[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2018-16886":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":660,"aliases":661,"duplicate_of":9,"upstream":664,"downstream":665,"duplicates":676,"related":677,"reserved_at":9,"published_at":686,"modified_at":687,"state":688,"summary":689,"references_raw":698,"kevs":780,"epss":781,"epss_history":784,"metrics":1052,"affected":1072},"CVE-2018-16886","etcd versions 3.2.x before 3.2.26 and 3.3.x before 3.3.11 are vulnerable to an improper authentication issue when role-based access control (RBAC) is used and client-cert-auth is enabled. If an etcd client server TLS certificate contains a Common Name (CN) which matches a valid RBAC username, a remote attacker may authenticate as that user with any valid (trusted) client certificate in a REST API request to the gRPC-gateway.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-287","Improper Authentication","When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.","weakness","Draft","Class","High",[20,182,261,265,269,273,292,481,543,627],{"id":21,"name":22,"techniques":23},"CAPEC-114","Authentication Abuse",[24],{"id":25,"name":26,"tactics":27,"countermeasures":34},"T1548","Abuse Elevation Control Mechanism",[28,31],{"id":29,"name":30},"TA0030","Defense Evasion",{"id":32,"name":33},"TA0111","Privilege Escalation",[35,40,44,48,52,57,61,65,69,73,77,81,85,89,94,98,103,108,112,116,120,125,129,133,137,141,146,150,154,158,162,166,170,174,178],{"id":36,"name":37,"tactic":38},"D3-CI","Configuration Inventory",{"name":39},"Model",{"id":41,"name":42,"tactic":43},"D3-AM","Access Modeling",{"name":39},{"id":45,"name":46,"tactic":47},"D3-DI","Data Inventory",{"name":39},{"id":49,"name":50,"tactic":51},"D3-NTPM","Network Traffic Policy Mapping",{"name":39},{"id":53,"name":54,"tactic":55},"D3-AEM","Application Exception Monitoring",{"name":56},"Detect",{"id":58,"name":59,"tactic":60},"D3-SCA","System Call Analysis",{"name":56},{"id":62,"name":63,"tactic":64},"D3-SFA","System File Analysis",{"name":56},{"id":66,"name":67,"tactic":68},"D3-FA","File Analysis",{"name":56},{"id":70,"name":71,"tactic":72},"D3-FIM","File Integrity Monitoring",{"name":56},{"id":74,"name":75,"tactic":76},"D3-OPM","Operational Process Monitoring",{"name":56},{"id":78,"name":79,"tactic":80},"D3-DA","Dynamic Analysis",{"name":56},{"id":82,"name":83,"tactic":84},"D3-EFA","Emulated File Analysis",{"name":56},{"id":86,"name":87,"tactic":88},"D3-PSA","Process Spawn Analysis",{"name":56},{"id":90,"name":91,"tactic":92},"D3-FEV","File Eviction",{"name":93},"Evict",{"id":95,"name":96,"tactic":97},"D3-AL","Account Locking",{"name":93},{"id":99,"name":100,"tactic":101},"D3-DF","Decoy File",{"name":102},"Deceive",{"id":104,"name":105,"tactic":106},"D3-FE","File Encryption",{"name":107},"Harden",{"id":109,"name":110,"tactic":111},"D3-AA","Agent Authentication",{"name":107},{"id":113,"name":114,"tactic":115},"D3-CDP","Change Default Password",{"name":107},{"id":117,"name":118,"tactic":119},"D3-SCP","System Configuration Permissions",{"name":107},{"id":121,"name":122,"tactic":123},"D3-RC","Restore Configuration",{"name":124},"Restore",{"id":126,"name":127,"tactic":128},"D3-RF","Restore File",{"name":124},{"id":130,"name":131,"tactic":132},"D3-ULA","Unlock Account",{"name":124},{"id":134,"name":135,"tactic":136},"D3-RUAA","Restore User Account Access",{"name":124},{"id":138,"name":139,"tactic":140},"D3-RD","Restore Database",{"name":124},{"id":142,"name":143,"tactic":144},"D3-SCF","System Call Filtering",{"name":145},"Isolate",{"id":147,"name":148,"tactic":149},"D3-CF","Content