[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2019-3855":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":31,"aliases":32,"duplicate_of":9,"upstream":33,"downstream":34,"duplicates":77,"related":78,"reserved_at":9,"published_at":88,"modified_at":89,"state":90,"summary":91,"references_raw":100,"kevs":226,"epss":227,"epss_history":230,"metrics":489,"affected":506},"CVE-2019-3855","An integer overflow flaw which could lead to an out of bounds write was discovered in libssh2 before 1.8.1 in the way packets are read from the server. A remote attacker who compromises a SSH server may be able to execute code on the client system when a user connects to the server.",null,[11,24],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-190","Integer Overflow or Wraparound","The product performs a calculation that can\n         produce an integer overflow or wraparound when the logic\n         assumes that the resulting value will always be larger than\n         the original value. This occurs when an integer value is\n         incremented to a value that is too large to store in the\n         associated representation. When this occurs, the value may\n         become a very small or negative number.","weakness","Stable","Base","Medium",[20],{"id":21,"name":22,"techniques":23},"CAPEC-92","Forced Integer Overflow",[],{"_key":25,"id":25,"name":26,"description":27,"type":15,"status":28,"abstraction":17,"likelihood_of_exploit":29,"capec":30},"CWE-787","Out-of-bounds Write","The product writes data past the end, or before the beginning, of the intended buffer.","Draft","High",[],[],[],[],[35,37,39,41,43,45,47,49,51,53,55,57,59,61,63,65,67,69,71,73,75],{"_key":36},"ALPINE-CVE-2019-3855",{"_key":38},"RHSA-2019:0679",{"_key":40},"RHSA-2019:1652",{"_key":42},"RHSA-2019:1791",{"_key":44},"RHSA-2019:1943",{"_key":46},"RHSA-2019:2399",{"_key":48},"SUSE-SU-2019:0655-1",{"_key":50},"SUSE-SU-2019:13982-1",{"_key":52},"SUSE-SU-2019:13997-1",{"_key":54},"SUSE-SU-2020:3551-1",{"_key":56},"OPENSUSE-SU-2019:1109-1",{"_key":58},"OPENSUSE-SU-2020:2126-1",{"_key":60},"OPENSUSE-SU-2020:2129-1",{"_key":62},"OPENSUSE-SU-2024:10999-1",{"_key":64},"DLA-1730-1",{"_key":66},"DSA-4431-1",{"_key":68},"MGASA-2019-0139",{"_key":70},"UBUNTU-CVE-2019-3855",{"_key":72},"DEBIAN-CVE-2019-3855",{"_key":74},"USN-5308-1",{"_key":76},"RHSA-2019:1175",[],[79,80,81,82,83,84,85,86,87],{"_key":48},{"_key":50},{"_key":52},{"_key":54},{"_key":56},{"_key":58},{"_key":60},{"_key":62},{"_key":68},"2019-03-21T20:13:25.000Z","2025-12-17T21:40:11.249Z","Modified",{"cisa_kev":92,"cisa_ransomware":92,"cisa_vendor":9,"epss_severity":93,"epss_score":94,"severity":95,"severity_score":96,"severity_version":97,"severity_source":98,"severity_vector":99,"severity_status":90},false,"medium",0.16241,"high",9.3,"v2.0","nvd","AV:N/AC:M/Au:N/C:C/I:C/A:C",[101,110,115,121,127,132,137,142,146,150,154,159,164,168,172,177,181,185,189,193,197,201,205,209,213,217,222],{"url":102,"sources":103,"tags":105},"http://www.openwall.com/lists/oss-security/2019/03/18/3",[104,98],"cve.org",[106,107,108,109],"Mailing List","X Refsource MLIST","Patch","Third Party Advisory",{"url":111,"sources":112,"tags":113},"https://seclists.org/bugtraq/2019/Mar/25",[104,98],[106,114,109],"X Refsource BUGTRAQ",{"url":116,"sources":117,"tags":118},"https://www.libssh2.org/CVE-2019-3855.html",[104,98],[119,108,120],"X Refsource MISC","Vendor Advisory",{"url":122,"sources":123,"tags":124},"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3855",[104,98],[125,126,108,109],"X Refsource CONFIRM","Issue