[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2019-15126":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T02:53:27.892Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":28,"aliases":43,"duplicate_of":9,"upstream":44,"downstream":45,"duplicates":72,"related":73,"reserved_at":9,"published_at":87,"modified_at":88,"state":89,"summary":90,"references_raw":97,"kevs":156,"epss":157,"epss_history":160,"metrics":415,"affected":425},"CVE-2019-15126","An issue was discovered on Broadcom Wi-Fi client devices. Specifically timed and handcrafted traffic can cause internal errors (related to state transitions) in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure over the air for a discrete set of traffic, a different vulnerability than CVE-2019-9500, CVE-2019-9501, CVE-2019-9502, and CVE-2019-9503.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-367","Time-of-check Time-of-use (TOCTOU) Race Condition","The product checks the state of a resource before using that resource, but the resource's state can change between the check and the use in a way that invalidates the results of the check.","weakness","Incomplete","Base","Medium",[20,24],{"id":21,"name":22,"techniques":23},"CAPEC-27","Leveraging Race Conditions via Symbolic Links",[],{"id":25,"name":26,"techniques":27},"CAPEC-29","Leveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions",[],[29],{"_key":30,"name":31,"source":32,"url":33,"maturity":34,"reliability_score":35,"verified":36,"type":37,"platforms":38,"requires_auth":9,"exploitdb":40,"metasploit":9},"48233","Broadcom Wi-Fi Devices - 'KR00K Information Disclosure","exploit-database","https://www.exploit-db.com/exploits/48233","poc",0.5,false,"remote",[39],"multiple",{"verified":36,"type":37,"platform":39,"file":41,"codes":42},"exploits/multiple/remote/48233.py",[7],[],[],[46,48,50,52,54,56,58,60,62,64,66,68,70],{"_key":47},"SUSE-SU-2021:4200-1",{"_key":49},"SUSE-SU-2022:0366-1",{"_key":51},"SUSE-SU-2021:4003-1",{"_key":53},"SUSE-SU-2021:4201-1",{"_key":55},"SUSE-SU-2022:0068-1",{"_key":57},"SUSE-SU-2022:0080-1",{"_key":59},"SUSE-SU-2022:0090-1",{"_key":61},"SUSE-SU-2022:0367-1",{"_key":63},"SUSE-SU-2022:0371-1",{"_key":65},"OPENSUSE-SU-2021:1648-1",{"_key":67},"OPENSUSE-SU-2022:0366-1",{"_key":69},"MGASA-2021-0103",{"_key":71},"MGASA-2021-0104",[],[74,75,76,77,78,79,80,81,82,83,84,85,86],{"_key":47},{"_key":49},{"_key":51},{"_key":53},{"_key":55},{"_key":57},{"_key":59},{"_key":61},{"_key":63},{"_key":65},{"_key":67},{"_key":69},{"_key":71},"2020-02-05T16:17:37.000Z","2024-08-05T00:34:53.246Z","Modified",{"cisa_kev":36,"cisa_ransomware":36,"cisa_vendor":9,"epss_severity":91,"epss_score":92,"severity":91,"severity_score":93,"severity_version":94,"severity_source":95,"severity_vector":96,"severity_status":89},"low",0.08412,3.1,"v3.1","nvd","CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",[98,105,109,113,119,123,127,131,135,139,144,148,152],{"url":99,"sources":100,"tags":102},"https://support.apple.com/kb/HT210721",[101,95],"cve.org",[103,104],"X Refsource CONFIRM","Third Party Advisory",{"url":106,"sources":107,"tags":108},"https://support.apple.com/kb/HT210722",[101,95],[103,104],{"url":110,"sources":111,"tags":112},"https://support.apple.com/kb/HT210788",[101,95],[103],{"url":114,"sources":115,"tags":116},"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20200226-wi-fi-info-disclosure",[101,95],[117,118],"Vendor Advisory","X Refsource CISCO",{"url":120,"sources":121,"tags":122},"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2020-0001",[101,95],[103],{"url":124,"sources":125,"tags":126},"http://www.huawei.com/en/psirt/security-notices/huawei-sn-20200228-01-kr00k-en",[101,95],[103],{"url":128,"sources":129,"tags":130},"https://www.mist.com/documentation/mist-security-advisory-kr00k-attack-faq/",[101,95],[103],{"url":132,"sources":133,"tags":134},"http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-003.txt",[101,95],[103],{"url":136,"sources":137,"tags":138},"https://www.synology.com/security/advisory/Synology_SA_20_03",[101,95],[103],{"url":140,"sources":141,"tags":142},"http://packetstormsecurity.com/files/156809/Broadcom-Wi-Fi-KR00K-Proof-Of-Concept.html",[101,95],[143],"X Refsource