Filtering",{"name":145},{"id":151,"name":152,"tactic":153},"D3-LFP","Local File Permissions",{"name":145},{"id":155,"name":156,"tactic":157},"D3-RFAM","Remote File Access Mediation",{"name":145},{"id":159,"name":160,"tactic":161},"D3-CQ","Content Quarantine",{"name":145},{"id":163,"name":164,"tactic":165},"D3-CM","Content Modification",{"name":145},{"id":167,"name":168,"tactic":169},"D3-UAP","User Account Permissions",{"name":145},{"id":171,"name":172,"tactic":173},"D3-EAL","Executable Allowlisting",{"name":145},{"id":175,"name":176,"tactic":177},"D3-EDL","Executable Denylisting",{"name":145},{"id":179,"name":180,"tactic":181},"D3-HBPI","Hardware-based Process Isolation",{"name":145},{"id":183,"name":184,"techniques":185},"CAPEC-115","Authentication Bypass",[186],{"id":25,"name":26,"tactics":187,"countermeasures":190},[188,189],{"id":29,"name":30},{"id":32,"name":33},[191,193,195,197,199,201,203,205,207,209,211,213,215,217,219,221,223,225,227,229,231,233,235,237,239,241,243,245,247,249,251,253,255,257,259],{"id":36,"name":37,"tactic":192},{"name":39},{"id":41,"name":42,"tactic":194},{"name":39},{"id":45,"name":46,"tactic":196},{"name":39},{"id":49,"name":50,"tactic":198},{"name":39},{"id":53,"name":54,"tactic":200},{"name":56},{"id":58,"name":59,"tactic":202},{"name":56},{"id":62,"name":63,"tactic":204},{"name":56},{"id":66,"name":67,"tactic":206},{"name":56},{"id":70,"name":71,"tactic":208},{"name":56},{"id":74,"name":75,"tactic":210},{"name":56},{"id":78,"name":79,"tactic":212},{"name":56},{"id":82,"name":83,"tactic":214},{"name":56},{"id":86,"name":87,"tactic":216},{"name":56},{"id":90,"name":91,"tactic":218},{"name":93},{"id":95,"name":96,"tactic":220},{"name":93},{"id":99,"name":100,"tactic":222},{"name":102},{"id":104,"name":105,"tactic":224},{"name":107},{"id":109,"name":110,"tactic":226},{"name":107},{"id":113,"name":114,"tactic":228},{"name":107},{"id":117,"name":118,"tactic":230},{"name":107},{"id":121,"name":122,"tactic":232},{"name":124},{"id":126,"name":127,"tactic":234},{"name":124},{"id":130,"name":131,"tactic":236},{"name":124},{"id":134,"name":135,"tactic":238},{"name":124},{"id":138,"name":139,"tactic":240},{"name":124},{"id":142,"name":143,"tactic":242},{"name":145},{"id":147,"name":148,"tactic":244},{"name":145},{"id":151,"name":152,"tactic":246},{"name":145},{"id":155,"name":156,"tactic":248},{"name":145},{"id":159,"name":160,"tactic":250},{"name":145},{"id":163,"name":164,"tactic":252},{"name":145},{"id":167,"name":168,"tactic":254},{"name":145},{"id":171,"name":172,"tactic":256},{"name":145},{"id":175,"name":176,"tactic":258},{"name":145},{"id":179,"name":180,"tactic":260},{"name":145},{"id":262,"name":263,"techniques":264},"CAPEC-151","Identity Spoofing",[],{"id":266,"name":267,"techniques":268},"CAPEC-194","Fake the Source of Data",[],{"id":270,"name":271,"techniques":272},"CAPEC-22","Exploiting Trust in Client",[],{"id":274,"name":275,"techniques":276},"CAPEC-57","Utilizing REST's Trust in the System Resource to Obtain Sensitive Data",[277],{"id":278,"name":279,"tactics":280,"countermeasures":287},"T1040","Network Sniffing",[281,284],{"id":282,"name":283},"TA0031","Credential Access",{"id":285,"name":286},"TA0102","Discovery",[288],{"id":289,"name":290,"tactic":291},"D3-DNSTA","DNS Traffic Analysis",{"name":56},{"id":293,"name":294,"techniques":295},"CAPEC-593","Session Hijacking",[296,340,453],{"id":297,"name":298,"tactics":299,"countermeasures":303},"T1185","Browser Session Hijacking",[300],{"id":301,"name":302},"TA0100","Collection",[304,308,312,316,320,324,328,332,336],{"id":305,"name":306,"tactic":307},"D3-UGLPA","User