Tracking",{"url":128,"sources":129,"tags":130},"http://packetstormsecurity.com/files/152136/Slackware-Security-Advisory-libssh2-Updates.html",[104,98],[119,109,131],"VDB Entry",{"url":133,"sources":134,"tags":135},"http://www.securityfocus.com/bid/107485",[104,98],[131,136,109],"X Refsource BID",{"url":138,"sources":139,"tags":140},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XCWEA5ZCLKRDUK62QVVYMFWLWKOPX3LO/",[104,98],[120,141],"X Refsource FEDORA",{"url":143,"sources":144,"tags":145},"https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2019-767",[104,98],[125,109],{"url":147,"sources":148,"tags":149},"https://lists.debian.org/debian-lts-announce/2019/03/msg00032.html",[104,98],[106,107,109],{"url":151,"sources":152,"tags":153},"https://security.netapp.com/advisory/ntap-20190327-0005/",[104,98],[125,109],{"url":155,"sources":156,"tags":157},"https://access.redhat.com/errata/RHSA-2019:0679",[104,98],[120,158,109],"X Refsource REDHAT",{"url":160,"sources":161,"tags":162},"http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00040.html",[104,98],[120,163,106,109],"X Refsource SUSE",{"url":165,"sources":166,"tags":167},"http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00003.html",[104,98],[120,163,109],{"url":169,"sources":170,"tags":171},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5DK6VO2CEUTAJFYIKWNZKEKYMYR3NO2O/",[104,98],[120,141],{"url":173,"sources":174,"tags":175},"https://www.debian.org/security/2019/dsa-4431",[104,98],[120,176,109],"X Refsource DEBIAN",{"url":178,"sources":179,"tags":180},"https://seclists.org/bugtraq/2019/Apr/25",[104,98],[106,114,109],{"url":182,"sources":183,"tags":184},"https://access.redhat.com/errata/RHSA-2019:1175",[104,98],[120,158,109],{"url":186,"sources":187,"tags":188},"https://access.redhat.com/errata/RHSA-2019:1652",[104,98],[120,158,109],{"url":190,"sources":191,"tags":192},"https://access.redhat.com/errata/RHSA-2019:1791",[104,98],[120,158,109],{"url":194,"sources":195,"tags":196},"https://access.redhat.com/errata/RHSA-2019:1943",[104,98],[120,158,109],{"url":198,"sources":199,"tags":200},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6LUNHPW64IGCASZ4JQ2J5KDXNZN53DWW/",[104,98],[120,141],{"url":202,"sources":203,"tags":204},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M7IF3LNHOA75O4WZWIHJLIRMA5LJUED3/",[104,98],[120,141],{"url":206,"sources":207,"tags":208},"https://access.redhat.com/errata/RHSA-2019:2399",[104,98],[120,158,109],{"url":210,"sources":211,"tags":212},"https://support.apple.com/kb/HT210609",[104,98],[125,109],{"url":214,"sources":215,"tags":216},"https://seclists.org/bugtraq/2019/Sep/49",[104,98],[106,114,109],{"url":218,"sources":219,"tags":220},"http://seclists.org/fulldisclosure/2019/Sep/42",[104,98],[106,221,109],"X Refsource FULLDISC",{"url":223,"sources":224,"tags":225},"https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",[104,98],[119,108,109],[],{"date":228,"score":94,"percentile":229},"2026-06-04",0.94941,[231,235,239,241,244,247,250,252,254,257,260,263,265,267,269,273,276,279,282,285,288,291,294,296,299,302,305,308,311,314,317,320,323,326,328,331,334,337,340,343,346,349,351,354,357,360,363,366,368,370,373,376,379,381,384,387,390,392,395,398,401,404,408,410,413,416,418,421,424,427,429,431,434,436,439,442,446,449,453,456,459,462,465,469,472,475,478,480,483,486],{"date":232,"score":233,"percentile":234},"2025-11-04",0.10177,0.92791,{"date":236,"score":237,"percentile":238},"2025-11-05",0.09601,0.92519,{"date":240,"score":237,"percentile":238},"2025-11-06",{"date":242,"score":237,"percentile":243},"2025-11-07",0.92523,{"date":245,"score":237,"percentile":246},"2