[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2019-11050":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":23,"aliases":33,"duplicate_of":9,"upstream":34,"downstream":35,"duplicates":66,"related":67,"reserved_at":9,"published_at":76,"modified_at":77,"state":78,"summary":79,"references_raw":87,"kevs":153,"epss":154,"epss_history":157,"metrics":416,"affected":431},"CVE-2019-11050","When PHP EXIF extension is parsing EXIF information from an image, e.g. via exif_read_data() function, in PHP versions 7.2.x below 7.2.26, 7.3.x below 7.3.13 and 7.4.0 it is possible to supply it with data what will cause it to read past the allocated buffer. This may lead to information disclosure or crash.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-125","Out-of-bounds Read","The product reads data past the end, or before the beginning, of the intended buffer.","weakness","Draft","Base",[19],{"id":20,"name":21,"techniques":22},"CAPEC-540","Overread Buffers",[],[24],{"_key":25,"name":26,"source":27,"url":28,"maturity":29,"reliability_score":30,"verified":31,"type":9,"platforms":32,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_5F35ABDCDE6A3149","Exploit Reference (bugs.php.net)","reference","https://bugs.php.net/bug.php?id=78793","unknown",0.2,false,[],[],[],[36,38,40,42,44,46,48,50,52,54,56,58,60,62,64],{"_key":37},"OPENSUSE-SU-2020:0080-1",{"_key":39},"SUSE-SU-2020:0101-1",{"_key":41},"SUSE-SU-2020:0267-1",{"_key":43},"SUSE-SU-2020:0352-1",{"_key":45},"SUSE-SU-2020:0522-1",{"_key":47},"SUSE-SU-2020:14289-1",{"_key":49},"SUSE-SU-2022:4067-1",{"_key":51},"RHSA-2020:5275",{"_key":53},"DLA-2050-1",{"_key":55},"DSA-4626-1",{"_key":57},"DSA-4628-1",{"_key":59},"MGASA-2019-0412",{"_key":61},"UBUNTU-CVE-2019-11050",{"_key":63},"USN-4239-1",{"_key":65},"RHSA-2020:3662",[],[68,69,70,71,72,73,74,75],{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":47},{"_key":49},{"_key":59},"2019-12-23T02:40:18.861Z","2024-09-16T18:33:19.281Z","Modified",{"cisa_kev":31,"cisa_ransomware":31,"cisa_vendor":9,"epss_severity":80,"epss_score":81,"severity":82,"severity_score":83,"severity_version":84,"severity_source":85,"severity_vector":86,"severity_status":78},"low",0.03196,"medium",6.5,"v3.1","nvd","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",[88,97,103,108,113,117,122,127,132,137,141,145,149],{"url":28,"sources":89,"tags":91},[90,85],"cve.org",[92,93,94,95,96],"X Refsource MISC","Exploit","Mailing List","Patch","Vendor Advisory",{"url":98,"sources":99,"tags":100},"https://lists.debian.org/debian-lts-announce/2019/12/msg00034.html",[90,85],[94,101,102],"X Refsource MLIST","Third Party Advisory",{"url":104,"sources":105,"tags":106},"https://security.netapp.com/advisory/ntap-20200103-0002/",[90,85],[107,102],"X Refsource CONFIRM",{"url":109,"sources":110,"tags":111},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N7GCOAE6KVHYJ3UQ4KLPLTGSLX6IRVRN/",[90,85],[96,112],"X Refsource FEDORA",{"url":114,"sources":115,"tags":116},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XWRQPYXVG43Q7DXMXH6UVWMKWGUW552F/",[90,85],[96,112],{"url":118,"sources":119,"tags":120},"https://usn.ubuntu.com/4239-1/",[90,85],[96,121,102],"X Refsource UBUNTU",{"url":123,"sources":124,"tags":125},"http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00036.html",[90,85],[96,126,94,102],"X Refsource SUSE",{"url":128,"sources":129,"tags":130},"https://seclists.org/bugtraq/2020/Feb/27",[90,85],[94,131,102],"X Refsource BUGTRAQ",{"url":133,"sources":134,"tags":135},"https://www.debian.org/security/2020/dsa-4626",[90,85],[96,136,102],"X