Geolocation Logon Pattern Analysis",{"name":56},{"id":309,"name":310,"tactic":311},"D3-PMAD","Protocol Metadata Anomaly Detection",{"name":56},{"id":313,"name":314,"tactic":315},"D3-CSPP","Client-server Payload Profiling",{"name":56},{"id":317,"name":318,"tactic":319},"D3-PHDURA","Per Host Download-Upload Ratio Analysis",{"name":56},{"id":321,"name":322,"tactic":323},"D3-NTSA","Network Traffic Signature Analysis",{"name":56},{"id":325,"name":326,"tactic":327},"D3-APCA","Application Protocol Command Analysis",{"name":56},{"id":329,"name":330,"tactic":331},"D3-NTCD","Network Traffic Community Deviation",{"name":56},{"id":333,"name":334,"tactic":335},"D3-RTSD","Remote Terminal Session Detection",{"name":56},{"id":337,"name":338,"tactic":339},"D3-NTF","Network Traffic Filtering",{"name":145},{"id":341,"name":342,"tactics":343,"countermeasures":348},"T1550.001","Application Access Token",[344,345],{"id":29,"name":30},{"id":346,"name":347},"TA0109","Lateral Movement",[349,353,357,359,363,365,367,369,371,373,375,377,379,383,387,391,395,399,403,407,411,415,419,423,427,431,435,437,439,443,447,451],{"id":350,"name":351,"tactic":352},"D3-PLA","Process Lineage Analysis",{"name":56},{"id":354,"name":355,"tactic":356},"D3-PSMD","Process Self-Modification Detection",{"name":56},{"id":86,"name":87,"tactic":358},{"name":56},{"id":360,"name":361,"tactic":362},"D3-CCSA","Credential Compromise Scope Analysis",{"name":56},{"id":305,"name":306,"tactic":364},{"name":56},{"id":309,"name":310,"tactic":366},{"name":56},{"id":313,"name":314,"tactic":368},{"name":56},{"id":317,"name":318,"tactic":370},{"name":56},{"id":321,"name":322,"tactic":372},{"name":56},{"id":325,"name":326,"tactic":374},{"name":56},{"id":329,"name":330,"tactic":376},{"name":56},{"id":333,"name":334,"tactic":378},{"name":56},{"id":380,"name":381,"tactic":382},"D3-PT","Process Termination",{"name":93},{"id":384,"name":385,"tactic":386},"D3-PS","Process Suspension",{"name":93},{"id":388,"name":389,"tactic":390},"D3-HR","Host Reboot",{"name":93},{"id":392,"name":393,"tactic":394},"D3-HS","Host Shutdown",{"name":93},{"id":396,"name":397,"tactic":398},"D3-CR","Credential Revocation",{"name":93},{"id":400,"name":401,"tactic":402},"D3-ANCI","Authentication Cache Invalidation",{"name":93},{"id":404,"name":405,"tactic":406},"D3-DUC","Decoy User Credential",{"name":102},{"id":408,"name":409,"tactic":410},"D3-CH","Credential Hardening",{"name":107},{"id":412,"name":413,"tactic":414},"D3-MFA","Multi-factor Authentication",{"name":107},{"id":416,"name":417,"tactic":418},"D3-CRO","Credential Rotation",{"name":107},{"id":420,"name":421,"tactic":422},"D3-TB","Token Binding",{"name":107},{"id":424,"name":425,"tactic":426},"D3-TBA","Token-based Authentication",{"name":107},{"id":428,"name":429,"tactic":430},"D3-RIC","Reissue Credential",{"name":124},{"id":432,"name":433,"tactic":434},"D3-KBPI","Kernel-based Process Isolation",{"name":145},{"id":142,"name":143,"tactic":436},{"name":145},{"id":179,"name":180,"tactic":438},{"name":145},{"id":440,"name":441,"tactic":442},"D3-ABPI","Application-based Process Isolation",{"name":145},{"id":444,"name":445,"tactic":446},"D3-WSAM","Web Session Access Mediation",{"name":145},{"id":448,"name":449,"tactic":450},"D3-CTS","Credential Transmission Scoping",{"name":145},{"id":337,"name":338,"tactic":452},{"name":145},{"id":454,"name":455,"tactics":456,"countermeasures":458},"T1563","Remote Service Session