025-11-08",0.9252,{"date":248,"score":237,"percentile":249},"2025-11-09",0.92518,{"date":251,"score":237,"percentile":249},"2025-11-10",{"date":253,"score":237,"percentile":243},"2025-11-11",{"date":255,"score":237,"percentile":256},"2025-11-12",0.9253,{"date":258,"score":237,"percentile":259},"2025-11-13",0.92533,{"date":261,"score":237,"percentile":262},"2025-11-14",0.92536,{"date":264,"score":237,"percentile":256},"2025-11-15",{"date":266,"score":237,"percentile":262},"2025-11-16",{"date":268,"score":237,"percentile":259},"2025-11-17",{"date":270,"score":271,"percentile":272},"2025-11-18",0.07311,0.90767,{"date":274,"score":271,"percentile":275},"2025-11-19",0.90771,{"date":277,"score":271,"percentile":278},"2025-11-20",0.90777,{"date":280,"score":237,"percentile":281},"2025-11-21",0.92549,{"date":283,"score":237,"percentile":284},"2025-11-22",0.92547,{"date":286,"score":237,"percentile":287},"2025-11-23",0.92553,{"date":289,"score":237,"percentile":290},"2025-11-24",0.92555,{"date":292,"score":237,"percentile":293},"2025-11-25",0.92556,{"date":295,"score":237,"percentile":290},"2025-11-26",{"date":297,"score":237,"percentile":298},"2025-11-27",0.92551,{"date":300,"score":237,"percentile":301},"2025-11-28",0.92544,{"date":303,"score":237,"percentile":304},"2025-11-29",0.92561,{"date":306,"score":237,"percentile":307},"2025-11-30",0.92559,{"date":309,"score":237,"percentile":310},"2025-12-01",0.92602,{"date":312,"score":237,"percentile":313},"2025-12-02",0.92608,{"date":315,"score":237,"percentile":316},"2025-12-03",0.92611,{"date":318,"score":237,"percentile":319},"2025-12-04",0.92567,{"date":321,"score":237,"percentile":322},"2025-12-05",0.92572,{"date":324,"score":237,"percentile":325},"2025-12-06",0.92575,{"date":327,"score":237,"percentile":322},"2025-12-07",{"date":329,"score":237,"percentile":330},"2025-12-08",0.92576,{"date":332,"score":237,"percentile":333},"2025-12-09",0.92578,{"date":335,"score":237,"percentile":336},"2025-12-10",0.92587,{"date":338,"score":233,"percentile":339},"2025-12-11",0.92862,{"date":341,"score":233,"percentile":342},"2025-12-12",0.92867,{"date":344,"score":233,"percentile":345},"2025-12-13",0.92856,{"date":347,"score":233,"percentile":348},"2025-12-14",0.92853,{"date":350,"score":233,"percentile":345},"2025-12-15",{"date":352,"score":233,"percentile":353},"2025-12-16",0.92866,{"date":355,"score":233,"percentile":356},"2025-12-17",0.92872,{"date":358,"score":233,"percentile":359},"2025-12-18",0.92875,{"date":361,"score":233,"percentile":362},"2025-12-19",0.92876,{"date":364,"score":233,"percentile":365},"2025-12-20",0.92873,{"date":367,"score":233,"percentile":356},"2025-12-21",{"date":369,"score":233,"percentile":342},"2025-12-22",{"date":371,"score":233,"percentile":372},"2025-12-23",0.9287,{"date":374,"score":233,"percentile":375},"2025-12-24",0.92874,{"date":377,"score":233,"percentile":378},"2025-12-25",0.92879,{"date":380,"score":233,"percentile":362},"2025-12-26",{"date":382,"score":233,"percentile":383},"2025-12-27",0.92914,{"date":385,"score":233,"percentile":386},"2025-12-28",0.92871,{"date":388,"score":233,"percentile":389},"2025-12-29",0.92869,{"date":391,"score":233,"percentile":386},"2025-12-30",{"date":393,"score":233,"percentile":394},"2025-12-31",0.92877,{"date":396,"score":233,"percentile":397},"2026-01-01",0.92931,{"date":399,"score":233,"percentile":400},"2026-01-02",0.92923,{"date":402,"score":233,"percentile":403},"2026-01-03",0.92922,{"date":405,"score":406,"percentile":407},"2026-01-04",0.10006,0.9281,{"date":409,"score":406,"percentile":407},"2026-01-05",{"date":411,"score":406,