[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2018-20855":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":68,"aliases":69,"duplicate_of":9,"upstream":70,"downstream":71,"duplicates":104,"related":105,"reserved_at":9,"published_at":120,"modified_at":121,"state":122,"summary":123,"references_raw":131,"kevs":165,"epss":166,"epss_history":169,"metrics":431,"affected":442},"CVE-2018-20855","An issue was discovered in the Linux kernel before 4.18.7. In create_qp_common in drivers/infiniband/hw/mlx5/qp.c, mlx5_ib_create_qp_resp was never initialized, resulting in a leak of stack memory to userspace.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-119","Improper Restriction of Operations within the Bounds of a Memory Buffer","The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.","weakness","Stable","Class","High",[20,24,28,32,36,40,44,48,52,56,60,64],{"id":21,"name":22,"techniques":23},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":25,"name":26,"techniques":27},"CAPEC-100","Overflow Buffers",[],{"id":29,"name":30,"techniques":31},"CAPEC-123","Buffer Manipulation",[],{"id":33,"name":34,"techniques":35},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":37,"name":38,"techniques":39},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":41,"name":42,"techniques":43},"CAPEC-42","MIME Conversion",[],{"id":45,"name":46,"techniques":47},"CAPEC-44","Overflow Binary Resource File",[],{"id":49,"name":50,"techniques":51},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":53,"name":54,"techniques":55},"CAPEC-46","Overflow Variables and Tags",[],{"id":57,"name":58,"techniques":59},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":61,"name":62,"techniques":63},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":65,"name":66,"techniques":67},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],[],[],[],[72,74,76,78,80,82,84,86,88,90,92,94,96,98,100,102],{"_key":73},"UBUNTU-CVE-2018-20855",{"_key":75},"SUSE-SU-2019:14157-1",{"_key":77},"SUSE-SU-2019:2068-1",{"_key":79},"SUSE-SU-2019:2069-1",{"_key":81},"SUSE-SU-2019:2070-1",{"_key":83},"SUSE-SU-2019:2071-1",{"_key":85},"SUSE-SU-2019:2072-1",{"_key":87},"SUSE-SU-2019:2073-1",{"_key":89},"SUSE-SU-2019:2262-1",{"_key":91},"SUSE-SU-2019:2263-1",{"_key":93},"SUSE-SU-2019:2299-1",{"_key":95},"SUSE-SU-2019:2430-1",{"_key":97},"SUSE-SU-2019:2450-1",{"_key":99},"OPENSUSE-SU-2019:1923-1",{"_key":101},"OPENSUSE-SU-2019:1924-1",{"_key":103},"DEBIAN-CVE-2018-20855",[],[106,107,108,109,110,111,112,113,114,115,116,117,118,119],{"_key":75},{"_key":77},{"_key":79},{"_key":81},{"_key":83},{"_key":85},{"_key":87},{"_key":89},{"_key":91},{"_key":93},{"_key":95},{"_key":97},{"_key":99},{"_key":101},"2019-07-26T04:39:40.000Z","2024-08-05T12:12:29.320Z","Modified",{"cisa_kev":124,"cisa_ransomware":124,"cisa_vendor":9,"epss_severity":125,"epss_score":126,"severity":125,"severity_score":127,"severity_version":128,"severity_source":129,"severity_vector":130,"severity_status":122},false,"low",0.00107,3.3,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",[132,140,146,151,156,160],{"url":133,"sources":134,"tags":136},"https://github.com/torvalds/linux/commit/0625b4ba1a5d4703c7fb01c497bd6c156908af00",[135,129],"cve.org",[137,138,139],"X Refsource MISC","Patch","Third Party Advisory",{"url":141,"sources":142,"tags":143},"https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=0625b4ba1a5d4703c7fb01c497bd6c156908af00",[135,129],[137,144,138,145],"Mailing List","Vendor Advisory",{"url":147,"sources":148,"tags":149},"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.18.7",[135,129],[137,144,150,145],"Release Notes",{"url":152,"sources":153,"tags":154},"http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00055.html",[135,129],[145,155,139],"X Refsource SUSE",{"url":157,"sources":158,"tags":159},"http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00056.html",[135,129],[145,155,139],{"url":161,"sources":162,"tags":163},"https://security.netapp.com/advisory/ntap-20190905-0002/",[135,129],[164,139],"X Refsource