Hijacking",[457],{"id":346,"name":347},[459,461,463,465,467,469,471,473,475,479],{"id":305,"name":306,"tactic":460},{"name":56},{"id":309,"name":310,"tactic":462},{"name":56},{"id":313,"name":314,"tactic":464},{"name":56},{"id":317,"name":318,"tactic":466},{"name":56},{"id":321,"name":322,"tactic":468},{"name":56},{"id":325,"name":326,"tactic":470},{"name":56},{"id":329,"name":330,"tactic":472},{"name":56},{"id":333,"name":334,"tactic":474},{"name":56},{"id":476,"name":477,"tactic":478},"D3-ST","Session Termination",{"name":93},{"id":337,"name":338,"tactic":480},{"name":145},{"id":482,"name":483,"techniques":484},"CAPEC-633","Token Impersonation",[485],{"id":486,"name":487,"tactics":488,"countermeasures":494},"T1134","Access Token Manipulation",[489,490,493],{"id":29,"name":30},{"id":491,"name":492},"TA0005","Stealth",{"id":32,"name":33},[495,497,499,501,503,505,507,509,511,513,515,517,519,521,523,525,527,529,531,533,535,537,539,541],{"id":36,"name":37,"tactic":496},{"name":39},{"id":49,"name":50,"tactic":498},{"name":39},{"id":41,"name":42,"tactic":500},{"name":39},{"id":53,"name":54,"tactic":502},{"name":56},{"id":58,"name":59,"tactic":504},{"name":56},{"id":360,"name":361,"tactic":506},{"name":56},{"id":74,"name":75,"tactic":508},{"name":56},{"id":86,"name":87,"tactic":510},{"name":56},{"id":476,"name":477,"tactic":512},{"name":93},{"id":396,"name":397,"tactic":514},{"name":93},{"id":400,"name":401,"tactic":516},{"name":93},{"id":404,"name":405,"tactic":518},{"name":102},{"id":408,"name":409,"tactic":520},{"name":107},{"id":412,"name":413,"tactic":522},{"name":107},{"id":416,"name":417,"tactic":524},{"name":107},{"id":420,"name":421,"tactic":526},{"name":107},{"id":424,"name":425,"tactic":528},{"name":107},{"id":121,"name":122,"tactic":530},{"name":124},{"id":428,"name":429,"tactic":532},{"name":124},{"id":142,"name":143,"tactic":534},{"name":145},{"id":448,"name":449,"tactic":536},{"name":145},{"id":171,"name":172,"tactic":538},{"name":145},{"id":175,"name":176,"tactic":540},{"name":145},{"id":179,"name":180,"tactic":542},{"name":145},{"id":544,"name":545,"techniques":546},"CAPEC-650","Upload a Web Shell to a Web Server",[547],{"id":548,"name":549,"tactics":550,"countermeasures":554},"T1505.003","Web Shell",[551],{"id":552,"name":553},"TA0110","Persistence",[555,559,563,567,571,573,575,577,579,581,583,585,587,589,591,593,595,597,599,603,605,607,609,611,613,615,617,619,621,623,625],{"id":556,"name":557,"tactic":558},"D3-NNI","Network Node Inventory",{"name":39},{"id":560,"name":561,"tactic":562},"D3-PLM","Physical Link Mapping",{"name":39},{"id":564,"name":565,"tactic":566},"D3-LLM","Logical Link Mapping",{"name":39},{"id":568,"name":569,"tactic":570},"D3-EHB","Endpoint Health Beacon",{"name":56},{"id":66,"name":67,"tactic":572},{"name":56},{"id":70,"name":71,"tactic":574},{"name":56},{"id":78,"name":79,"tactic":576},{"name":56},{"id":82,"name":83,"tactic":578},{"name":56},{"id":350,"name":351,"tactic":580},{"name":56},{"id":354,"name":355,"tactic":582},{"name":56},{"id":86,"name":87,"tactic":584},{"name":56},{"id":90,"name":91,"tactic":586},{"name":93},{"id":380,"name":381,"tactic":588},{"name":93},{"id":384,"name":385,"tactic":590},{"name":93},{"id":388,"name":389,"tactic":592},{"name":93},{"id":392,"name":393,"tactic":594},{"name":93},{"id":99,"name":100,"tactic":596},{"name":102},{"id":104,"name":105,"tactic":598},{"name":107},{"id":600,"name":601,"tactic":602},"D3-RNA","Restore Network