[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2018-18356":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T20:55:33.689Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":37,"aliases":38,"duplicate_of":9,"upstream":39,"downstream":40,"duplicates":99,"related":100,"reserved_at":9,"published_at":115,"modified_at":116,"state":117,"summary":118,"references_raw":127,"kevs":213,"epss":214,"epss_history":217,"metrics":473,"affected":484},"CVE-2018-18356","An integer overflow in path handling lead to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.",null,[11,24,31],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-190","Integer Overflow or Wraparound","The product performs a calculation that can\n         produce an integer overflow or wraparound when the logic\n         assumes that the resulting value will always be larger than\n         the original value. This occurs when an integer value is\n         incremented to a value that is too large to store in the\n         associated representation. When this occurs, the value may\n         become a very small or negative number.","weakness","Stable","Base","Medium",[20],{"id":21,"name":22,"techniques":23},"CAPEC-92","Forced Integer Overflow",[],{"_key":25,"id":25,"name":26,"description":27,"type":15,"status":16,"abstraction":28,"likelihood_of_exploit":29,"capec":30},"CWE-416","Use After Free","The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory \"belongs\" to the code that operates on the new pointer.","Variant","High",[],{"_key":32,"id":32,"name":33,"description":34,"type":15,"status":35,"abstraction":17,"likelihood_of_exploit":29,"capec":36},"CWE-787","Out-of-bounds Write","The product writes data past the end, or before the beginning, of the intended buffer.","Draft",[],[],[],[],[41,43,45,47,49,51,53,55,57,59,61,63,65,67,69,71,73,75,77,79,81,83,85,87,89,91,93,95,97],{"_key":42},"OPENSUSE-SU-2019:0249-1",{"_key":44},"RHSA-2018:3803",{"_key":46},"RHSA-2019:0373",{"_key":48},"RHSA-2019:0374",{"_key":50},"RHSA-2019:0680",{"_key":52},"RHSA-2019:0681",{"_key":54},"RHSA-2019:1144",{"_key":56},"OPENSUSE-SU-2024:10601-1",{"_key":58},"SUSE-SU-2019:0469-1",{"_key":60},"SUSE-SU-2019:0852-1",{"_key":62},"SUSE-SU-2019:0853-1",{"_key":64},"SUSE-SU-2019:0871-1",{"_key":66},"OPENSUSE-SU-2018:4143-1",{"_key":68},"OPENSUSE-SU-2019:1162-1",{"_key":70},"OPENSUSE-SU-2024:10600-1",{"_key":72},"OPENSUSE-SU-2024:10681-1",{"_key":74},"OPENSUSE-SU-2024:12948-1",{"_key":76},"OPENSUSE-SU-2024:14572-1",{"_key":78},"DLA-1677-1",{"_key":80},"DLA-1678-1",{"_key":82},"DSA-4352-1",{"_key":84},"DSA-4391-1",{"_key":86},"DSA-4392-1",{"_key":88},"MGASA-2019-0088",{"_key":90},"MGASA-2019-0089",{"_key":92},"UBUNTU-CVE-2018-18356",{"_key":94},"USN-3896-1",{"_key":96},"USN-3897-1",{"_key":98},"DEBIAN-CVE-2018-18356",[],[101,102,103,104,105,106,107,108,109,110,111,112,113,114],{"_key":42},{"_key":56},{"_key":58},{"_key":60},{"_key":62},{"_key":64},{"_key":66},{"_key":68},{"_key":70},{"_key":72},{"_key":74},{"_key":76},{"_key":88},{"_key":90},"2018-12-11T15:00:00.000Z","2024-08-05T11:08:21.499Z","Modified",{"cisa_kev":119,"cisa_ransomware":119,"cisa_vendor":9,"epss_severity":120,"epss_score":121,"severity":122,"severity_score":123,"severity_version":124,"severity_source":125,"severity_vector":126,"severity_status":117},false,"low",0.02397,"high",8.8,"v3.0","nvd","CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",[128,135,140,145,151,156,160,164,169,173,178,182,186,190,196,200,205,209],{"url":129,"sources":130,"tags":132},"https://access.redhat.com/errata/RHSA-2019:0373",[131,125],"cve.org",[133,134],"Vendor Advisory","X Refsource REDHAT",{"url":136,"sources":137,"tags":138},"https://usn.ubuntu.com/3897-1/",[131,125],[133,139],"X Refsource UBUNTU",{"url":141,"sources":142,"tags":143},"https://crbug.com/883666",[131,125],[144],"X Refsource MISC",{"url":146,"sources":147,"tags":148},"https://lists.debian.org/debian-lts-announce/2019/02/msg00023.html",[131,125],[149,150],"Mailing