Process Isolation",{"name":185},{"id":493,"name":494,"tactic":495},"D3-WSAM","Web Session Access Mediation",{"name":185},{"id":390,"name":391,"tactic":497},{"name":185},{"id":499,"name":500,"techniques":501},"CAPEC-61","Session Fixation",[],{"id":503,"name":504,"techniques":505},"CAPEC-62","Cross Site Request Forgery",[],{"id":507,"name":508,"techniques":509},"CAPEC-642","Replace Binaries",[510,516,530],{"id":511,"name":512,"tactics":513,"countermeasures":515},"T1505.005","Terminal Services DLL",[514],{"id":29,"name":30},[],{"id":517,"name":518,"tactics":519,"countermeasures":521},"T1554","Compromise Host Software Binary",[520],{"id":29,"name":30},[522,524,526,528],{"id":45,"name":46,"tactic":523},{"name":48},{"id":50,"name":51,"tactic":525},{"name":48},{"id":59,"name":60,"tactic":527},{"name":62},{"id":64,"name":65,"tactic":529},{"name":67},{"id":261,"name":262,"tactics":531,"countermeasures":537},[532,533,534,535,536],{"id":29,"name":30},{"id":32,"name":33},{"id":35,"name":36},{"id":38,"name":39},{"id":41,"name":42},[538,540,542,544,546],{"id":45,"name":46,"tactic":539},{"name":48},{"id":50,"name":51,"tactic":541},{"name":48},{"id":54,"name":55,"tactic":543},{"name":57},{"id":59,"name":60,"tactic":545},{"name":62},{"id":64,"name":65,"tactic":547},{"name":67},{"_key":549,"id":549,"name":550,"description":551,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":552},"CWE-285","Improper Authorization","The product does not perform or incorrectly performs an authorization check when an actor attempts to access a resource or perform an action.",[553,573,577,605,736,774,778,782,786,790,794,798,893,975,1005,1009,1013],{"id":21,"name":22,"techniques":554},[555],{"id":25,"name":26,"tactics":556,"countermeasures":562},[557,558,559,560,561],{"id":29,"name":30},{"id":32,"name":33},{"id":35,"name":36},{"id":38,"name":39},{"id":41,"name":42},[563,565,567,569,571],{"id":45,"name":46,"tactic":564},{"name":48},{"id":50,"name":51,"tactic":566},{"name":48},{"id":54,"name":55,"tactic":568},{"name":57},{"id":59,"name":60,"tactic":570},{"name":62},{"id":64,"name":65,"tactic":572},{"name":67},{"id":574,"name":575,"techniques":576},"CAPEC-104","Cross Zone Scripting",[],{"id":223,"name":224,"techniques":578},[579],{"id":227,"name":228,"tactics":580,"countermeasures":582},[581],{"id":231,"name":232},[583,585,587,589,591,593,595,597,599,601,603],{"id":108,"name":109,"tactic":584},{"name":57},{"id":112,"name":113,"tactic":586},{"name":57},{"id":132,"name":133,"tactic":588},{"name":135},{"id":141,"name":142,"tactic":590},{"name":144},{"id":146,"name":147,"tactic":592},{"name":62},{"id":166,"name":167,"tactic":594},{"name":67},{"id":191,"name":192,"tactic":596},{"name":185},{"id":187,"name":188,"tactic":598},{"name":185},{"id":195,"name":196,"tactic":600},{"name":185},{"id":199,"name":200,"tactic":602},{"name":185},{"id":203,"name":204,"tactic":604},{"name":185},{"id":606,"name":607,"techniques":608},"CAPEC-13","Subverting Environment Variable Values",[609,662,696],{"id":610,"name":611,"tactics":612,"countermeasures":615},"T1562.003","Impair Command History Logging",[613,614],{"id":35,"name":36},{"id":38,"name":39},[616,618,620,622,624,626,628,632,634,638,642,644,646,648,650,652,654,656,658,660],{"id":80,"name":81,"tactic":617},{"name":48},{"id":108,"name":109,"tactic":619},{"name":57},{"id":112,"name":113,"tactic":621},{"name":57},{"id":120,"name":121,"tactic":623},{"name":57},{"id":124,"name":125,"tactic":625},{"name":57},{"id":132,"name":133,"tactic":627},{"name":135},{"id":629,"name":630,"tactic":631},"D3-RKD","Registry