[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2019-13377":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":23,"aliases":24,"duplicate_of":9,"upstream":25,"downstream":26,"duplicates":51,"related":52,"reserved_at":9,"published_at":60,"modified_at":61,"state":62,"summary":63,"references_raw":72,"kevs":107,"epss":108,"epss_history":111,"metrics":375,"affected":386},"CVE-2019-13377","The implementations of SAE and EAP-pwd in hostapd and wpa_supplicant 2.x through 2.8 are vulnerable to side-channel attacks as a result of observable timing differences and cache access patterns when Brainpool curves are used. An attacker may be able to gain leaked information from a side-channel attack that can be used for full password recovery.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-203","Observable Discrepancy","The product behaves differently or sends different responses under different circumstances in a way that is observable to an unauthorized actor.","weakness","Incomplete","Base",[19],{"id":20,"name":21,"techniques":22},"CAPEC-189","Black Box Reverse Engineering",[],[],[],[],[27,29,31,33,35,37,39,41,43,45,47,49],{"_key":28},"ALPINE-CVE-2019-13377",{"_key":30},"SUSE-SU-2020:3380-1",{"_key":32},"SUSE-SU-2020:3424-1",{"_key":34},"SUSE-SU-2022:1853-1",{"_key":36},"UBUNTU-CVE-2019-13377",{"_key":38},"USN-4098-1",{"_key":40},"OPENSUSE-SU-2020:2053-1",{"_key":42},"OPENSUSE-SU-2020:2059-1",{"_key":44},"OPENSUSE-SU-2024:11515-1",{"_key":46},"DSA-4538-1",{"_key":48},"MGASA-2019-0229",{"_key":50},"DEBIAN-CVE-2019-13377",[],[53,54,55,56,57,58,59],{"_key":30},{"_key":32},{"_key":34},{"_key":40},{"_key":42},{"_key":44},{"_key":48},"2019-08-15T16:05:29.000Z","2024-08-04T23:49:24.914Z","Modified",{"cisa_kev":64,"cisa_ransomware":64,"cisa_vendor":9,"epss_severity":65,"epss_score":66,"severity":67,"severity_score":68,"severity_version":69,"severity_source":70,"severity_vector":71,"severity_status":62},false,"low",0.0058,"medium",5.9,"v3.1","nvd","CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",[73,82,86,92,97,102],{"url":74,"sources":75,"tags":77},"https://w1.fi/cgit/hostap/commit/?id=147bf7b88a9c231322b5b574263071ca6dbb0503",[76,70],"cve.org",[78,79,80,81],"X Refsource MISC","Mailing List","Patch","Vendor Advisory",{"url":83,"sources":84,"tags":85},"https://w1.fi/cgit/hostap/commit/?id=cd803299ca485eb857e37c88f973fccfbb8600e5",[76,70],[78,79,80,81],{"url":87,"sources":88,"tags":89},"https://usn.ubuntu.com/4098-1/",[76,70],[90,91],"X Refsource CONFIRM","Third Party Advisory",{"url":93,"sources":94,"tags":95},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IELLEPIXWQOJFW4SZMU3WQHO63JFAHA4/",[76,70],[81,96],"X Refsource FEDORA",{"url":98,"sources":99,"tags":100},"https://www.debian.org/security/2019/dsa-4538",[76,70],[81,101,91],"X Refsource DEBIAN",{"url":103,"sources":104,"tags":105},"https://seclists.org/bugtraq/2019/Sep/56",[76,70],[79,106,91],"X Refsource BUGTRAQ",[],{"date":109,"score":66,"percentile":110},"2026-06-03",0.6925,[112,116,119,122,125,128,130,132,135,138,141,144,147,149,152,156,159,162,165,168,171,174,177,180,182,185,188,190,194,197,200,203,205,208,211,214,217,220,223,226,229,232,235,238,241,244,247,250,253,256,258,261,264,267,271,274,277,280,283,286,289,291,294,297,299,303,306,309,312,315,318,321,324,327,330,333,336,338,340,343,346,349,352,355,358,360,362,365,368,371],{"date":113,"score":114,"percentile":115},"2025-11-04",0.01273,0.7886,{"date":117,"score":114,"percentile":118},"2025-11-05",0.78858,{"date":120,"score":114,"percentile":121},"2025