[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2019-5736":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":40,"aliases":117,"duplicate_of":9,"upstream":118,"downstream":119,"duplicates":184,"related":185,"reserved_at":9,"published_at":214,"modified_at":215,"state":216,"summary":217,"references_raw":225,"kevs":496,"epss":497,"epss_history":500,"metrics":745,"affected":754},"CVE-2019-5736","runc through 1.0-rc6, as used in Docker before 18.09.2 and other products, allows attackers to overwrite the host runc binary (and consequently obtain host root access) by leveraging the ability to execute a command as root within one of these types of containers: (1) a new container with an attacker-controlled image, or (2) an existing container, to which the attacker previously had write access, that can be attached with docker exec. This occurs because of file-descriptor mishandling, related to /proc/self/exe.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-78","Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')","The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.","weakness","Stable","Base","High",[20,24,28,32,36],{"id":21,"name":22,"techniques":23},"CAPEC-108","Command Line Execution through SQL Injection",[],{"id":25,"name":26,"techniques":27},"CAPEC-15","Command Delimiters",[],{"id":29,"name":30,"techniques":31},"CAPEC-43","Exploiting Multiple Input Interpretation Layers",[],{"id":33,"name":34,"techniques":35},"CAPEC-6","Argument Injection",[],{"id":37,"name":38,"techniques":39},"CAPEC-88","OS Command Injection",[],[41,50,54,62,67,72,77,89,97],{"_key":42,"name":43,"source":44,"url":45,"maturity":46,"reliability_score":47,"verified":48,"type":9,"platforms":49,"requires_auth":9,"exploitdb":9,"metasploit":9},"GITHUB_Q3K_CVE-2019-5736-POC","Cve 2019 5736 Poc","github","https://github.com/q3k/cve-2019-5736-poc","poc",0.3,false,[],{"_key":51,"name":43,"source":44,"url":52,"maturity":46,"reliability_score":47,"verified":48,"type":9,"platforms":53,"requires_auth":9,"exploitdb":9,"metasploit":9},"GITHUB_FRICHETTEN_CVE-2019-5736-POC","https://github.com/Frichetten/CVE-2019-5736-PoC",[],{"_key":55,"name":56,"source":57,"url":58,"maturity":59,"reliability_score":60,"verified":48,"type":9,"platforms":61,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_5117AA0AB57EACD2","Exploit Reference (brauner.github.io)","reference","https://brauner.github.io/2019/02/12/privileged-containers.html","unknown",0.2,[],{"_key":63,"name":64,"source":57,"url":65,"maturity":59,"reliability_score":60,"verified":48,"type":9,"platforms":66,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_2637C310838321A5","Exploit Reference (blog.dragonsector.pl)","https://blog.dragonsector.pl/2019/02/cve-2019-5736-escape-from-docker-and.html",[],{"_key":68,"name":69,"source":57,"url":70,"maturity":59,"reliability_score":60,"verified":48,"type":9,"platforms":71,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_61790960E96C752B","Exploit Reference (support.mesosphere.com)","https://support.mesosphere.com/s/article/Known-Issue-Container-Runtime-Vulnerability-MSPH-2019-0003",[],{"_key":73,"name":74,"source":57,"url":75,"maturity":59,"reliability_score":60,"verified":48,"type":9,"platforms":76,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_3EBD4C3C913057F2","Exploit Reference (packetstormsecurity.com)","http://packetstormsecurity.com/files/163339/Docker-Container-Escape.html",[],{"_key":78,"name":79,"source":80,"url":81,"maturity":46,"reliability_score":82,"verified":48,"type":83,"platforms":84,"requires_auth":9,"exploitdb":86,"metasploit":9},"46359","runc \u003C 