Key Deletion",{"name":135},{"id":141,"name":142,"tactic":633},{"name":144},{"id":635,"name":636,"tactic":637},"D3-DRA","Disable Remote Access",{"name":62},{"id":639,"name":640,"tactic":641},"D3-ACH","Application Configuration Hardening",{"name":62},{"id":146,"name":147,"tactic":643},{"name":62},{"id":162,"name":163,"tactic":645},{"name":67},{"id":166,"name":167,"tactic":647},{"name":67},{"id":199,"name":200,"tactic":649},{"name":185},{"id":187,"name":188,"tactic":651},{"name":185},{"id":191,"name":192,"tactic":653},{"name":185},{"id":195,"name":196,"tactic":655},{"name":185},{"id":203,"name":204,"tactic":657},{"name":185},{"id":211,"name":212,"tactic":659},{"name":185},{"id":215,"name":216,"tactic":661},{"name":185},{"id":663,"name":664,"tactics":665,"countermeasures":671},"T1574.006","Dynamic Linker Hijacking",[666,667,668,669,670],{"id":29,"name":30},{"id":32,"name":33},{"id":35,"name":36},{"id":38,"name":39},{"id":41,"name":42},[672,674,676,678,680,682,684,686,688,690,692,694],{"id":104,"name":105,"tactic":673},{"name":57},{"id":108,"name":109,"tactic":675},{"name":57},{"id":112,"name":113,"tactic":677},{"name":57},{"id":132,"name":133,"tactic":679},{"name":135},{"id":141,"name":142,"tactic":681},{"name":144},{"id":146,"name":147,"tactic":683},{"name":62},{"id":166,"name":167,"tactic":685},{"name":67},{"id":187,"name":188,"tactic":687},{"name":185},{"id":191,"name":192,"tactic":689},{"name":185},{"id":195,"name":196,"tactic":691},{"name":185},{"id":199,"name":200,"tactic":693},{"name":185},{"id":203,"name":204,"tactic":695},{"name":185},{"id":697,"name":698,"tactics":699,"countermeasures":705},"T1574.007","Path Interception by PATH Environment Variable",[700,701,702,703,704],{"id":29,"name":30},{"id":32,"name":33},{"id":35,"name":36},{"id":38,"name":39},{"id":41,"name":42},[706,708,710,712,714,716,718,720,722,724,726,728,730,732,734],{"id":108,"name":109,"tactic":707},{"name":57},{"id":112,"name":113,"tactic":709},{"name":57},{"id":120,"name":121,"tactic":711},{"name":57},{"id":124,"name":125,"tactic":713},{"name":57},{"id":132,"name":133,"tactic":715},{"name":135},{"id":141,"name":142,"tactic":717},{"name":144},{"id":146,"name":147,"tactic":719},{"name":62},{"id":166,"name":167,"tactic":721},{"name":67},{"id":187,"name":188,"tactic":723},{"name":185},{"id":191,"name":192,"tactic":725},{"name":185},{"id":195,"name":196,"tactic":727},{"name":185},{"id":199,"name":200,"tactic":729},{"name":185},{"id":203,"name":204,"tactic":731},{"name":185},{"id":211,"name":212,"tactic":733},{"name":185},{"id":215,"name":216,"tactic":735},{"name":185},{"id":257,"name":258,"techniques":737},[738,756],{"id":261,"name":262,"tactics":739,"countermeasures":745},[740,741,742,743,744],{"id":29,"name":30},{"id":32,"name":33},{"id":35,"name":36},{"id":38,"name":39},{"id":41,"name":42},[746,748,750,752,754],{"id":45,"name":46,"tactic":747},{"name":48},{"id":50,"name":51,"tactic":749},{"name":48},{"id":54,"name":55,"tactic":751},{"name":57},{"id":59,"name":60,"tactic":753},{"name":62},{"id":64,"name":65,"tactic":755},{"name":67},{"id":25,"name":26,"tactics":757,"countermeasures":763},[758,759,760,761,762],{"id":29,"name":30},{"id":32,"name":33},{"id":35,"name":36},{"id":38,"name":39},{"id":41,"name":42},[764,766,768,770,772],{"id":45,"name":46,"tactic":765},{"name":48},{"id":50,"name":51,"tactic":767},{"name":48},{"id":54,"name":55,"tactic":769},{"name":57},{"id":59,"name":60,"tactic":771},{"name":62},{"id":64,"name":65,"tactic":773},{"name":67},{"id":775,"name":776,"techniques":777},"CAPEC-39","Manipulating