Refsource DEBIAN",{"url":138,"sources":139,"tags":140},"https://www.debian.org/security/2020/dsa-4628",[90,85],[96,136,102],{"url":142,"sources":143,"tags":144},"https://seclists.org/bugtraq/2020/Feb/31",[90,85],[94,131,102],{"url":146,"sources":147,"tags":148},"https://seclists.org/bugtraq/2021/Jan/3",[90,85],[94,131,102],{"url":150,"sources":151,"tags":152},"https://www.tenable.com/security/tns-2021-14",[90,85],[107,102],[],{"date":155,"score":81,"percentile":156},"2026-06-04",0.87228,[158,162,165,168,171,174,177,180,182,185,188,191,193,196,199,203,206,209,212,215,217,219,222,224,226,229,232,235,239,242,244,247,250,253,256,259,262,265,268,271,274,277,280,283,286,289,292,294,297,300,303,306,309,312,316,319,322,325,328,331,334,336,339,342,344,346,349,351,354,356,358,361,363,366,369,372,375,377,380,383,386,389,392,395,398,401,404,407,410,413],{"date":159,"score":160,"percentile":161},"2025-11-04",0.03121,0.86319,{"date":163,"score":160,"percentile":164},"2025-11-05",0.86323,{"date":166,"score":160,"percentile":167},"2025-11-06",0.86322,{"date":169,"score":160,"percentile":170},"2025-11-07",0.86331,{"date":172,"score":160,"percentile":173},"2025-11-08",0.86334,{"date":175,"score":160,"percentile":176},"2025-11-09",0.86328,{"date":178,"score":160,"percentile":179},"2025-11-10",0.86329,{"date":181,"score":160,"percentile":173},"2025-11-11",{"date":183,"score":160,"percentile":184},"2025-11-12",0.86341,{"date":186,"score":160,"percentile":187},"2025-11-13",0.86347,{"date":189,"score":160,"percentile":190},"2025-11-14",0.86349,{"date":192,"score":160,"percentile":184},"2025-11-15",{"date":194,"score":160,"percentile":195},"2025-11-16",0.86342,{"date":197,"score":160,"percentile":198},"2025-11-17",0.86332,{"date":200,"score":201,"percentile":202},"2025-11-18",0.03425,0.86263,{"date":204,"score":201,"percentile":205},"2025-11-19",0.86264,{"date":207,"score":201,"percentile":208},"2025-11-20",0.86265,{"date":210,"score":160,"percentile":211},"2025-11-21",0.86344,{"date":213,"score":160,"percentile":214},"2025-11-22",0.86338,{"date":216,"score":160,"percentile":198},"2025-11-23",{"date":218,"score":160,"percentile":173},"2025-11-24",{"date":220,"score":160,"percentile":221},"2025-11-25",0.86335,{"date":223,"score":160,"percentile":173},"2025-11-26",{"date":225,"score":160,"percentile":221},"2025-11-27",{"date":227,"score":160,"percentile":228},"2025-11-28",0.86317,{"date":230,"score":160,"percentile":231},"2025-11-29",0.86388,{"date":233,"score":160,"percentile":234},"2025-11-30",0.86386,{"date":236,"score":237,"percentile":238},"2025-12-01",0.05484,0.89901,{"date":240,"score":237,"percentile":241},"2025-12-02",0.89905,{"date":243,"score":237,"percentile":241},"2025-12-03",{"date":245,"score":160,"percentile":246},"2025-12-04",0.8638,{"date":248,"score":160,"percentile":249},"2025-12-05",0.86382,{"date":251,"score":160,"percentile":252},"2025-12-06",0.86379,{"date":254,"score":160,"percentile":255},"2025-12-07",0.86369,{"date":257,"score":160,"percentile":258},"2025-12-08",0.8637,{"date":260,"score":160,"percentile":261},"2025-12-09",0.86378,{"date":263,"score":160,"percentile":264},"2025-12-10",0.86399,{"date":266,"score":160,"percentile":267},"2025-12-11",0.86405,{"date":269,"score":160,"percentile":270},"2025-12-12",0.86407,{"date":272,"score":160,"percentile":273},"2025-12-13",0.86403,{"date":275,"score":160,"percentile":276},"2025-12-14",0.864,{"date":278,"score":160,"percentile":279},"2025-12-15",0.86398,{"date":281,