1.0-rc6 (Docker \u003C 18.09.2) - Container Breakout (1)","exploit-database","https://www.exploit-db.com/exploits/46359",0.5,"local",[85],"linux",{"verified":48,"type":83,"platform":85,"file":87,"codes":88},"exploits/linux/local/46359.md",[7],{"_key":90,"name":91,"source":80,"url":92,"maturity":46,"reliability_score":82,"verified":48,"type":83,"platforms":93,"requires_auth":9,"exploitdb":94,"metasploit":9},"46369","runc \u003C 1.0-rc6 (Docker \u003C 18.09.2) - Container Breakout (2)","https://www.exploit-db.com/exploits/46369",[85],{"verified":48,"type":83,"platform":85,"file":95,"codes":96},"exploits/linux/local/46369.md",[7],{"_key":98,"name":99,"source":100,"url":101,"maturity":46,"reliability_score":102,"verified":48,"type":103,"platforms":104,"requires_auth":48,"exploitdb":9,"metasploit":105},"MSF_EXPLOIT_LINUX_LOCAL_DOCKER_RUNC_ESCAPE","Docker Container Escape Via runC Overwrite","metasploit","https://github.com/rapid7/metasploit-framework/blob/master/modules/exploit/linux/local/docker_runc_escape.rb",0,"remote",[],{"fullname":106,"rank":102,"rank_name":107,"post_auth":48,"check":48,"notes":108},"exploit/linux/local/docker_runc_escape","manual",{"Stability":109,"SideEffects":113,"Reliability":115},[110,111,112],"crash-service-down","service-resource-loss","os-resource-loss",[114],"artifacts-on-disk",[116],"repeatable-session",[],[],[120,122,124,126,128,130,132,134,136,138,140,142,144,146,148,150,152,154,156,158,160,162,164,166,168,170,172,174,176,178,180,182],{"_key":121},"ALPINE-CVE-2019-5736",{"_key":123},"RHSA-2019:0303",{"_key":125},"RHSA-2019:0304",{"_key":127},"RHSA-2019:0408",{"_key":129},"RHSA-2019:0975",{"_key":131},"OPENSUSE-SU-2019:2245-1",{"_key":133},"SUSE-SU-2019:0362-1",{"_key":135},"SUSE-SU-2019:0385-1",{"_key":137},"SUSE-SU-2019:0495-1",{"_key":139},"SUSE-SU-2019:0573-1",{"_key":141},"SUSE-SU-2019:1234-1",{"_key":143},"SUSE-SU-2019:1234-2",{"_key":145},"SUSE-SU-2019:2117-1",{"_key":147},"SUSE-SU-2019:2119-1",{"_key":149},"SUSE-SU-2021:1458-1",{"_key":151},"OPENSUSE-SU-2019:0170-1",{"_key":153},"OPENSUSE-SU-2019:1227-1",{"_key":155},"OPENSUSE-SU-2019:1506-1",{"_key":157},"OPENSUSE-SU-2019:2286-1",{"_key":159},"UBUNTU-CVE-2019-5736",{"_key":161},"USN-4048-1",{"_key":163},"OPENSUSE-SU-2019:1275-1",{"_key":165},"OPENSUSE-SU-2019:1444-1",{"_key":167},"OPENSUSE-SU-2019:1499-1",{"_key":169},"OPENSUSE-SU-2019:2021-1",{"_key":171},"OPENSUSE-SU-2024:10693-1",{"_key":173},"OPENSUSE-SU-2024:10762-1",{"_key":175},"OPENSUSE-SU-2024:11030-1",{"_key":177},"OPENSUSE-SU-2024:11358-1",{"_key":179},"MGASA-2019-0068",{"_key":181},"MGASA-2019-0087",{"_key":183},"DEBIAN-CVE-2019-5736",[],[186,187,188,189,190,191,192,193,194,195,196,197,198,199,200,201,202,203,204,205,206,207,208,209,210,212],{"_key":131},{"_key":133},{"_key":135},{"_key":137},{"_key":139},{"_key":141},{"_key":143},{"_key":145},{"_key":147},{"_key":149},{"_key":151},{"_key":153},{"_key":155},{"_key":157},{"_key":163},{"_key":165},{"_key":167},{"_key":169},{"_key":171},{"_key":173},{"_key":175},{"_key":177},{"_key":179},{"_key":181},{"_key":211},"CGA-358X-29H6-CWGV",{"_key":213},"CGA-6F3P-HV3H-6GMW","2019-02-11T00:00:00.000Z","2024-08-04T20:01:52.208Z","Modified",{"cisa_kev":48,"cisa_ransomware":48,"cisa_vendor":9,"epss_severity":218,"epss_score":219,"severity":220,"severity_score":221,"severity_version":222,"severity_source":223,"severity_vector":224,"severity_status":216},"critical",0.59178,"high",9.3,"v2.0","nvd","AV:N/AC:M/Au:N/C:C/I:C/A:C",[226,233,238,242,246,251,255,259,263,267,271,276,280,284,289,293,297,301,305,308,313,317,321,325,329,333,337,342,346,350,354,357,361,365,369,373,377,381,385,389,393,397,401,405,409,413,417,421,425,429,433,437,441,445,449,453,457,461,465,469,473,477,480,484,488,492],{"url":227,"sources":228,"tags":230},"https://github.com/opencontainers/runc/commit/6635b4f0c6af3810594d2770f662f34ddc15b40d",[229,223],"cve.org",[231,232],"Patch","Third