Opaque Client-based Data Tokens",[],{"id":779,"name":780,"techniques":781},"CAPEC-402","Bypassing ATA Password Security",[],{"id":783,"name":784,"techniques":785},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":787,"name":788,"techniques":789},"CAPEC-5","Blue Boxing",[],{"id":791,"name":792,"techniques":793},"CAPEC-51","Poison Web Service Registry",[],{"id":795,"name":796,"techniques":797},"CAPEC-59","Session Credential Falsification through Prediction",[],{"id":338,"name":339,"techniques":799},[800,828],{"id":342,"name":343,"tactics":801,"countermeasures":805},[802,803,804],{"id":35,"name":36},{"id":38,"name":39},{"id":32,"name":33},[806,808,810,812,814,816,818,820,822,824,826],{"id":350,"name":351,"tactic":807},{"name":57},{"id":354,"name":355,"tactic":809},{"name":135},{"id":358,"name":359,"tactic":811},{"name":135},{"id":362,"name":363,"tactic":813},{"name":144},{"id":366,"name":367,"tactic":815},{"name":62},{"id":370,"name":371,"tactic":817},{"name":62},{"id":374,"name":375,"tactic":819},{"name":62},{"id":378,"name":379,"tactic":821},{"name":62},{"id":382,"name":383,"tactic":823},{"name":62},{"id":386,"name":387,"tactic":825},{"name":67},{"id":390,"name":391,"tactic":827},{"name":185},{"id":394,"name":395,"tactics":829,"countermeasures":832},[830,831],{"id":35,"name":36},{"id":399,"name":400},[833,835,837,839,841,843,845,847,849,851,853,855,857,859,861,863,865,867,869,871,873,875,877,879,881,883,885,887,889,891],{"id":403,"name":404,"tactic":834},{"name":57},{"id":407,"name":408,"tactic":836},{"name":57},{"id":411,"name":412,"tactic":838},{"name":57},{"id":415,"name":416,"tactic":840},{"name":57},{"id":419,"name":420,"tactic":842},{"name":57},{"id":423,"name":424,"tactic":844},{"name":57},{"id":427,"name":428,"tactic":846},{"name":57},{"id":431,"name":432,"tactic":848},{"name":57},{"id":435,"name":436,"tactic":850},{"name":57},{"id":439,"name":440,"tactic":852},{"name":57},{"id":128,"name":129,"tactic":854},{"name":57},{"id":350,"name":351,"tactic":856},{"name":57},{"id":447,"name":448,"tactic":858},{"name":135},{"id":451,"name":452,"tactic":860},{"name":135},{"id":455,"name":456,"tactic":862},{"name":135},{"id":459,"name":460,"tactic":864},{"name":135},{"id":354,"name":355,"tactic":866},{"name":135},{"id":358,"name":359,"tactic":868},{"name":135},{"id":362,"name":363,"tactic":870},{"name":144},{"id":366,"name":367,"tactic":872},{"name":62},{"id":370,"name":371,"tactic":874},{"name":62},{"id":374,"name":375,"tactic":876},{"name":62},{"id":386,"name":387,"tactic":878},{"name":67},{"id":477,"name":478,"tactic":880},{"name":185},{"id":481,"name":482,"tactic":882},{"name":185},{"id":182,"name":183,"tactic":884},{"name":185},{"id":219,"name":220,"tactic":886},{"name":185},{"id":489,"name":490,"tactic":888},{"name":185},{"id":493,"name":494,"tactic":890},{"name":185},{"id":390,"name":391,"tactic":892},{"name":185},{"id":894,"name":895,"techniques":896},"CAPEC-647","Collect Data from Registries",[897,927,943],{"id":898,"name":899,"tactics":900,"countermeasures":904},"T1005","Data from Local System",[901],{"id":902,"name":903},"TA0100","Collection",[905,907,909,911,913,915,917,919,921,923,925],{"id":108,"name":109,"tactic":906},{"name":57},{"id":112,"name":113,"tactic":908},{"name":57},{"id":132,"name":133,"tactic":910},{"name":135},{"id":141,"name":142,"tactic":912},{"name":144},{"id":146,"name":147,"tactic":914},{"name":62},{"id":166,"name":167,"tactic":916},{"name":67},{"id":187,"name":188,"tactic":918},{"name":185},{"id":191,"name":192,"tactic":920},{"name":185},{"id":195,"name":196,"tactic":922},{"name":185},{"id":199,"name":200,"tactic":924},{"name":185},{"id":203,"name":204,"tactic":926},{"name":185},{"id":928,"name":929,"tactics":930,"countermeasures":932},"T1012","Query