CONFIRM",[],{"date":167,"score":126,"percentile":168},"2026-06-03",0.28576,[170,174,177,180,183,186,189,192,194,197,200,203,206,208,211,215,218,221,224,227,230,233,236,239,241,244,247,250,253,256,259,262,265,268,271,274,276,279,282,285,288,290,293,296,299,302,305,308,311,314,317,319,322,325,328,331,334,336,339,342,345,348,351,354,357,360,363,366,369,372,375,378,380,383,386,388,391,394,397,400,403,405,408,410,413,416,419,422,425,428],{"date":171,"score":172,"percentile":173},"2025-11-04",0.00109,0.29934,{"date":175,"score":172,"percentile":176},"2025-11-05",0.29912,{"date":178,"score":172,"percentile":179},"2025-11-06",0.29923,{"date":181,"score":172,"percentile":182},"2025-11-07",0.29917,{"date":184,"score":172,"percentile":185},"2025-11-08",0.29921,{"date":187,"score":172,"percentile":188},"2025-11-09",0.29899,{"date":190,"score":172,"percentile":191},"2025-11-10",0.29879,{"date":193,"score":172,"percentile":188},"2025-11-11",{"date":195,"score":172,"percentile":196},"2025-11-12",0.29941,{"date":198,"score":172,"percentile":199},"2025-11-13",0.29959,{"date":201,"score":172,"percentile":202},"2025-11-14",0.29956,{"date":204,"score":172,"percentile":205},"2025-11-15",0.29949,{"date":207,"score":172,"percentile":179},"2025-11-16",{"date":209,"score":172,"percentile":210},"2025-11-17",0.29896,{"date":212,"score":213,"percentile":214},"2025-11-18",0.00086,0.20981,{"date":216,"score":213,"percentile":217},"2025-11-19",0.20991,{"date":219,"score":213,"percentile":220},"2025-11-20",0.20961,{"date":222,"score":172,"percentile":223},"2025-11-21",0.29935,{"date":225,"score":172,"percentile":226},"2025-11-22",0.29943,{"date":228,"score":172,"percentile":229},"2025-11-23",0.29908,{"date":231,"score":172,"percentile":232},"2025-11-24",0.29884,{"date":234,"score":172,"percentile":235},"2025-11-25",0.29873,{"date":237,"score":172,"percentile":238},"2025-11-26",0.29872,{"date":240,"score":172,"percentile":232},"2025-11-27",{"date":242,"score":172,"percentile":243},"2025-11-28",0.29867,{"date":245,"score":172,"percentile":246},"2025-11-29",0.29856,{"date":248,"score":172,"percentile":249},"2025-11-30",0.29832,{"date":251,"score":172,"percentile":252},"2025-12-01",0.29898,{"date":254,"score":172,"percentile":255},"2025-12-02",0.29927,{"date":257,"score":172,"percentile":258},"2025-12-03",0.29933,{"date":260,"score":172,"percentile":261},"2025-12-04",0.29843,{"date":263,"score":172,"percentile":264},"2025-12-05",0.29878,{"date":266,"score":172,"percentile":267},"2025-12-06",0.29881,{"date":269,"score":172,"percentile":270},"2025-12-07",0.29855,{"date":272,"score":172,"percentile":273},"2025-12-08",0.29863,{"date":275,"score":172,"percentile":185},"2025-12-09",{"date":277,"score":172,"percentile":278},"2025-12-10",0.29984,{"date":280,"score":172,"percentile":281},"2025-12-11",0.30013,{"date":283,"score":172,"percentile":284},"2025-12-12",0.30034,{"date":286,"score":172,"percentile":287},"2025-12-13",0.30038,{"date":289,"score":172,"percentile":281},"2025-12-14",{"date":291,"score":172,"percentile":292},"2025-12-15",0.29982,{"date":294,"score":172,"percentile":295},"2025-12-16",0.29999,{"date":297,"score":172,"percentile":298},"2025-12-17",0.30048,{"date":300,"score":172,"percentile":301},"2025-12-18",0.30099,{"date":303,"score":172,"percentile":304},"2025-12-19",0.30113,{"date":306,"score":172,"percentile":307},"2025-12-20",0.3009,{"date":309,"score":172,"percentile":310},"2025-12-21",0.30043,{"date":312,"score":172,"percentile":313},"2025-12-22",0.30003,{"date":315,"score":172,"percentile":316},"2025-12-23",0.29976,{"date":318,"score":172,"percentile":292},"2025-12-24",{"date":320,"score":172,"percentile":321},"2025-12-25",0.30054,{"date":323,"score":172,"percentile":324},"2025-12-26",0.30051,{"date":326,"score":172,"percentile":327},"2025-12-27",0.30053,{"date":329,"score":172,"percentile":330},"2025-12-28",0.29973,{"date":332,"score":172,"percentile":333},"2025-12-29",0.29945,{"date":335,"score":172,"percentile":333},"2025-12-30",{"date":337,"score":172,"percentile":338},"2025-12-31",0.29997,{"date":340,"score":172,"percentile":341},"2026-01-01",0.30121,{"date":343,"score":172,"percentile":344},"2026-01-02",0.30114,{"date":346,"score":172,"percentile":347