"percentile":412},"2026-01-06",0.92813,{"date":414,"score":406,"percentile":415},"2026-01-07",0.92812,{"date":417,"score":406,"percentile":412},"2026-01-08",{"date":419,"score":406,"percentile":420},"2026-01-09",0.92816,{"date":422,"score":406,"percentile":423},"2026-01-10",0.92824,{"date":425,"score":406,"percentile":426},"2026-01-11",0.92821,{"date":428,"score":406,"percentile":426},"2026-01-12",{"date":430,"score":406,"percentile":426},"2026-01-13",{"date":432,"score":406,"percentile":433},"2026-01-14",0.92829,{"date":435,"score":406,"percentile":433},"2026-01-15",{"date":437,"score":406,"percentile":438},"2026-01-16",0.92832,{"date":440,"score":406,"percentile":441},"2026-01-17",0.92834,{"date":443,"score":444,"percentile":445},"2026-01-18",0.12685,0.93763,{"date":447,"score":444,"percentile":448},"2026-01-19",0.93762,{"date":450,"score":451,"percentile":452},"2026-01-20",0.07705,0.9166,{"date":454,"score":451,"percentile":455},"2026-01-21",0.91665,{"date":457,"score":451,"percentile":458},"2026-01-22",0.91668,{"date":460,"score":451,"percentile":461},"2026-01-23",0.91676,{"date":463,"score":451,"percentile":464},"2026-01-24",0.91683,{"date":466,"score":467,"percentile":468},"2026-01-25",0.1025,0.92952,{"date":470,"score":467,"percentile":471},"2026-01-26",0.92954,{"date":473,"score":467,"percentile":474},"2026-01-27",0.92958,{"date":476,"score":467,"percentile":477},"2026-01-28",0.92959,{"date":479,"score":467,"percentile":477},"2026-01-29",{"date":481,"score":467,"percentile":482},"2026-01-30",0.9296,{"date":484,"score":467,"percentile":485},"2026-01-31",0.92962,{"date":487,"score":467,"percentile":488},"2026-02-01",0.93001,[490,497],{"source":104,"cvss_v2_0":9,"cvss_v3_0":491,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":492,"baseSeverity":493,"vectorString":494,"impactScore":495,"exploitabilityScore":496},7.5,"HIGH","CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",9.8,4.1,{"source":98,"cvss_v2_0":498,"cvss_v3_0":501,"cvss_v3_1":502,"cvss_v4_0":9},{"baseScore":96,"baseSeverity":9,"vectorString":99,"impactScore":499,"exploitabilityScore":500},10,8.6,{"baseScore":492,"baseSeverity":493,"vectorString":494,"impactScore":495,"exploitabilityScore":496},{"baseScore":503,"baseSeverity":493,"vectorString":504,"impactScore":495,"exploitabilityScore":505},8.8,"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",7.2,[507,518,528,538,544,551,557,566,572,578,583,589,594,599,604],{"ecosystem":9,"name":508,"vendor":509,"product":508,"cpe_part":510,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":511},"xcode","apple","a",[512],{"version":513,"is_range":514,"range_type":515,"version_start":9,"version_start_type":9,"version_end":516,"version_end_type":517,"fixed_in":9},"lt11.0",true,"cpe","11.0","excluding",{"ecosystem":9,"name":519,"vendor":520,"product":521,"cpe_part":522,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":523},"debian linux","debian","debian_linux","o",[524,526],{"version":525,"is_range":92,"range_type":515,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0",{"version":527,"is_range":92,"range_type":515,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0",{"ecosystem":9,"name":529,"vendor":530,"product":529,"cpe_part":522,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":531},"fedora","fedoraproject",[532,534,536],{"version":533,"is_range":92,"range_type":515,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"28",{"version":535,"is_range":92,"range_type":515,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"29",{"version":537,"is_range":92,"range_type":515,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"30",{"ecosystem":9,"name":539,"vendor":539,"product":539,"cpe_part":510,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":540},"libssh2",[541],{"version":542,"is_range":514,"range_type":515,"version_start":9,"version_start_type":9,"version_end":543,"version_end_type":517,"fixed_in":9},"lt1.8.1","1.8.1",{"ecosystem":9,"name":545,"vendor":546,"product":547,"cpe_part":510,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":548},"ontap