Registry",[931],{"id":231,"name":232},[933,935,937,939,941],{"id":88,"name":89,"tactic":934},{"name":48},{"id":100,"name":101,"tactic":936},{"name":57},{"id":158,"name":159,"tactic":938},{"name":62},{"id":178,"name":179,"tactic":940},{"name":67},{"id":182,"name":183,"tactic":942},{"name":185},{"id":944,"name":945,"tactics":946,"countermeasures":950},"T1552.002","Credentials in Registry",[947],{"id":948,"name":949},"TA0031","Credential Access",[951,953,955,957,959,961,963,965,967,969,971,973],{"id":88,"name":89,"tactic":952},{"name":48},{"id":350,"name":351,"tactic":954},{"name":57},{"id":354,"name":355,"tactic":956},{"name":135},{"id":358,"name":359,"tactic":958},{"name":135},{"id":362,"name":363,"tactic":960},{"name":144},{"id":366,"name":367,"tactic":962},{"name":62},{"id":370,"name":371,"tactic":964},{"name":62},{"id":374,"name":375,"tactic":966},{"name":62},{"id":158,"name":159,"tactic":968},{"name":62},{"id":178,"name":179,"tactic":970},{"name":67},{"id":386,"name":387,"tactic":972},{"name":67},{"id":390,"name":391,"tactic":974},{"name":185},{"id":976,"name":977,"techniques":978},"CAPEC-668","Key Negotiation of Bluetooth Attack (KNOB)",[979],{"id":980,"name":981,"tactics":982,"countermeasures":986},"T1565.002","Transmitted Data Manipulation",[983],{"id":984,"name":985},"TA0105","Impact",[987,989,991,993,995,997,999,1001,1003],{"id":403,"name":404,"tactic":988},{"name":57},{"id":407,"name":408,"tactic":990},{"name":57},{"id":411,"name":412,"tactic":992},{"name":57},{"id":415,"name":416,"tactic":994},{"name":57},{"id":419,"name":420,"tactic":996},{"name":57},{"id":423,"name":424,"tactic":998},{"name":57},{"id":427,"name":428,"tactic":1000},{"name":57},{"id":431,"name":432,"tactic":1002},{"name":57},{"id":477,"name":478,"tactic":1004},{"name":185},{"id":1006,"name":1007,"techniques":1008},"CAPEC-76","Manipulating Web Input to File System Calls",[],{"id":1010,"name":1011,"techniques":1012},"CAPEC-77","Manipulating User-Controlled Variables",[],{"id":1014,"name":1015,"techniques":1016},"CAPEC-87","Forceful Browsing",[],[],[],[],[1021,1023,1025,1027,1029,1031,1033,1035,1037,1039],{"_key":1022},"SUSE-SU-2019:0499-1",{"_key":1024},"SUSE-SU-2019:0586-1",{"_key":1026},"OPENSUSE-SU-2019:1284-1",{"_key":1028},"RHSA-2019:2538",{"_key":1030},"DLA-1696-1",{"_key":1032},"DLA-2735-1",{"_key":1034},"UBUNTU-CVE-2018-14662",{"_key":1036},"USN-4035-1",{"_key":1038},"DEBIAN-CVE-2018-14662",{"_key":1040},"USN-7706-1",[],[1043,1044,1045],{"_key":1022},{"_key":1024},{"_key":1026},"2019-01-15T21:00:00.000Z","2024-08-05T09:38:12.959Z","Modified",{"cisa_kev":1050,"cisa_ransomware":1050,"cisa_vendor":9,"epss_severity":1051,"epss_score":1052,"severity":1053,"severity_score":1054,"severity_version":1055,"severity_source":1056,"severity_vector":1057,"severity_status":1048},false,"low",0.00062,"medium",5.7,"v3.1","nvd","CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",[1059,1067,1074,1080,1085,1090,1095,1099],{"url":1060,"sources":1061,"tags":1063},"https://lists.debian.org/debian-lts-announce/2019/03/msg00002.html",[1062,1056],"cve.org",[1064,1065,1066],"Mailing List","X Refsource MLIST","Third Party Advisory",{"url":1068,"sources":1069,"tags":1070},"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14662",[1062,1056],[1071,1072,1073,1066],"X