Access",{"name":124},{"id":126,"name":127,"tactic":604},{"name":124},{"id":147,"name":148,"tactic":606},{"name":145},{"id":151,"name":152,"tactic":608},{"name":145},{"id":155,"name":156,"tactic":610},{"name":145},{"id":159,"name":160,"tactic":612},{"name":145},{"id":163,"name":164,"tactic":614},{"name":145},{"id":171,"name":172,"tactic":616},{"name":145},{"id":175,"name":176,"tactic":618},{"name":145},{"id":432,"name":433,"tactic":620},{"name":145},{"id":142,"name":143,"tactic":622},{"name":145},{"id":179,"name":180,"tactic":624},{"name":145},{"id":440,"name":441,"tactic":626},{"name":145},{"id":628,"name":629,"techniques":630},"CAPEC-94","Adversary in the Middle (AiTM)",[631],{"id":632,"name":633,"tactics":634,"countermeasures":637},"T1557","Adversary-in-the-Middle",[635,636],{"id":282,"name":283},{"id":301,"name":302},[638,640,642,644,646,648,650,652,654,658],{"id":305,"name":306,"tactic":639},{"name":56},{"id":309,"name":310,"tactic":641},{"name":56},{"id":313,"name":314,"tactic":643},{"name":56},{"id":317,"name":318,"tactic":645},{"name":56},{"id":321,"name":322,"tactic":647},{"name":56},{"id":325,"name":326,"tactic":649},{"name":56},{"id":329,"name":330,"tactic":651},{"name":56},{"id":333,"name":334,"tactic":653},{"name":56},{"id":655,"name":656,"tactic":657},"D3-CAA","Connection Attempt Analysis",{"name":56},{"id":337,"name":338,"tactic":659},{"name":145},[],[662,663],"GHSA-h6xx-pmxh-3wgp","GO-2021-0077",[],[666,668,670,672,674],{"_key":667},"UBUNTU-CVE-2018-16886",{"_key":669},"SUSE-SU-2024:3656-1",{"_key":671},"OPENSUSE-SU-2024:10741-1",{"_key":673},"RHSA-2019:1352",{"_key":675},"DEBIAN-CVE-2018-16886",[],[678,679,680,682,684],{"_key":669},{"_key":671},{"_key":681},"CGA-4G7V-JM4X-QRM3",{"_key":683},"CGA-7M4R-CW9F-HJCG",{"_key":685},"CGA-7RJ7-PX9H-MV37","2019-01-14T19:00:00.000Z","2024-08-05T10:32:54.152Z","Modified",{"cisa_kev":690,"cisa_ransomware":690,"cisa_vendor":9,"epss_severity":691,"epss_score":692,"severity":693,"severity_score":694,"severity_version":695,"severity_source":696,"severity_vector":697,"severity_status":688},false,"low",0.00486,"high",8.1,"v3.1","nvd","CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",[699,708,715,719,725,732,737,741,745,750,755,759,763,768,772,776],{"url":700,"sources":701,"tags":704},"https://github.com/etcd-io/etcd/blob/1eee465a43720d713bb69f7b7f5e120135fdb1ac/CHANGELOG-3.3.md#security-authentication",[702,696,703],"cve.org","osv_go",[705,706,707],"X Refsource MISC","Release Notes","WEB",{"url":709,"sources":710,"tags":711},"http://www.securityfocus.com/bid/106540",[702,696,703],[712,713,714,707],"VDB Entry","X Refsource BID","Third Party Advisory",{"url":716,"sources":717,"tags":718},"https://github.com/etcd-io/etcd/blob/1eee465a43720d713bb69f7b7f5e120135fdb1ac/CHANGELOG-3.2.md#security-authentication",[702,696,703],[705,706,707],{"url":720,"sources":721,"tags":722},"https://access.redhat.com/errata/RHSA-2019:0237",[702,696,703],[723,724,714,707],"Vendor Advisory","X Refsource REDHAT",{"url":726,"sources":727,"tags":728},"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16886",[702,696,703],[729,730,731,714,707],"X Refsource CONFIRM","Issue Tracking","Patch",{"url":733,"sources":734,"tags":735},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UPGYHMSKDPW5GAMI7BEP3XQRVRLLBJKS/",[702,696],[723,736],"X Refsource FEDORA",{"url":738,"sources":739,"tags":740},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JX7QTIT465BQGRGNCE74RATRQLKT2QE4/",[702,696],[723,736],{"url":742,"sources":743,"tags":744},"https://access.redhat.com/errata/RHSA-2019:1352",[702,696,703],[723,724,714,707],{"url":746,"sources":747,"tags":748},"https://nvd.nist.gov/vuln/detail/CVE-2018-16886",[703],[749],"Advisory",{"url":751,"sources":752,"tags":753},"https://github.com/etcd-io/etcd/pull/10366",[703],[707,754],"FIX",{"url":756,"sources":757,"tags":758},"https://github.com/etcd-io/etcd/commit/0191509