},"2026-01-03",0.30098,{"date":349,"score":172,"percentile":350},"2026-01-04",0.29977,{"date":352,"score":172,"percentile":353},"2026-01-05",0.29972,{"date":355,"score":172,"percentile":356},"2026-01-06",0.29983,{"date":358,"score":172,"percentile":359},"2026-01-07",0.30014,{"date":361,"score":172,"percentile":362},"2026-01-08",0.30041,{"date":364,"score":172,"percentile":365},"2026-01-09",0.30036,{"date":367,"score":172,"percentile":368},"2026-01-10",0.30031,{"date":370,"score":172,"percentile":371},"2026-01-11",0.30007,{"date":373,"score":172,"percentile":374},"2026-01-12",0.29961,{"date":376,"score":172,"percentile":377},"2026-01-13",0.29939,{"date":379,"score":172,"percentile":278},"2026-01-14",{"date":381,"score":172,"percentile":382},"2026-01-15",0.2998,{"date":384,"score":172,"percentile":385},"2026-01-16",0.30009,{"date":387,"score":172,"percentile":295},"2026-01-17",{"date":389,"score":172,"percentile":390},"2026-01-18",0.2994,{"date":392,"score":172,"percentile":393},"2026-01-19",0.29907,{"date":395,"score":172,"percentile":396},"2026-01-20",0.29894,{"date":398,"score":172,"percentile":399},"2026-01-21",0.29841,{"date":401,"score":172,"percentile":402},"2026-01-22",0.29813,{"date":404,"score":172,"percentile":191},"2026-01-23",{"date":406,"score":172,"percentile":407},"2026-01-24",0.29886,{"date":409,"score":172,"percentile":402},"2026-01-25",{"date":411,"score":172,"percentile":412},"2026-01-26",0.29736,{"date":414,"score":172,"percentile":415},"2026-01-27",0.2972,{"date":417,"score":172,"percentile":418},"2026-01-28",0.29702,{"date":420,"score":172,"percentile":421},"2026-01-29",0.29661,{"date":423,"score":172,"percentile":424},"2026-01-30",0.29652,{"date":426,"score":172,"percentile":427},"2026-01-31",0.29651,{"date":429,"score":172,"percentile":430},"2026-02-01",0.29718,[432],{"source":129,"cvss_v2_0":433,"cvss_v3_0":9,"cvss_v3_1":438,"cvss_v4_0":9},{"baseScore":434,"baseSeverity":9,"vectorString":435,"impactScore":436,"exploitabilityScore":437},2.1,"AV:L/AC:L/Au:N/C:P/I:N/A:N",2.9,3.9,{"baseScore":127,"baseSeverity":439,"vectorString":130,"impactScore":440,"exploitabilityScore":441},"LOW",2.3,4.6,[443,455,463,471,476,481],{"ecosystem":9,"name":444,"vendor":445,"product":446,"cpe_part":447,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":448},"linux kernel","linux","linux_kernel","o",[449],{"version":450,"is_range":451,"range_type":452,"version_start":9,"version_start_type":9,"version_end":453,"version_end_type":454,"fixed_in":9},"lt4.18.7",true,"cpe","4.18.7","excluding",{"ecosystem":9,"name":456,"vendor":457,"product":458,"cpe_part":459,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":460},"active iq performance analytics services","netapp","active_iq_performance_analytics_services","a",[461],{"version":462,"is_range":124,"range_type":452,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"na",{"ecosystem":9,"name":464,"vendor":457,"product":465,"cpe_part":459,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":466},"active iq unified manager","active_iq_unified_manager",[467],{"version":468,"is_range":451,"range_type":452,"version_start":469,"version_start_type":470,"version_end":9,"version_end_type":9,"fixed_in":9},"gte9.5","9.5","including",{"ecosystem":9,"name":472,"vendor":457,"product":473,"cpe_part":459,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":474},"data availability services","data_availability_services",[475],{"version":462,"is_range":124,"range_type":452,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":477,"vendor":457,"product":478,"cpe_part":459,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":479},"element software","element_software",[480],{"version":462,"is_range":124,"range_type":452,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":482,"vendor":483,"product":482,"cpe_part":447,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":484},"leap","opensuse",[485,487],{"version":486,"is_range":124,"range_type":452,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"15.0",{"version":488,"is_range":124,"range_type":452,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"15.1"]