"score":160,"percentile":282},"2025-12-16",0.86406,{"date":284,"score":160,"percentile":285},"2025-12-17",0.86409,{"date":287,"score":160,"percentile":288},"2025-12-18",0.86418,{"date":290,"score":160,"percentile":291},"2025-12-19",0.8642,{"date":293,"score":160,"percentile":288},"2025-12-20",{"date":295,"score":160,"percentile":296},"2025-12-21",0.86421,{"date":298,"score":160,"percentile":299},"2025-12-22",0.86414,{"date":301,"score":160,"percentile":302},"2025-12-23",0.86417,{"date":304,"score":160,"percentile":305},"2025-12-24",0.86423,{"date":307,"score":160,"percentile":308},"2025-12-25",0.86434,{"date":310,"score":160,"percentile":311},"2025-12-26",0.86437,{"date":313,"score":314,"percentile":315},"2025-12-27",0.01611,0.81373,{"date":317,"score":160,"percentile":318},"2025-12-28",0.86431,{"date":320,"score":160,"percentile":321},"2025-12-29",0.86425,{"date":323,"score":160,"percentile":324},"2025-12-30",0.86433,{"date":326,"score":160,"percentile":327},"2025-12-31",0.86442,{"date":329,"score":237,"percentile":330},"2026-01-01",0.89984,{"date":332,"score":237,"percentile":333},"2026-01-02",0.89978,{"date":335,"score":237,"percentile":333},"2026-01-03",{"date":337,"score":160,"percentile":338},"2026-01-04",0.86441,{"date":340,"score":160,"percentile":341},"2026-01-05",0.86439,{"date":343,"score":160,"percentile":338},"2026-01-06",{"date":345,"score":160,"percentile":338},"2026-01-07",{"date":347,"score":160,"percentile":348},"2026-01-08",0.86449,{"date":350,"score":160,"percentile":348},"2026-01-09",{"date":352,"score":160,"percentile":353},"2026-01-10",0.86448,{"date":355,"score":160,"percentile":327},"2026-01-11",{"date":357,"score":160,"percentile":341},"2026-01-12",{"date":359,"score":160,"percentile":360},"2026-01-13",0.86435,{"date":362,"score":160,"percentile":353},"2026-01-14",{"date":364,"score":160,"percentile":365},"2026-01-15",0.86447,{"date":367,"score":160,"percentile":368},"2026-01-16",0.86451,{"date":370,"score":160,"percentile":371},"2026-01-17",0.86454,{"date":373,"score":160,"percentile":374},"2026-01-18",0.86455,{"date":376,"score":160,"percentile":348},"2026-01-19",{"date":378,"score":160,"percentile":379},"2026-01-20",0.86444,{"date":381,"score":160,"percentile":382},"2026-01-21",0.8645,{"date":384,"score":160,"percentile":385},"2026-01-22",0.86456,{"date":387,"score":160,"percentile":388},"2026-01-23",0.86472,{"date":390,"score":160,"percentile":391},"2026-01-24",0.86479,{"date":393,"score":160,"percentile":394},"2026-01-25",0.86474,{"date":396,"score":160,"percentile":397},"2026-01-26",0.86471,{"date":399,"score":160,"percentile":400},"2026-01-27",0.86473,{"date":402,"score":160,"percentile":403},"2026-01-28",0.86476,{"date":405,"score":160,"percentile":406},"2026-01-29",0.86478,{"date":408,"score":160,"percentile":409},"2026-01-30",0.86482,{"date":411,"score":160,"percentile":412},"2026-01-31",0.86483,{"date":414,"score":237,"percentile":415},"2026-02-01",0.90027,[417,424],{"source":90,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":418,"cvss_v4_0":9},{"baseScore":419,"baseSeverity":420,"vectorString":421,"impactScore":422,"exploitabilityScore":423},4.8,"MEDIUM","CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L",4.2,5.6,{"source":85,"cvss_v2_0":425,"cvss_v3_0":9,"cvss_v3_1":430,"cvss_v4_0":9},{"baseScore":426,"baseSeverity":9,"vectorString":427,"impactScore":428,"exploitabilityScore":429},6.4,"AV:N/AC:L/Au:N/C:P/I:N/A:P",4.9,10,{"baseScore":83,"baseSeverity":420,"vectorString":86,"impactScore":422,"exploitabilityScore":429},[432,449,460,468,474,492,502],{"ecosystem":9,"name":433,"vendor":434,"product":435,"cpe_part":436,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":437},"ubuntu