List","X Refsource MLIST",{"url":152,"sources":153,"tags":154},"https://security.gentoo.org/glsa/201903-04",[131,125],[133,155],"X Refsource GENTOO",{"url":157,"sources":158,"tags":159},"https://usn.ubuntu.com/3896-1/",[131,125],[133,139],{"url":161,"sources":162,"tags":163},"https://lists.debian.org/debian-lts-announce/2019/02/msg00024.html",[131,125],[149,150],{"url":165,"sources":166,"tags":167},"https://chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop.html",[131,125],[168],"X Refsource CONFIRM",{"url":170,"sources":171,"tags":172},"https://access.redhat.com/errata/RHSA-2019:0374",[131,125],[133,134],{"url":174,"sources":175,"tags":176},"https://www.debian.org/security/2019/dsa-4391",[131,125],[133,177],"X Refsource DEBIAN",{"url":179,"sources":180,"tags":181},"https://access.redhat.com/errata/RHSA-2018:3803",[131,125],[133,134],{"url":183,"sources":184,"tags":185},"https://www.debian.org/security/2019/dsa-4392",[131,125],[133,177],{"url":187,"sources":188,"tags":189},"https://www.debian.org/security/2018/dsa-4352",[131,125],[133,177],{"url":191,"sources":192,"tags":193},"http://www.securityfocus.com/bid/106084",[131,125],[194,195],"VDB Entry","X Refsource BID",{"url":197,"sources":198,"tags":199},"https://security.gentoo.org/glsa/201904-07",[131,125],[133,155],{"url":201,"sources":202,"tags":203},"http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00043.html",[131,125],[133,204],"X Refsource SUSE",{"url":206,"sources":207,"tags":208},"https://access.redhat.com/errata/RHSA-2019:1144",[131,125],[133,134],{"url":210,"sources":211,"tags":212},"https://security.gentoo.org/glsa/201908-18",[131,125],[133,155],[],{"date":215,"score":121,"percentile":216},"2026-06-05",0.85351,[218,222,225,228,231,234,236,239,243,246,249,252,255,257,260,264,267,270,272,274,277,280,283,286,288,291,294,296,299,302,304,307,310,313,316,319,322,325,328,331,333,336,338,341,344,347,350,353,356,359,362,365,368,371,375,377,380,382,384,387,389,392,394,396,399,401,404,407,410,412,415,418,420,422,425,428,431,434,437,440,443,446,449,452,455,458,461,464,467,470],{"date":219,"score":220,"percentile":221},"2025-11-04",0.02606,0.85102,{"date":223,"score":220,"percentile":224},"2025-11-05",0.85106,{"date":226,"score":220,"percentile":227},"2025-11-06",0.85108,{"date":229,"score":220,"percentile":230},"2025-11-07",0.85115,{"date":232,"score":220,"percentile":233},"2025-11-08",0.8512,{"date":235,"score":220,"percentile":230},"2025-11-09",{"date":237,"score":220,"percentile":238},"2025-11-10",0.85109,{"date":240,"score":241,"percentile":242},"2025-11-11",0.02565,0.85001,{"date":244,"score":241,"percentile":245},"2025-11-12",0.85013,{"date":247,"score":241,"percentile":248},"2025-11-13",0.85019,{"date":250,"score":241,"percentile":251},"2025-11-14",0.85021,{"date":253,"score":241,"percentile":254},"2025-11-15",0.85015,{"date":256,"score":241,"percentile":254},"2025-11-16",{"date":258,"score":241,"percentile":259},"2025-11-17",0.85002,{"date":261,"score":262,"percentile":263},"2025-11-18",0.01885,0.81703,{"date":265,"score":262,"percentile":266},"2025-11-19",0.81704,{"date":268,"score":262,"percentile":269},"2025-11-20",0.81709,{"date":271,"score":241,"percentile":248},"2025-11-21",{"date":273,"score":241,"percentile":254},"2025-11-22",{"date":275,"score":241,"percentile":276},"2025-11-23",0.85006,{"date":278,"score":241,"percentile":279},"2025-11-24",0.85008,{"date":281,"score":241,"percentile":282},"2025-11-25",0.85009,{"date":284,"score":241,"percentile":285},"2025-11-26",0.85011,{"date":287,"score":241,"percentile":285},"2025-11-27",{"date":289,"score":241,"percentile":290},"2025-11-28",0.84993,{"date":292,"score":241,"percentile":293},"2025-11-29",0.85038,{"date":295,"score":241,"percentile":293},"2025-11-30",{"date":297,"score":241,"percentile":298},"2025-12-01",0.85104,{"date":300,"score":241,"percentile":301},"2025-12-02",0.85107,{"date":303,"score":241,"percentile":227