select deploy administration utility","netapp","ontap_select_deploy_administration_utility",[549],{"version":550,"is_range":92,"range_type":515,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"na",{"ecosystem":9,"name":552,"vendor":553,"product":552,"cpe_part":522,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":554},"leap","opensuse",[555],{"version":556,"is_range":92,"range_type":515,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"42.3",{"ecosystem":9,"name":558,"vendor":559,"product":560,"cpe_part":510,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":561},"peoplesoft enterprise peopletools","oracle","peoplesoft_enterprise_peopletools",[562,564],{"version":563,"is_range":92,"range_type":515,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.56",{"version":565,"is_range":92,"range_type":515,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.57",{"ecosystem":9,"name":567,"vendor":568,"product":569,"cpe_part":522,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":570},"enterprise linux","redhat","enterprise_linux",[571],{"version":525,"is_range":92,"range_type":515,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":573,"vendor":568,"product":574,"cpe_part":522,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":575},"enterprise linux desktop","enterprise_linux_desktop",[576],{"version":577,"is_range":92,"range_type":515,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0",{"ecosystem":9,"name":579,"vendor":568,"product":580,"cpe_part":522,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":581},"enterprise linux server","enterprise_linux_server",[582],{"version":577,"is_range":92,"range_type":515,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":584,"vendor":568,"product":585,"cpe_part":522,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":586},"enterprise linux server aus","enterprise_linux_server_aus",[587],{"version":588,"is_range":92,"range_type":515,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.6",{"ecosystem":9,"name":590,"vendor":568,"product":591,"cpe_part":522,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":592},"enterprise linux server eus","enterprise_linux_server_eus",[593],{"version":588,"is_range":92,"range_type":515,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":595,"vendor":568,"product":596,"cpe_part":522,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":597},"enterprise linux server tus","enterprise_linux_server_tus",[598],{"version":588,"is_range":92,"range_type":515,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":600,"vendor":568,"product":601,"cpe_part":522,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":602},"enterprise linux workstation","enterprise_linux_workstation",[603],{"version":577,"is_range":92,"range_type":515,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":539,"vendor":605,"product":539,"cpe_part":510,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":606},"the libssh2 project",[607],{"version":543,"is_range":92,"range_type":104,"version_start":543,"version_start_type":608,"version_end":543,"version_end_type":608,"fixed_in":9},"including"]