linux","canonical","ubuntu_linux","o",[438,441,443,445,447],{"version":439,"is_range":31,"range_type":440,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"12.04","cpe",{"version":442,"is_range":31,"range_type":440,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"14.04",{"version":444,"is_range":31,"range_type":440,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"16.04",{"version":446,"is_range":31,"range_type":440,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"18.04",{"version":448,"is_range":31,"range_type":440,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"19.04",{"ecosystem":9,"name":450,"vendor":451,"product":452,"cpe_part":436,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":453},"debian linux","debian","debian_linux",[454,456,458],{"version":455,"is_range":31,"range_type":440,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0",{"version":457,"is_range":31,"range_type":440,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0",{"version":459,"is_range":31,"range_type":440,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.0",{"ecosystem":9,"name":461,"vendor":462,"product":461,"cpe_part":436,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":463},"fedora","fedoraproject",[464,466],{"version":465,"is_range":31,"range_type":440,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"30",{"version":467,"is_range":31,"range_type":440,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"31",{"ecosystem":9,"name":469,"vendor":470,"product":469,"cpe_part":436,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":471},"leap","opensuse",[472],{"version":473,"is_range":31,"range_type":440,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"15.1",{"ecosystem":9,"name":475,"vendor":9,"product":475,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":476},"PHP",[477,484,488],{"version":478,"is_range":479,"range_type":90,"version_start":480,"version_start_type":481,"version_end":482,"version_end_type":483,"fixed_in":9},">= 7.2.x, \u003C 7.2.26",true,"7.2.x","including","7.2.26","excluding",{"version":485,"is_range":479,"range_type":90,"version_start":486,"version_start_type":481,"version_end":487,"version_end_type":483,"fixed_in":9},">= 7.3.x, \u003C 7.3.13","7.3.x","7.3.13",{"version":489,"is_range":479,"range_type":90,"version_start":490,"version_start_type":481,"version_end":491,"version_end_type":483,"fixed_in":9},">= 7.4.x, \u003C 7.4.1","7.4.x","7.4.1",{"ecosystem":9,"name":475,"vendor":9,"product":475,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":493},[494,497,500],{"version":495,"is_range":479,"range_type":440,"version_start":496,"version_start_type":481,"version_end":482,"version_end_type":481,"fixed_in":9},"gte7.2.0_lte7.2.26","7.2.0",{"version":498,"is_range":479,"range_type":440,"version_start":499,"version_start_type":481,"version_end":487,"version_end_type":481,"fixed_in":9},"gte7.3.0_lte7.3.13","7.3.0",{"version":501,"is_range":31,"range_type":440,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.4.0",{"ecosystem":9,"name":503,"vendor":504,"product":503,"cpe_part":505,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":506},"securitycenter","tenable","a",[507],{"version":508,"is_range":479,"range_type":440,"version_start":9,"version_start_type":9,"version_end":509,"version_end_type":483,"fixed_in":9},"lt5.19.0","5.19.0"]