-11-06",0.78857,{"date":123,"score":114,"percentile":124},"2025-11-07",0.7887,{"date":126,"score":114,"percentile":127},"2025-11-08",0.78876,{"date":129,"score":114,"percentile":124},"2025-11-09",{"date":131,"score":114,"percentile":118},"2025-11-10",{"date":133,"score":114,"percentile":134},"2025-11-11",0.78861,{"date":136,"score":114,"percentile":137},"2025-11-12",0.78878,{"date":139,"score":114,"percentile":140},"2025-11-13",0.78887,{"date":142,"score":114,"percentile":143},"2025-11-14",0.78893,{"date":145,"score":114,"percentile":146},"2025-11-15",0.78891,{"date":148,"score":114,"percentile":143},"2025-11-16",{"date":150,"score":114,"percentile":151},"2025-11-17",0.78886,{"date":153,"score":154,"percentile":155},"2025-11-18",0.00789,0.71742,{"date":157,"score":154,"percentile":158},"2025-11-19",0.71748,{"date":160,"score":154,"percentile":161},"2025-11-20",0.71756,{"date":163,"score":114,"percentile":164},"2025-11-21",0.78914,{"date":166,"score":114,"percentile":167},"2025-11-22",0.78915,{"date":169,"score":114,"percentile":170},"2025-11-23",0.78905,{"date":172,"score":114,"percentile":173},"2025-11-24",0.78903,{"date":175,"score":114,"percentile":176},"2025-11-25",0.78908,{"date":178,"score":114,"percentile":179},"2025-11-26",0.78911,{"date":181,"score":114,"percentile":167},"2025-11-27",{"date":183,"score":114,"percentile":184},"2025-11-28",0.78907,{"date":186,"score":114,"percentile":187},"2025-11-29",0.78912,{"date":189,"score":114,"percentile":179},"2025-11-30",{"date":191,"score":192,"percentile":193},"2025-12-01",0.01062,0.77101,{"date":195,"score":192,"percentile":196},"2025-12-02",0.77112,{"date":198,"score":192,"percentile":199},"2025-12-03",0.771,{"date":201,"score":114,"percentile":202},"2025-12-04",0.78909,{"date":204,"score":114,"percentile":167},"2025-12-05",{"date":206,"score":114,"percentile":207},"2025-12-06",0.78918,{"date":209,"score":114,"percentile":210},"2025-12-07",0.78919,{"date":212,"score":114,"percentile":213},"2025-12-08",0.78923,{"date":215,"score":114,"percentile":216},"2025-12-09",0.7894,{"date":218,"score":114,"percentile":219},"2025-12-10",0.78963,{"date":221,"score":114,"percentile":222},"2025-12-11",0.78977,{"date":224,"score":114,"percentile":225},"2025-12-12",0.78997,{"date":227,"score":114,"percentile":228},"2025-12-13",0.78998,{"date":230,"score":114,"percentile":231},"2025-12-14",0.78996,{"date":233,"score":114,"percentile":234},"2025-12-15",0.78995,{"date":236,"score":114,"percentile":237},"2025-12-16",0.79006,{"date":239,"score":114,"percentile":240},"2025-12-17",0.79014,{"date":242,"score":114,"percentile":243},"2025-12-18",0.79034,{"date":245,"score":114,"percentile":246},"2025-12-19",0.79044,{"date":248,"score":114,"percentile":249},"2025-12-20",0.79039,{"date":251,"score":114,"percentile":252},"2025-12-21",0.79033,{"date":254,"score":114,"percentile":255},"2025-12-22",0.79036,{"date":257,"score":114,"percentile":255},"2025-12-23",{"date":259,"score":114,"percentile":260},"2025-12-24",0.7905,{"date":262,"score":114,"percentile":263},"2025-12-25",0.7907,{"date":265,"score":114,"percentile":266},"2025-12-26",0.79067,{"date":268,"score":269,"percentile":270},"2025-12-27",0.0111,0.77679,{"date":272,"score":114,"percentile":273},"2025-12-28",0.79057,{"date":275,"score":114,"percentile":276},"2025-12-29",0.79051,{"date":278,"score":114,"percentile":279},"2025-12-30",0.79058,{"date":281,"score":114,"percentile":282},"2025-12-31",0.79075,{"date":284,"score":192,"percentile":285},"2026-01-01",0.77279,{"date":287,"score":192,"percentile":288},"2026-01-02",0.7728,{"date":290,"score":192,"percentile":285},"2026-01-03",{"date":292,"score":114,"percentile":293},"2026-01-04",0.79068,{"date":295,"score":114,"percentile":296},"2026-01-05",0.79063,{"date":298,"score":114,"percentile":263},"2026-01-06",{"date":300,"score":301,"percentile":302},"2026-01-07",0.00705,0.71568,{"date":304,"score":301,"percentile":305},"2026-01-08",0.71583,{"date":307,"score":301,"percentile":308},"2026-01-09",0.71591,{"date":310,"score":301,"percentile":311},"2026-01-10",0.71588,{"date":313,"score":301,"percentile":314},"2026-01-11",0.71582,{"date":316,"score":301,"percentile":317},"2026-01-12",0.71575,{"date":319,"score":301,"percentile":320},"2026-01-13",0.71572,{"date":322,"score":301,"percentile":323},"2026-01-14",0.71596,{"date":325,"score":301,"percentile":326},"2026-01-15",0.716,{"date":328,"score":301,"percentile":329},"2026-01-16",0.71616,{"date":331,"score":301,"percentile":332},"2026-01-17",0.71611,{"date":334,"score":301,"percentile":335},"2026-01-18",0.71587,{"date":337,"score":301,"percentile":305},"2026-01-19",{"date":339,"score":301,"percentile":308},"2026-01-20",{"date":341,"score":301,"percentile":342},"2026-01-21",0.71595,{"date":344,"score":301,"percentile":345},"2026-01-22",0.71606,{"date":347,"score":301,"percentile":348},"2026-01-23",0.71636,{"date":350,"score":301,"percentile":351},"2026-01-24",0.71641,{"date":353,"score":301,"percentile":354},"2026-01-25",0.71619,{"date":356,"score":301,"percentile":357},"2026-01-26",0.71617,{"date":359,"score":301,"percentile":354},"2026-01-27",{"date":361,"score":301,"percentile":348},"2026-01-28",{"date":363,"score":301,"percentile":364},"2026-01-29",0.71634,{"date":366,"score":301,"percentile":367},"2026-01-30",0.71639,{"date":369,"score":301,"percentile":370},"2026-01-31",0.71642,{"date":372,"score":373,"percentile":374},"2026-02-01",0.00577,0.68405,[376],{"source":70,"cvss_v2_0":377,"cvss_v3_0":9,"cvss_v3_1":382,"cvss_v4_0":9},{"baseScore":378,"baseSeverity":9,"vectorString":379,"impactScore":380,"exploitabilityScore":381},4.3,"AV:N/AC:M/Au:N/C:P/I:N/A:N",2.9,8.6,{"baseScore":68,"baseSeverity":383,"vectorString":71,"impactScore":384,"exploitabilityScore":385},"MEDIUM",6,5.6,[387,398,405,411],{"ecosystem":9,"name":388,"vendor":389,"product":390,"cpe_part":391,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":392},"ubuntu linux","canonical","ubuntu_linux","o",[393,396],{"version":394,"is_range":64,"range_type":395,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"18.04","cpe",{"version":397,"is_range":64,"range_type":395,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"19.04",{"ecosystem":9,"name":399,"vendor":400,"product":401,"cpe_part":391,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":402},"debian linux","debian","debian_linux",[403],{"version":404,"is_range":64,"range_type":395,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.0",{"ecosystem":9,"name":406,"vendor":407,"product":406,"cpe_part":391,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":408},"fedora","fedoraproject",[409],{"version":410,"is_range":64,"range_type":395,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"30",{"ecosystem":9,"name":412,"vendor":413,"product":412,"cpe_part":414,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":415},"hostapd","w1.fi","a",[416],{"version":417,"is_range":418,"range_type":395,"version_start":419,"version_start_type":420,"version_end":421,"version_end_type":420,"fixed_in":9},"gte2.0_lte2.8",true,"2.0","including","2.8"]