Refsource CONFIRM","Issue Tracking","Patch",{"url":1075,"sources":1076,"tags":1077},"https://ceph.com/releases/13-2-4-mimic-released",[1062,1056],[1078,1079],"X Refsource MISC","Vendor Advisory",{"url":1081,"sources":1082,"tags":1083},"http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00100.html",[1062,1056],[1079,1084,1064,1066],"X Refsource SUSE",{"url":1086,"sources":1087,"tags":1088},"https://usn.ubuntu.com/4035-1/",[1062,1056],[1079,1089,1066],"X Refsource UBUNTU",{"url":1091,"sources":1092,"tags":1093},"https://access.redhat.com/errata/RHSA-2019:2538",[1062,1056],[1079,1094,1066],"X Refsource REDHAT",{"url":1096,"sources":1097,"tags":1098},"https://access.redhat.com/errata/RHSA-2019:2541",[1062,1056],[1079,1094,1066],{"url":1100,"sources":1101,"tags":1102},"https://lists.debian.org/debian-lts-announce/2021/08/msg00013.html",[1062,1056],[1064,1065,1066],[],{"date":1105,"score":1052,"percentile":1106},"2026-06-03",0.19473,[1108,1112,1115,1118,1120,1123,1126,1129,1132,1135,1138,1141,1144,1147,1150,1154,1157,1160,1163,1166,1169,1172,1175,1178,1181,1184,1187,1190,1193,1196,1199,1202,1204,1206,1209,1212,1215,1218,1220,1223,1225,1228,1231,1235,1238,1241,1244,1247,1250,1253,1256,1259,1262,1265,1267,1270,1273,1276,1279,1282,1285,1288,1291,1293,1296,1299,1302,1305,1308,1310,1313,1316,1319,1322,1325,1329,1332,1335,1338,1341,1344,1347,1350,1353,1356,1359,1362,1365,1368,1371],{"date":1109,"score":1110,"percentile":1111},"2025-11-04",0.00097,0.27531,{"date":1113,"score":1110,"percentile":1114},"2025-11-05",0.27509,{"date":1116,"score":1110,"percentile":1117},"2025-11-06",0.2752,{"date":1119,"score":1110,"percentile":1117},"2025-11-07",{"date":1121,"score":1110,"percentile":1122},"2025-11-08",0.27514,{"date":1124,"score":1110,"percentile":1125},"2025-11-09",0.27471,{"date":1127,"score":1110,"percentile":1128},"2025-11-10",0.27436,{"date":1130,"score":1110,"percentile":1131},"2025-11-11",0.27461,{"date":1133,"score":1110,"percentile":1134},"2025-11-12",0.27504,{"date":1136,"score":1110,"percentile":1137},"2025-11-13",0.27511,{"date":1139,"score":1110,"percentile":1140},"2025-11-14",0.27496,{"date":1142,"score":1110,"percentile":1143},"2025-11-15",0.27485,{"date":1145,"score":1110,"percentile":1146},"2025-11-16",0.27443,{"date":1148,"score":1110,"percentile":1149},"2025-11-17",0.27412,{"date":1151,"score":1152,"percentile":1153},"2025-11-18",0.00138,0.28394,{"date":1155,"score":1152,"percentile":1156},"2025-11-19",0.28418,{"date":1158,"score":1152,"percentile":1159},"2025-11-20",0.28431,{"date":1161,"score":1110,"percentile":1162},"2025-11-21",0.27414,{"date":1164,"score":1110,"percentile":1165},"2025-11-22",0.27415,{"date":1167,"score":1110,"percentile":1168},"2025-11-23",0.27377,{"date":1170,"score":1110,"percentile":1171},"2025-11-24",0.27348,{"date":1173,"score":1110,"percentile":1174},"2025-11-25",0.27341,{"date":1176,"score":1110,"percentile":1177},"2025-11-26",0.2733,{"date":1179,"score":1110,"percentile":1180},"2025-11-27",0.2734,{"date":1182,"score":1110,"percentile":1183},"2025-11-28",0.27311,{"date":1185,"score":1110,"percentile":1186},"2025-11-29",0.27295,{"date":1188,"score":1110,"percentile":1189},"2025-11-30",0.27269,{"date":1191,"score":1110,"percentile":1192},"2025-12-01",0.27321,{"date":1194,"score":1110,"percentile":1195},"2025-12-02",0.27344,{"date":1197,"score":1110,"percentile":1198},"2025-12-03",0.27349,{"date":1200,"score":1110,"percentile":1201},"2025-12-04",0.27284,{"date":1203,"score":1110,"percentile":1192},"2025-12-05",{"date":1205,"score