},"2025-12-03",{"date":305,"score":241,"percentile":306},"2025-12-04",0.8504,{"date":308,"score":241,"percentile":309},"2025-12-05",0.85045,{"date":311,"score":241,"percentile":312},"2025-12-06",0.85042,{"date":314,"score":241,"percentile":315},"2025-12-07",0.8503,{"date":317,"score":241,"percentile":318},"2025-12-08",0.85029,{"date":320,"score":241,"percentile":321},"2025-12-09",0.85039,{"date":323,"score":241,"percentile":324},"2025-12-10",0.85061,{"date":326,"score":241,"percentile":327},"2025-12-11",0.85066,{"date":329,"score":241,"percentile":330},"2025-12-12",0.8507,{"date":332,"score":241,"percentile":327},"2025-12-13",{"date":334,"score":241,"percentile":335},"2025-12-14",0.85065,{"date":337,"score":241,"percentile":327},"2025-12-15",{"date":339,"score":241,"percentile":340},"2025-12-16",0.85074,{"date":342,"score":241,"percentile":343},"2025-12-17",0.85077,{"date":345,"score":241,"percentile":346},"2025-12-18",0.85081,{"date":348,"score":241,"percentile":349},"2025-12-19",0.85085,{"date":351,"score":241,"percentile":352},"2025-12-20",0.85079,{"date":354,"score":241,"percentile":355},"2025-12-21",0.85082,{"date":357,"score":241,"percentile":358},"2025-12-22",0.85083,{"date":360,"score":241,"percentile":361},"2025-12-23",0.8509,{"date":363,"score":241,"percentile":364},"2025-12-24",0.85094,{"date":366,"score":241,"percentile":367},"2025-12-25",0.85111,{"date":369,"score":241,"percentile":370},"2025-12-26",0.85113,{"date":372,"score":373,"percentile":374},"2025-12-27",0.02167,0.83905,{"date":376,"score":241,"percentile":221},"2025-12-28",{"date":378,"score":241,"percentile":379},"2025-12-29",0.85098,{"date":381,"score":241,"percentile":224},"2025-12-30",{"date":383,"score":241,"percentile":230},"2025-12-31",{"date":385,"score":241,"percentile":386},"2026-01-01",0.85179,{"date":388,"score":241,"percentile":386},"2026-01-02",{"date":390,"score":241,"percentile":391},"2026-01-03",0.85176,{"date":393,"score":241,"percentile":301},"2026-01-04",{"date":395,"score":241,"percentile":379},"2026-01-05",{"date":397,"score":241,"percentile":398},"2026-01-06",0.85105,{"date":400,"score":241,"percentile":298},"2026-01-07",{"date":402,"score":241,"percentile":403},"2026-01-08",0.85114,{"date":405,"score":241,"percentile":406},"2026-01-09",0.85117,{"date":408,"score":241,"percentile":409},"2026-01-10",0.85112,{"date":411,"score":241,"percentile":227},"2026-01-11",{"date":413,"score":241,"percentile":414},"2026-01-12",0.85103,{"date":416,"score":241,"percentile":417},"2026-01-13",0.85099,{"date":419,"score":241,"percentile":406},"2026-01-14",{"date":421,"score":241,"percentile":230},"2026-01-15",{"date":423,"score":241,"percentile":424},"2026-01-16",0.85121,{"date":426,"score":241,"percentile":427},"2026-01-17",0.85128,{"date":429,"score":241,"percentile":430},"2026-01-18",0.85122,{"date":432,"score":241,"percentile":433},"2026-01-19",0.85116,{"date":435,"score":241,"percentile":436},"2026-01-20",0.85119,{"date":438,"score":241,"percentile":439},"2026-01-21",0.85124,{"date":441,"score":241,"percentile":442},"2026-01-22",0.85129,{"date":444,"score":241,"percentile":445},"2026-01-23",0.8514,{"date":447,"score":241,"percentile":448},"2026-01-24",0.8515,{"date":450,"score":241,"percentile":451},"2026-01-25",0.85145,{"date":453,"score":241,"percentile":454},"2026-01-26",0.85143,{"date":456,"score":241,"percentile":457},"2026-01-27",0.85148,{"date":459,"score":241,"percentile":460},"2026-01-28",0.85153,{"date":462,"score":241,"percentile":463},"2026-01-29",0.85155,{"date":465,"score":241,"percentile":466},"2026-01-30",0.85157,{"date":468,"score":241,"percentile":469},"2026-01-31",0.85158,{"date":471,"score":241,"percentile":472},"2026-02-01",0.85227,[474],{"source":125,"cvss_v2_0":475,"cvss_v3_0":480,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":476,"baseSeverity":9,"vectorString":477,"impactScore":478,"exploitabilityScore":479},6.8,"AV:N/AC:M/Au:N/C:P/I:P/A:P",6.4,8.6,{"baseScore":123,"baseSeverity":481,"vectorString":126,"impactScore":482,"exploitabilityScore":483},"HIGH",9.8,7.2,[485,500,509,521,527,536,542,548,553,558],{"ecosystem":9,"name":486,"vendor":487,"product":488,"cpe_part":489,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":490},"ubuntu