MISC",{"url":145,"sources":146,"tags":147},"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200527-01-wifi-en",[101,95],[103],{"url":149,"sources":150,"tags":151},"https://cert-portal.siemens.com/productcert/pdf/ssa-712518.pdf",[101,95],[103],{"url":153,"sources":154,"tags":155},"https://us-cert.cisa.gov/ics/advisories/icsa-20-224-05",[101,95],[143],[],{"date":158,"score":92,"percentile":159},"2026-06-03",0.92471,[161,165,169,172,175,177,179,182,185,188,191,194,196,199,201,205,208,211,215,218,222,225,228,230,232,235,238,241,244,247,250,253,256,259,262,264,267,270,273,276,279,282,285,287,290,293,296,298,301,303,306,309,312,315,318,320,323,326,329,331,334,337,340,343,345,348,351,354,357,359,362,364,367,370,373,376,379,381,384,387,390,393,395,397,400,402,405,407,410,412],{"date":162,"score":163,"percentile":164},"2025-11-04",0.07993,0.91694,{"date":166,"score":167,"percentile":168},"2025-11-05",0.08564,0.92009,{"date":170,"score":167,"percentile":171},"2025-11-06",0.92011,{"date":173,"score":167,"percentile":174},"2025-11-07",0.92014,{"date":176,"score":167,"percentile":171},"2025-11-08",{"date":178,"score":167,"percentile":171},"2025-11-09",{"date":180,"score":167,"percentile":181},"2025-11-10",0.92012,{"date":183,"score":167,"percentile":184},"2025-11-11",0.92017,{"date":186,"score":167,"percentile":187},"2025-11-12",0.92023,{"date":189,"score":167,"percentile":190},"2025-11-13",0.92025,{"date":192,"score":167,"percentile":193},"2025-11-14",0.92027,{"date":195,"score":167,"percentile":187},"2025-11-15",{"date":197,"score":167,"percentile":198},"2025-11-16",0.92031,{"date":200,"score":167,"percentile":198},"2025-11-17",{"date":202,"score":203,"percentile":204},"2025-11-18",0.09312,0.91914,{"date":206,"score":203,"percentile":207},"2025-11-19",0.91917,{"date":209,"score":203,"percentile":210},"2025-11-20",0.91922,{"date":212,"score":213,"percentile":214},"2025-11-21",0.08034,0.91759,{"date":216,"score":213,"percentile":217},"2025-11-22",0.91758,{"date":219,"score":220,"percentile":221},"2025-11-23",0.08777,0.9217,{"date":223,"score":220,"percentile":224},"2025-11-24",0.92171,{"date":226,"score":220,"percentile":227},"2025-11-25",0.92173,{"date":229,"score":220,"percentile":227},"2025-11-26",{"date":231,"score":220,"percentile":224},"2025-11-27",{"date":233,"score":220,"percentile":234},"2025-11-28",0.92162,{"date":236,"score":220,"percentile":237},"2025-11-29",0.92181,{"date":239,"score":220,"percentile":240},"2025-11-30",0.92179,{"date":242,"score":220,"percentile":243},"2025-12-01",0.92221,{"date":245,"score":220,"percentile":246},"2025-12-02",0.92226,{"date":248,"score":220,"percentile":249},"2025-12-03",0.92229,{"date":251,"score":220,"percentile":252},"2025-12-04",0.92185,{"date":254,"score":220,"percentile":255},"2025-12-05",0.92187,{"date":257,"score":167,"percentile":258},"2025-12-06",0.92071,{"date":260,"score":167,"percentile":261},"2025-12-07",0.92069,{"date":263,"score":167,"percentile":261},"2025-12-08",{"date":265,"score":167,"percentile":266},"2025-12-09",0.92073,{"date":268,"score":167,"percentile":269},"2025-12-10",0.92081,{"date":271,"score":167,"percentile":272},"2025-12-11",0.92085,{"date":274,"score":167,"percentile":275},"2025-12-12",0.92088,{"date":277,"score":167,"percentile":278},"2025-12-13",0.92079,{"date":280,"score":167,"percentile":281},"2025-12-14",0.92075,{"date":283,"score":167,"percentile":284},"2025-12-15",0.92078,{"date":286,"score":167,"percentile":275},"2025-12-16",{"date":288,"score":167,"percentile":289},"2025-12-17",0.92092,{"date":291,"score":167,"percentile":292},"2025-12-18",0.92097,{"date":294,"score":167,"percentile":295},"2025-12-19",0.92101,{"date":297,"score":167,"percentile":295},"2025-12-20",{"date":299,"score":167,"percentile":300},"2025-12-21",0.921,{"date":302,"score":167,"percentile":300},"2025-12-22",{"date":304,"score":167,"percentile":305},"2025-12-23",0.92104,{"date":307,"score":167,"percentile":308},"2025-12-24",0.92107,{"date":310,"score":167,"percentile":311},"2025-12-25",0.9211,{"date":313,"score":167,"percentile":314},"2025-12-26",0.92111,{"date":316,"score":167,"percentile":317},"2025-12-27",0.92135,{"date":319,"score":167,"percentile":308},"2025-12-28",{"date":321,"score":167,"percentile":322},"2025-12-29",0.92102,{"date":324,"score":167,"percentile":325},"2025-12-30",0.92108,{"date":327,"score":167,"percentile":328},"2025-12-31",0.92115,{"date":330,"score":167,"percentile":224},"2026-01-01",{"date":332,"score":167,"percentile":333},"2026-01-02",0.92169,{"date":335,"score":167,"percentile":336},"2026-01-03",0.92167,{"date":338,"score":167,"percentile":339},"2026-01-04",0.92123,{"date":341,"score":167,"percentile":342},"2026-01-05",0.92122,{"date":344,"score":167,"percentile":339},"2026-01-06",