":1110,"percentile":1192},"2025-12-06",{"date":1207,"score":1110,"percentile":1208},"2025-12-07",0.27289,{"date":1210,"score":1110,"percentile":1211},"2025-12-08",0.27298,{"date":1213,"score":1110,"percentile":1214},"2025-12-09",0.27356,{"date":1216,"score":1110,"percentile":1217},"2025-12-10",0.27428,{"date":1219,"score":1110,"percentile":1131},"2025-12-11",{"date":1221,"score":1110,"percentile":1222},"2025-12-12",0.27475,{"date":1224,"score":1110,"percentile":1125},"2025-12-13",{"date":1226,"score":1110,"percentile":1227},"2025-12-14",0.27439,{"date":1229,"score":1110,"percentile":1230},"2025-12-15",0.27408,{"date":1232,"score":1233,"percentile":1234},"2025-12-16",0.00093,0.26666,{"date":1236,"score":1233,"percentile":1237},"2025-12-17",0.26724,{"date":1239,"score":1233,"percentile":1240},"2025-12-18",0.26777,{"date":1242,"score":1233,"percentile":1243},"2025-12-19",0.26787,{"date":1245,"score":1233,"percentile":1246},"2025-12-20",0.26758,{"date":1248,"score":1233,"percentile":1249},"2025-12-21",0.2672,{"date":1251,"score":1233,"percentile":1252},"2025-12-22",0.26688,{"date":1254,"score":1233,"percentile":1255},"2025-12-23",0.26657,{"date":1257,"score":1233,"percentile":1258},"2025-12-24",0.26673,{"date":1260,"score":1233,"percentile":1261},"2025-12-25",0.26747,{"date":1263,"score":1233,"percentile":1264},"2025-12-26",0.26737,{"date":1266,"score":1233,"percentile":1237},"2025-12-27",{"date":1268,"score":1233,"percentile":1269},"2025-12-28",0.26609,{"date":1271,"score":1233,"percentile":1272},"2025-12-29",0.26575,{"date":1274,"score":1233,"percentile":1275},"2025-12-30",0.26573,{"date":1277,"score":1233,"percentile":1278},"2025-12-31",0.26636,{"date":1280,"score":1233,"percentile":1281},"2026-01-01",0.26741,{"date":1283,"score":1233,"percentile":1284},"2026-01-02",0.2674,{"date":1286,"score":1233,"percentile":1287},"2026-01-03",0.26721,{"date":1289,"score":1233,"percentile":1290},"2026-01-04",0.26622,{"date":1292,"score":1233,"percentile":1269},"2026-01-05",{"date":1294,"score":1233,"percentile":1295},"2026-01-06",0.26615,{"date":1297,"score":1233,"percentile":1298},"2026-01-07",0.26642,{"date":1300,"score":1233,"percentile":1301},"2026-01-08",0.26686,{"date":1303,"score":1233,"percentile":1304},"2026-01-09",0.26672,{"date":1306,"score":1233,"percentile":1307},"2026-01-10",0.26645,{"date":1309,"score":1233,"percentile":1290},"2026-01-11",{"date":1311,"score":1233,"percentile":1312},"2026-01-12",0.26577,{"date":1314,"score":1233,"percentile":1315},"2026-01-13",0.26559,{"date":1317,"score":1233,"percentile":1318},"2026-01-14",0.26603,{"date":1320,"score":1233,"percentile":1321},"2026-01-15",0.26601,{"date":1323,"score":1233,"percentile":1324},"2026-01-16",0.26633,{"date":1326,"score":1327,"percentile":1328},"2026-01-17",0.00051,0.164,{"date":1330,"score":1052,"percentile":1331},"2026-01-18",0.19608,{"date":1333,"score":1052,"percentile":1334},"2026-01-19",0.19559,{"date":1336,"score":1052,"percentile":1337},"2026-01-20",0.19545,{"date":1339,"score":1052,"percentile":1340},"2026-01-21",0.19511,{"date":1342,"score":1052,"percentile":1343},"2026-01-22",0.19452,{"date":1345,"score":1052,"percentile":1346},"2026-01-23",0.19551,{"date":1348,"score":1052,"percentile":1349},"2026-01-24",0.19576,{"date":1351,"score":1052,"percentile":1352},"2026-01-25",0.19502,{"date":1354,"score":1052,"percentile":1355},"2026-01-26",0.19403,{"date":1357,"score":1052,"percentile":1358},"2026-01-27",0.19396,{"date":1360,"score":1052,"percentile":1361},"2026-01-28",0.19394,{"date":1363,"score":1052,