Party Advisory",{"url":234,"sources":235,"tags":236},"https://access.redhat.com/errata/RHSA-2019:0408",[229,223],[237,232],"Vendor Advisory",{"url":239,"sources":240,"tags":241},"https://github.com/rancher/runc-cve",[229,223],[232],{"url":243,"sources":244,"tags":245},"https://access.redhat.com/errata/RHSA-2019:0401",[229,223],[237,232],{"url":247,"sources":248,"tags":249},"https://github.com/docker/docker-ce/releases/tag/v18.09.2",[229,223],[250,232],"Release Notes",{"url":252,"sources":253,"tags":254},"https://www.synology.com/security/advisory/Synology_SA_19_06",[229,223],[232],{"url":256,"sources":257,"tags":258},"https://security.netapp.com/advisory/ntap-20190307-0008/",[229,223],[232],{"url":260,"sources":261,"tags":262},"https://access.redhat.com/errata/RHSA-2019:0303",[229,223],[237,232],{"url":264,"sources":265,"tags":266},"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190215-runc",[229,223],[237,232],{"url":45,"sources":268,"tags":269},[229,223],[270,232],"Exploit",{"url":272,"sources":273,"tags":274},"https://www.exploit-db.com/exploits/46359/",[229,223],[270,232,275],"VDB Entry",{"url":277,"sources":278,"tags":279},"https://github.com/opencontainers/runc/commit/0a8e4117e7f715d5fbeef398405813ce8e88558b",[229,223],[231,232],{"url":281,"sources":282,"tags":283},"https://aws.amazon.com/security/security-bulletins/AWS-2019-002/",[229,223],[232],{"url":285,"sources":286,"tags":287},"https://www.openwall.com/lists/oss-security/2019/02/11/2",[229,223],[288,231,232],"Mailing List",{"url":290,"sources":291,"tags":292},"https://kubernetes.io/blog/2019/02/11/runc-and-cve-2019-5736/",[229,223],[232],{"url":294,"sources":295,"tags":296},"https://access.redhat.com/security/cve/cve-2019-5736",[229,223],[232],{"url":298,"sources":299,"tags":300},"https://www.exploit-db.com/exploits/46369/",[229,223],[270,232,275],{"url":302,"sources":303,"tags":304},"https://access.redhat.com/errata/RHSA-2019:0304",[229,223],[237,232],{"url":52,"sources":306,"tags":307},[229,223],[270,232],{"url":309,"sources":310,"tags":311},"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03913en_us",[229,223],[312],"Permissions Required",{"url":58,"sources":314,"tags":315},[229,223],[270,316,232],"Technical Description",{"url":318,"sources":319,"tags":320},"https://www.twistlock.com/2019/02/11/how-to-mitigate-cve-2019-5736-in-runc-and-docker/",[229,223],[232],{"url":322,"sources":323,"tags":324},"https://cloud.google.com/kubernetes-engine/docs/security-bulletins#february-11-2019-runc",[229,223],[232],{"url":326,"sources":327,"tags":328},"http://www.securityfocus.com/bid/106976",[229,223],[275,232],{"url":330,"sources":331,"tags":332},"https://access.redhat.com/security/vulnerabilities/runcescape",[229,223],[232],{"url":65,"sources":334,"tags":335},[229,223],[270,336,232],"Mitigation",{"url":338,"sources":339,"tags":340},"https://bugzilla.suse.com/show_bug.cgi?id=1121967",[229,223],[341,231,232],"Issue