637546621d6f2e18e074e955ab8ef374d",[703],[707],{"url":760,"sources":761,"tags":762},"https://github.com/etcd-io/etcd/commit/bf9d0d8291dc71ecbfb2690612954e1a298154b2",[703],[707,754],{"url":764,"sources":765,"tags":766},"https://github.com/etcd-io/etcd",[703],[767],"PACKAGE",{"url":769,"sources":770,"tags":771},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JX7QTIT465BQGRGNCE74RATRQLKT2QE4",[703],[707],{"url":773,"sources":774,"tags":775},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UPGYHMSKDPW5GAMI7BEP3XQRVRLLBJKS",[703],[707],{"url":777,"sources":778,"tags":779},"https://pkg.go.dev/vuln/GO-2021-0077",[703],[707],[],{"date":782,"score":692,"percentile":783},"2026-06-04",0.65713,[785,789,792,795,798,801,804,807,810,813,816,819,821,824,827,831,834,837,840,843,845,849,853,856,860,863,866,869,872,875,877,880,883,886,889,892,895,898,901,904,907,909,912,915,918,921,924,927,930,933,936,938,941,943,946,949,952,955,958,961,964,967,970,973,975,978,981,984,987,990,993,996,999,1002,1005,1008,1011,1014,1017,1020,1023,1026,1029,1032,1035,1037,1040,1043,1046,1049],{"date":786,"score":787,"percentile":788},"2025-11-04",0.00724,0.71785,{"date":790,"score":787,"percentile":791},"2025-11-05",0.71769,{"date":793,"score":787,"percentile":794},"2025-11-06",0.71766,{"date":796,"score":787,"percentile":797},"2025-11-07",0.71781,{"date":799,"score":787,"percentile":800},"2025-11-08",0.71778,{"date":802,"score":787,"percentile":803},"2025-11-09",0.71771,{"date":805,"score":787,"percentile":806},"2025-11-10",0.71759,{"date":808,"score":787,"percentile":809},"2025-11-11",0.71767,{"date":811,"score":787,"percentile":812},"2025-11-12",0.71786,{"date":814,"score":787,"percentile":815},"2025-11-13",0.71793,{"date":817,"score":787,"percentile":818},"2025-11-14",0.71801,{"date":820,"score":787,"percentile":818},"2025-11-15",{"date":822,"score":787,"percentile":823},"2025-11-16",0.71799,{"date":825,"score":787,"percentile":826},"2025-11-17",0.71791,{"date":828,"score":829,"percentile":830},"2025-11-18",0.00896,0.73624,{"date":832,"score":829,"percentile":833},"2025-11-19",0.7363,{"date":835,"score":829,"percentile":836},"2025-11-20",0.73639,{"date":838,"score":787,"percentile":839},"2025-11-21",0.71819,{"date":841,"score":787,"percentile":842},"2025-11-22",0.71811,{"date":844,"score":787,"percentile":815},"2025-11-23",{"date":846,"score":847,"percentile":848},"2025-11-24",0.00781,0.72937,{"date":850,"score":851,"percentile":852},"2025-11-25",0.00785,0.72998,{"date":854,"score":851,"percentile":855},"2025-11-26",0.73004,{"date":857,"score":858,"percentile":859},"2025-11-27",0.00757,0.72469,{"date":861,"score":858,"percentile":862},"2025-11-28",0.72462,{"date":864,"score":858,"percentile":865},"2025-11-29",0.72452,{"date":867,"score":858,"percentile":868},"2025-11-30",0.72446,{"date":870,"score":858,"percentile":871},"2025-12-01",0.72572,{"date":873,"score":858,"percentile":874},"2025-12-02",0.72584,{"date":876,"score":858,"percentile":874},"2025-12-03",{"date":878,"score":858,"percentile":879},"2025-12-04",0.72454,{"date":881,"score":858,"percentile":882},"2025-12-05",0.72464,{"date":884,"score":858,"percentile":885},"2025-12-06",0.72466,{"date":887,"score":858,"percentile":888},"2025-12-07",0.72471,{"date":890,"score":858,"percentile":891},"2025-12-08",0.72473,{"date":893,"score":858,"percentile":894},"2025-12-09",0.72503,{"date":896,"score":858,"percentile":897},"2025-12-10",0.72536,{"date":899,"score":858,"percentile":900},"2025-12-11",0.72554,{"date":902,"score":858,"percentile":903},"2025-12-12",0.72576,{"date":905,"score":858,"percentile":906},"2025