linux","canonical","ubuntu_linux","o",[491,494,496,498],{"version":492,"is_range":119,"range_type":493,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"14.04","cpe",{"version":495,"is_range":119,"range_type":493,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"16.04",{"version":497,"is_range":119,"range_type":493,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"18.04",{"version":499,"is_range":119,"range_type":493,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"18.10",{"ecosystem":9,"name":501,"vendor":502,"product":503,"cpe_part":489,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":504},"debian linux","debian","debian_linux",[505,507],{"version":506,"is_range":119,"range_type":493,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0",{"version":508,"is_range":119,"range_type":493,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0",{"ecosystem":9,"name":510,"vendor":9,"product":510,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":511},"Chrome",[512,517],{"version":513,"is_range":514,"range_type":493,"version_start":9,"version_start_type":9,"version_end":515,"version_end_type":516,"fixed_in":9},"lt71.0.3578.80",true,"71.0.3578.80","excluding",{"version":518,"is_range":514,"range_type":131,"version_start":519,"version_start_type":520,"version_end":515,"version_end_type":516,"fixed_in":9},">= unspecified, \u003C 71.0.3578.80","unspecified","including",{"ecosystem":9,"name":522,"vendor":523,"product":522,"cpe_part":489,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":524},"leap","opensuse",[525],{"version":526,"is_range":119,"range_type":493,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"15.0",{"ecosystem":9,"name":528,"vendor":529,"product":530,"cpe_part":489,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":531},"enterprise linux desktop","redhat","enterprise_linux_desktop",[532,534],{"version":533,"is_range":119,"range_type":493,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0",{"version":535,"is_range":119,"range_type":493,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0",{"ecosystem":9,"name":537,"vendor":529,"product":538,"cpe_part":489,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":539},"enterprise linux server","enterprise_linux_server",[540,541],{"version":533,"is_range":119,"range_type":493,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":535,"is_range":119,"range_type":493,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":543,"vendor":529,"product":544,"cpe_part":489,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":545},"enterprise linux server aus","enterprise_linux_server_aus",[546],{"version":547,"is_range":119,"range_type":493,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.6",{"ecosystem":9,"name":549,"vendor":529,"product":550,"cpe_part":489,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":551},"enterprise linux server eus","enterprise_linux_server_eus",[552],{"version":547,"is_range":119,"range_type":493,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":554,"vendor":529,"product":555,"cpe_part":489,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":556},"enterprise linux server tus","enterprise_linux_server_tus",[557],{"version":547,"is_range":119,"range_type":493,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":559,"vendor":529,"product":560,"cpe_part":489,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":561},"enterprise linux workstation","enterprise_linux_workstation",[562,563],{"version":533,"is_range":119,"range_type":493,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":535,"is_range":119,"range_type":493,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9}]