Tracking",{"url":343,"sources":344,"tags":345},"https://lists.apache.org/thread.html/b162dd624dc088cd634292f0402282a1d1d0ce853baeae8205bc033c%40%3Cdev.mesos.apache.org%3E",[229,223],[288],{"url":347,"sources":348,"tags":349},"https://lists.apache.org/thread.html/a258757af84c5074dc7bf932622020fd4f60cef65a84290380386706%40%3Cuser.mesos.apache.org%3E",[229,223],[288],{"url":351,"sources":352,"tags":353},"http://www.openwall.com/lists/oss-security/2019/03/23/1",[229,223],[288,232],{"url":70,"sources":355,"tags":356},[229,223],[270,231,232],{"url":358,"sources":359,"tags":360},"http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00044.html",[229,223],[237,288,232],{"url":362,"sources":363,"tags":364},"http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00074.html",[229,223],[237,288,232],{"url":366,"sources":367,"tags":368},"http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00091.html",[229,223],[237,288,232],{"url":370,"sources":371,"tags":372},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V6A4OSFM5GGOWW4ECELV5OHX2XRAUSPH/",[229,223],[237],{"url":374,"sources":375,"tags":376},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SWFJGIPYAAAMVSWWI3QWYXGA3ZBU2H4W/",[229,223],[237],{"url":378,"sources":379,"tags":380},"https://softwaresupport.softwaregrp.com/document/-/facetsearch/document/KM03410944",[229,223],[232],{"url":382,"sources":383,"tags":384},"https://access.redhat.com/errata/RHSA-2019:0975",[229,223],[237,232],{"url":386,"sources":387,"tags":388},"https://azure.microsoft.com/en-us/updates/cve-2019-5736-and-runc-vulnerability/",[229,223],[231,232,237],{"url":390,"sources":391,"tags":392},"https://azure.microsoft.com/en-us/updates/iot-edge-fix-cve-2019-5736/",[229,223],[231,232,237],{"url":394,"sources":395,"tags":396},"https://lists.apache.org/thread.html/acacf018c12636e41667e94ac0a1e9244e887eef2debdd474640aa6e%40%3Cdev.dlab.apache.org%3E",[229,223],[288],{"url":398,"sources":399,"tags":400},"https://lists.apache.org/thread.html/a585f64d14c31ab393b90c5f17e41d9765a1a17eec63856ce750af46%40%3Cdev.dlab.apache.org%3E",[229,223],[288],{"url":402,"sources":403,"tags":404},"http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00060.html",[229,223],[237,288,232],{"url":406,"sources":407,"tags":408},"http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00073.html",[229,223],[237,288,232],{"url":410,"sources":411,"tags":412},"http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00011.html",[229,223],[237,288,232],{"url":414,"sources":415,"tags":416},"http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00015.html",[229,223],[237,288,232],{"url":418,"sources":419,"tags":420},"http://www.openwall.com/lists/oss-security/2019/06/28/2",[229,223],[288,232],{"url":422,"sources":423,"tags":424},"http://www.openwall.com/lists/oss-security/2019/07/06/3",[229,223],[288,232],{"url":426,"sources":427,"tags":428},"http://www.openwall.com/lists/oss-security/2019/07/06/4",[229,223],[288,232],{"url":430,"sources":431,"tags":432},"https://usn.ubuntu.com/4048-1/",[229,223],[237,232],{"url":434,"sources":435,"tags":436},"http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00084.html",[229,223],[237,288,232],{"url":438,"sources":439,"tags":440},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EGZKRCKI3Y7FMADO2MENMT4TU24QGHFR/",[229,223],[237],{"url":442,"sources":443,"tags":444},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DLC52IOJN6IQJWJ6CUI6AIUP6GVVG2QP/",[229,223],[237],{"url":446,"sources":447,"tags":448},"https://lists.apache.org/thread.html/24e54e3c6b2259e3903b6b8fe26896ac649c481ea99c5739468c92a3%40%3Cdev.dlab.apache.org%3E",[229,223],[288],{"url":450,"sources":451,"tags":452},"http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00007.html",[229,223],[237,288,232],{"url":454,"sources":455,"tags":456},"http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00029.html",[229,223],[237,288,232],{"url":458,"sources":459,"tags":460},"http://www.openwall.com/lists/oss-security/2019/10/24/1",[229,223],[288