-12-13",0.72589,{"date":908,"score":858,"percentile":906},"2025-12-14",{"date":910,"score":858,"percentile":911},"2025-12-15",0.72591,{"date":913,"score":858,"percentile":914},"2025-12-16",0.72608,{"date":916,"score":858,"percentile":917},"2025-12-17",0.72623,{"date":919,"score":858,"percentile":920},"2025-12-18",0.72648,{"date":922,"score":858,"percentile":923},"2025-12-19",0.72677,{"date":925,"score":858,"percentile":926},"2025-12-20",0.72678,{"date":928,"score":858,"percentile":929},"2025-12-21",0.72672,{"date":931,"score":858,"percentile":932},"2025-12-22",0.7267,{"date":934,"score":858,"percentile":935},"2025-12-23",0.72661,{"date":937,"score":858,"percentile":929},"2025-12-24",{"date":939,"score":858,"percentile":940},"2025-12-25",0.72698,{"date":942,"score":858,"percentile":940},"2025-12-26",{"date":944,"score":858,"percentile":945},"2025-12-27",0.7272,{"date":947,"score":858,"percentile":948},"2025-12-28",0.72673,{"date":950,"score":858,"percentile":951},"2025-12-29",0.72669,{"date":953,"score":858,"percentile":954},"2025-12-30",0.72683,{"date":956,"score":858,"percentile":957},"2025-12-31",0.72712,{"date":959,"score":858,"percentile":960},"2026-01-01",0.72856,{"date":962,"score":858,"percentile":963},"2026-01-02",0.72853,{"date":965,"score":858,"percentile":966},"2026-01-03",0.72852,{"date":968,"score":858,"percentile":969},"2026-01-04",0.72718,{"date":971,"score":858,"percentile":972},"2026-01-05",0.72707,{"date":974,"score":858,"percentile":945},"2026-01-06",{"date":976,"score":858,"percentile":977},"2026-01-07",0.72734,{"date":979,"score":858,"percentile":980},"2026-01-08",0.72748,{"date":982,"score":858,"percentile":983},"2026-01-09",0.72752,{"date":985,"score":858,"percentile":986},"2026-01-10",0.7275,{"date":988,"score":858,"percentile":989},"2026-01-11",0.72741,{"date":991,"score":858,"percentile":992},"2026-01-12",0.72731,{"date":994,"score":858,"percentile":995},"2026-01-13",0.72729,{"date":997,"score":858,"percentile":998},"2026-01-14",0.72755,{"date":1000,"score":858,"percentile":1001},"2026-01-15",0.72762,{"date":1003,"score":858,"percentile":1004},"2026-01-16",0.72777,{"date":1006,"score":858,"percentile":1007},"2026-01-17",0.72773,{"date":1009,"score":858,"percentile":1010},"2026-01-18",0.72751,{"date":1012,"score":858,"percentile":1013},"2026-01-19",0.72742,{"date":1015,"score":858,"percentile":1016},"2026-01-20",0.72749,{"date":1018,"score":858,"percentile":1019},"2026-01-21",0.72754,{"date":1021,"score":858,"percentile":1022},"2026-01-22",0.72761,{"date":1024,"score":858,"percentile":1025},"2026-01-23",0.7279,{"date":1027,"score":858,"percentile":1028},"2026-01-24",0.72798,{"date":1030,"score":858,"percentile":1031},"2026-01-25",0.72782,{"date":1033,"score":858,"percentile":1034},"2026-01-26",0.72779,{"date":1036,"score":858,"percentile":1031},"2026-01-27",{"date":1038,"score":858,"percentile":1039},"2026-01-28",0.72796,{"date":1041,"score":858,"percentile":1042},"2026-01-29",0.72799,{"date":1044,"score":858,"percentile":1045},"2026-01-30",0.72805,{"date":1047,"score":858,"percentile":1048},"2026-01-31",0.7281,{"date":1050,"score":858,"percentile":1051},"2026-02-01",0.72935,[1053,1060,1070],{"source":702,"cvss_v2_0":9,"cvss_v3_0":1054,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":1055,"baseSeverity":1056,"vectorString":1057,"impactScore":1058,"exploitabilityScore":1059},6.8,"MEDIUM","CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N",8.7,4.1,{"source":696,"cvss_v2_0":1061,"cvss_v3_0":1065,"cvss_v3_1":1066,"cvss_v4_0":9},{"baseScore":1055,"baseSeverity":9,"vectorString":1062,"impactScore":1063