"percentile":1364},"2026-01-29",0.19365,{"date":1366,"score":1052,"percentile":1367},"2026-01-30",0.19378,{"date":1369,"score":1052,"percentile":1370},"2026-01-31",0.19382,{"date":1372,"score":1052,"percentile":1373},"2026-02-01",0.19406,[1375,1382],{"source":1062,"cvss_v2_0":9,"cvss_v3_0":1376,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":1377,"baseSeverity":1378,"vectorString":1379,"impactScore":1380,"exploitabilityScore":1381},3.5,"LOW","CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",2.3,5.4,{"source":1056,"cvss_v2_0":1383,"cvss_v3_0":1388,"cvss_v3_1":1389,"cvss_v4_0":9},{"baseScore":1384,"baseSeverity":9,"vectorString":1385,"impactScore":1386,"exploitabilityScore":1387},2.7,"AV:A/AC:L/Au:S/C:P/I:N/A:N",2.9,5.1,{"baseScore":1377,"baseSeverity":1378,"vectorString":1379,"impactScore":1380,"exploitabilityScore":1381},{"baseScore":1054,"baseSeverity":1390,"vectorString":1057,"impactScore":1391,"exploitabilityScore":1381},"MEDIUM",6,[1393,1406,1415,1421,1431,1439,1445],{"ecosystem":9,"name":1394,"vendor":1395,"product":1396,"cpe_part":1397,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1398},"ubuntu linux","canonical","ubuntu_linux","o",[1399,1402,1404],{"version":1400,"is_range":1050,"range_type":1401,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"16.04","cpe",{"version":1403,"is_range":1050,"range_type":1401,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"18.10",{"version":1405,"is_range":1050,"range_type":1401,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"19.04",{"ecosystem":9,"name":1407,"vendor":1408,"product":1409,"cpe_part":1397,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1410},"debian linux","debian","debian_linux",[1411,1413],{"version":1412,"is_range":1050,"range_type":1401,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0",{"version":1414,"is_range":1050,"range_type":1401,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0",{"ecosystem":9,"name":1416,"vendor":1417,"product":1416,"cpe_part":1397,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1418},"leap","opensuse",[1419],{"version":1420,"is_range":1050,"range_type":1401,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"15.0",{"ecosystem":9,"name":1422,"vendor":1423,"product":1422,"cpe_part":1424,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1425},"ceph","redhat","a",[1426],{"version":1427,"is_range":1428,"range_type":1401,"version_start":9,"version_start_type":9,"version_end":1429,"version_end_type":1430,"fixed_in":9},"lt13.2.4",true,"13.2.4","excluding",{"ecosystem":9,"name":1432,"vendor":1423,"product":1433,"cpe_part":1424,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1434},"ceph storage","ceph_storage",[1435,1437],{"version":1436,"is_range":1050,"range_type":1401,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.0",{"version":1438,"is_range":1050,"range_type":1401,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.0",{"ecosystem":9,"name":1440,"vendor":1423,"product":1441,"cpe_part":1397,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1442},"enterprise linux server","enterprise_linux_server",[1443],{"version":1444,"is_range":1050,"range_type":1401,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0",{"ecosystem":9,"name":1422,"vendor":1446,"product":1422,"cpe_part":1424,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1447},"[unknown]",[1448],{"version":1429,"is_range":1050,"range_type":1062,"version_start":1429,"version_start_type":1449,"version_end":1429,"version_end_type":1449,"fixed_in":9},"including"]