{"date":346,"score":167,"percentile":347},"2026-01-07",0.92124,{"date":349,"score":167,"percentile":350},"2026-01-08",0.92127,{"date":352,"score":167,"percentile":353},"2026-01-09",0.92129,{"date":355,"score":167,"percentile":356},"2026-01-10",0.92131,{"date":358,"score":167,"percentile":347},"2026-01-11",{"date":360,"score":167,"percentile":361},"2026-01-12",0.92125,{"date":363,"score":167,"percentile":361},"2026-01-13",{"date":365,"score":167,"percentile":366},"2026-01-14",0.92137,{"date":368,"score":167,"percentile":369},"2026-01-15",0.9214,{"date":371,"score":167,"percentile":372},"2026-01-16",0.92142,{"date":374,"score":167,"percentile":375},"2026-01-17",0.92145,{"date":377,"score":167,"percentile":378},"2026-01-18",0.92139,{"date":380,"score":167,"percentile":378},"2026-01-19",{"date":382,"score":167,"percentile":383},"2026-01-20",0.92143,{"date":385,"score":167,"percentile":386},"2026-01-21",0.92148,{"date":388,"score":167,"percentile":389},"2026-01-22",0.92151,{"date":391,"score":167,"percentile":392},"2026-01-23",0.9216,{"date":394,"score":167,"percentile":336},"2026-01-24",{"date":396,"score":167,"percentile":333},"2026-01-25",{"date":398,"score":167,"percentile":399},"2026-01-26",0.92172,{"date":401,"score":167,"percentile":227},"2026-01-27",{"date":403,"score":167,"percentile":404},"2026-01-28",0.92177,{"date":406,"score":167,"percentile":404},"2026-01-29",{"date":408,"score":167,"percentile":409},"2026-01-30",0.92174,{"date":411,"score":167,"percentile":227},"2026-01-31",{"date":413,"score":167,"percentile":414},"2026-02-01",0.92215,[416],{"source":95,"cvss_v2_0":417,"cvss_v3_0":9,"cvss_v3_1":421,"cvss_v4_0":9},{"baseScore":418,"baseSeverity":9,"vectorString":419,"impactScore":418,"exploitabilityScore":420},2.9,"AV:A/AC:M/Au:N/C:P/I:N/A:N",5.5,{"baseScore":93,"baseSeverity":422,"vectorString":96,"impactScore":423,"exploitabilityScore":424},"LOW",2.3,4.1,[426,438,444,451,458,463,468,473,478],{"ecosystem":9,"name":427,"vendor":428,"product":429,"cpe_part":430,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":431},"iPadOS","apple","ipados","a",[432],{"version":433,"is_range":434,"range_type":435,"version_start":9,"version_start_type":9,"version_end":436,"version_end_type":437,"fixed_in":9},"lt13.2",true,"cpe","13.2","excluding",{"ecosystem":9,"name":439,"vendor":428,"product":440,"cpe_part":441,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":442},"iphone os","iphone_os","o",[443],{"version":433,"is_range":434,"range_type":435,"version_start":9,"version_start_type":9,"version_end":436,"version_end_type":437,"fixed_in":9},{"ecosystem":9,"name":445,"vendor":428,"product":446,"cpe_part":441,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":447},"mac os x","mac_os_x",[448],{"version":449,"is_range":434,"range_type":435,"version_start":9,"version_start_type":9,"version_end":450,"version_end_type":437,"fixed_in":9},"lt10.15.1","10.15.1",{"ecosystem":9,"name":452,"vendor":453,"product":454,"cpe_part":441,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":455},"bcm43012 firmware","broadcom","bcm43012_firmware",[456],{"version":457,"is_range":36,"range_type":435,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"na",{"ecosystem":9,"name":459,"vendor":453,"product":460,"cpe_part":441,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":461},"bcm43013 firmware","bcm43013_firmware",[462],{"version":457,"is_range":36,"range_type":435,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":464,"vendor":453,"product":465,"cpe_part":441,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":466},"bcm4356 firmware","bcm4356_firmware",[467],{"version":457,"is_range":36,"range_type":435,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":469,"vendor":453,"product":470,"cpe_part":441,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":471},"bcm4375 firmware","bcm4375_firmware",[472],{"version":457,"is_range":36,"range_type":435,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":474,"vendor":453,"product":475,"cpe_part":441,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":476},"bcm43752 firmware","bcm43752_firmware",[477],{"version":457,"is_range":36,"range_type":435,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":479,"vendor":453,"product":480,"cpe_part":441,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":481},"bcm4389 firmware","bcm4389_firmware",[482],{"version":457,"is_range":36,"range_type":435,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9}]