,"exploitabilityScore":1064},"AV:N/AC:M/Au:N/C:P/I:P/A:P",6.4,8.6,{"baseScore":1055,"baseSeverity":1056,"vectorString":1057,"impactScore":1058,"exploitabilityScore":1059},{"baseScore":694,"baseSeverity":1067,"vectorString":697,"impactScore":1068,"exploitabilityScore":1069},"HIGH",9.8,5.6,{"source":703,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":1071,"cvss_v4_0":9},{"baseScore":694,"baseSeverity":9,"vectorString":697,"impactScore":1068,"exploitabilityScore":1069},[1073,1089,1096,1106,1114,1121,1126,1131],{"ecosystem":9,"name":1074,"vendor":1074,"product":1074,"cpe_part":1075,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1076},"etcd","a",[1077,1085],{"version":1078,"is_range":1079,"range_type":1080,"version_start":1081,"version_start_type":1082,"version_end":1083,"version_end_type":1084,"fixed_in":9},"gte3.2.0_lt3.2.26",true,"cpe","3.2.0","including","3.2.26","excluding",{"version":1086,"is_range":1079,"range_type":1080,"version_start":1087,"version_start_type":1082,"version_end":1088,"version_end_type":1084,"fixed_in":9},"gte3.3.0_lt3.3.11","3.3.0","3.3.11",{"ecosystem":9,"name":1090,"vendor":1091,"product":1090,"cpe_part":1092,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1093},"fedora","fedoraproject","o",[1094],{"version":1095,"is_range":690,"range_type":1080,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"30",{"ecosystem":1097,"name":1098,"vendor":1099,"product":1074,"cpe_part":9,"purl_type":1100,"purl_namespace":1099,"purl_name":1074,"source":9,"versions":1101},"Go","go.etcd.io/etcd","go.etcd.io","golang",[1102],{"version":1103,"is_range":1079,"range_type":1104,"version_start":9,"version_start_type":9,"version_end":1105,"version_end_type":1084,"fixed_in":9},"lt0_5_0_alpha_5_0_20190108173120_83c051b701d3","semver","0.5.0-alpha.5.0.20190108173120-83c051b701d3",{"ecosystem":1097,"name":1107,"vendor":1098,"product":1108,"cpe_part":9,"purl_type":1100,"purl_namespace":1098,"purl_name":1108,"source":9,"versions":1109},"go.etcd.io/etcd/v3","v3",[1110,1112],{"version":1111,"is_range":1079,"range_type":1104,"version_start":1081,"version_start_type":1082,"version_end":1083,"version_end_type":1084,"fixed_in":9},"gte3_2_0_lt3_2_26",{"version":1113,"is_range":1079,"range_type":1104,"version_start":1087,"version_start_type":1082,"version_end":1088,"version_end_type":1084,"fixed_in":9},"gte3_3_0_lt3_3_11",{"ecosystem":9,"name":1115,"vendor":1116,"product":1117,"cpe_part":1092,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1118},"enterprise linux desktop","redhat","enterprise_linux_desktop",[1119],{"version":1120,"is_range":690,"range_type":1080,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0",{"ecosystem":9,"name":1122,"vendor":1116,"product":1123,"cpe_part":1092,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1124},"enterprise linux server","enterprise_linux_server",[1125],{"version":1120,"is_range":690,"range_type":1080,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":1127,"vendor":1116,"product":1128,"cpe_part":1092,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1129},"enterprise linux workstation","enterprise_linux_workstation",[1130],{"version":1120,"is_range":690,"range_type":1080,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":1132,"vendor":1133,"product":1132,"cpe_part":1075,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1134},"etcd:","the etcd project",[1135],{"version":1136,"is_range":690,"range_type":702,"version_start":1136,"version_start_type":1082,"version_end":1136,"version_end_type":1082,"fixed_in":9},"versions 3.2.x before 3.2.26 and 3.3.x before 3.3.11"]