,232],{"url":462,"sources":463,"tags":464},"http://www.openwall.com/lists/oss-security/2019/10/29/3",[229,223],[288,232],{"url":466,"sources":467,"tags":468},"https://security.gentoo.org/glsa/202003-21",[229,223],[237,232],{"url":470,"sources":471,"tags":472},"https://lists.apache.org/thread.html/rc494623986d76593873ce5a40dd69cb3629400d10750d5d7e96b8587%40%3Cdev.dlab.apache.org%3E",[229,223],[288],{"url":474,"sources":475,"tags":476},"https://lists.apache.org/thread.html/rf1bbc0ea4a9f014cf94df9a12a6477d24a27f52741dbc87f2fd52ff2%40%3Cissues.geode.apache.org%3E",[229,223],[288],{"url":75,"sources":478,"tags":479},[229,223],[270,232,275],{"url":481,"sources":482,"tags":483},"http://packetstormsecurity.com/files/165197/Docker-runc-Command-Execution-Proof-Of-Concept.html",[229,223],[232,275],{"url":485,"sources":486,"tags":487},"http://www.openwall.com/lists/oss-security/2024/01/31/6",[229,223],[288],{"url":489,"sources":490,"tags":491},"http://www.openwall.com/lists/oss-security/2024/02/01/1",[229,223],[288],{"url":493,"sources":494,"tags":495},"http://www.openwall.com/lists/oss-security/2024/02/02/3",[229,223],[288],[],{"date":498,"score":219,"percentile":499},"2026-06-04",0.98266,[501,505,508,512,515,517,519,521,524,527,530,532,536,538,540,544,547,550,553,556,559,561,563,565,569,572,575,577,581,584,587,589,592,594,596,599,601,604,607,610,612,614,616,619,622,625,627,630,632,635,638,640,642,645,649,652,654,656,659,662,665,668,671,674,676,679,682,685,688,691,693,695,698,701,704,707,710,712,714,716,719,722,725,727,730,733,736,738,740,742],{"date":502,"score":503,"percentile":504},"2025-11-04",0.5562,0.97958,{"date":506,"score":503,"percentile":507},"2025-11-05",0.97959,{"date":509,"score":510,"percentile":511},"2025-11-06",0.58255,0.9808,{"date":513,"score":510,"percentile":514},"2025-11-07",0.98081,{"date":516,"score":510,"percentile":511},"2025-11-08",{"date":518,"score":510,"percentile":511},"2025-11-09",{"date":520,"score":510,"percentile":514},"2025-11-10",{"date":522,"score":510,"percentile":523},"2025-11-11",0.98082,{"date":525,"score":510,"percentile":526},"2025-11-12",0.98084,{"date":528,"score":510,"percentile":529},"2025-11-13",0.98085,{"date":531,"score":510,"percentile":529},"2025-11-14",{"date":533,"score":534,"percentile":535},"2025-11-15",0.58515,0.981,{"date":537,"score":534,"percentile":535},"2025-11-16",{"date":539,"score":534,"percentile":535},"2025-11-17",{"date":541,"score":542,"percentile":543},"2025-11-18",0.29483,0.96331,{"date":545,"score":542,"percentile":546},"2025-11-19",0.96332,{"date":548,"score":542,"percentile":549},"2025-11-20",0.96334,{"date":551,"score":534,"percentile":552},"2025-11-21",0.98096,{"date":554,"score":534,"percentile":555},"2025-11-22",0.98095,{"date":557,"score":534,"percentile":558},"2025-11-23",0.98094,{"date":560,"score":534,"percentile":558},"2025-11-24",{"date":562,"score":534,"percentile":552},"2025-11-25",{"date":564,"score":534,"percentile":552},"2025-11-26",{"date":566,"score":567,"percentile":568},"2025-11-27",0.55565,0.9795,{"date":570,"score":567,"percentile":571},"2025-11-28",0.97952,{"date":573,"score":567,"percentile":574},"2025-11-29",0.97953,{"date":576,"score":567,"percentile":571},"2025-11-30",{"date":578,"score":579,"percentile":580},"2025-12-01",0.49338,0.97664,{"date":582,"score":579,"percentile":583},"2025-12-02",0.97665,{"date":585,"score":579,"percentile":586},"2025-12-03",0.97666,{"date":588,"score":567,"percentile":574},"2025-12-04",{"date":590,"score":567,"percentile":591},"2025-12-05",0.97951,{"date":593,"score":567,"percentile":571},"2025-12-06",{"date":595,"score":567,"percentile":574},"2025-12-07",{"date":597,"score":567,"percentile":598},"2025-12-08",0.97954,{"date":600,"score":567,"percentile":574},"2025-12-09",{"date":602,"score":567,"percentile":603},"2025-12-10",0.97957,{"date":605,"score":567,"percentile":606},"2025-12-11",0.9796,{"date":608,"score":567,"percentile":609},"2025-12-12",0.97962,{"date":611,"score":567,"percentile":504},"2025-12-13",{"date":613,"score":567,"percentile":504},"2025-12-14",{"date":615,"score":567,"percentile":507},"2025-12-15",{"date":617,"score":567,"percentile":618},"2025-12-16",0.97966,{"date":620,"score":567,"percentile":621},"2025-12-17",0.9797,{"date":623,"score":567,"percentile":624},"2025-12-18",0.97968,{"date":626,"score":567,"percentile":621},"2025-12-19",{"date":628,"score":567,"percentile":629},"2025-12-20",0.97969,{"date":631,"score":567,"percentile":624},"2025-12-21",{"date":633,"score":567,"percentile":634},"2025-12-22",0.97963,{"date":636,"score":567,"percentile":637},"2025-12-23",0.97967,{"date":639,"score":567,"percentile":624},"2025-12-24",{"date":641,"score":567,"percentile":634},"2025-12-25",{"date":643,"score":567,"percentile":644},"2025-12-26",0.97964,{"date":646,"score":647,"percentile":648},"2025-12-27",0.5104,0.9777,{"date":650,"score":567,"percentile":651},"2025-12-28",0.97965,{"date":653,"score":567,"percentile":624},"2025-12-29",{"date":655,"score":567,"percentile":637},"2025-12-30",{"date":657,"score":567,"percentile":658},"2025-12-31",0.97971,{"date":660,"score":579,"percentile":661},"2026-01-01",0.97694,{"date":663,"score":579,"percentile":664},"2026-01-02",0.97695,{"date":666,"score":579,"percentile":667},"2026-01-03",0.97696,{"date":669,"score":567,"percentile":670},"2026-01-04",0.97979,{"date":672,"score":567,"percentile":673},"2026-01-05",0.97981,{"date":675,"score":567,"percentile":673},"2026-01-06",{"date":677,"score":567,"percentile":678},"2026-01-07",0.97982,{"date":680,"score":567,"percentile":681},"2026-01-08",0.97984,{"date":683,"score":567,"percentile":684},"2026-01-09",0.97987,{"date":686,"score":567,"percentile":687},"2026-01-10",0.97988,{"date":689,"score":567,"percentile":690},"2026-01-11",0.97986,{"date":692,"score":567,"percentile":690},"2026-01-12",{"date":694,"score":567,"percentile":684},"2026-01-13",{"date":696,"score":567,"percentile":697},"2026-01-14",0.9799,{"date":699,"score":567,"percentile":700},"2026-01-15",0.97992,{"date":702,"score":567,"percentile":703},"2026-01-16",0.97994,{"date":705,"score":567,"percentile":706},"2026-01-17",0.97997,{"date":708,"score":567,"percentile":709},"2026-01-18",0.97995,{"date":711,"score":567,"percentile":709},"2026-01-19",{"date":713,"score":567,"percentile":706},"2026-01-20",{"date":715,"score":567,"percentile":706},"2026-01-21",{"date":717,"score":567,"percentile":718},"2026-01-22",0.97999,{"date":720,"score":567,"percentile":721},"2026-01-23",0.98002,{"date":723,"score":567,"percentile":724},"2026-01-24",0.98003,{"date":726,"score":567,"percentile":724},"2026-01-25",{"date":728,"score":567,"percentile":729},"2026-01-26",0.98005,{"date":731,"score":732,"percentile":697},"2026-01-27",0.55296,{"date":734,"score":732,"percentile":735},"2026-01-28",0.97991,{"date":737,"score":732,"percentile":735},"2026-01-29",{"date":739,"score":732,"percentile":735},"2026-01-30",{"date":741,"score":732,"percentile":681},"2026-01-31",{"date":743,"score":744,"percentile":667},"2026-02-01",0.49057,[746],{"source":223,"cvss_v2_0":747,"cvss_v3_0":9,"cvss_v3_1":750,"cvss_v4_0":9},{"baseScore":221,"baseSeverity":9,"vectorString":224,"impactScore":748,"exploitabilityScore":749},10,8.6,{"baseScore":749,"baseSeverity":751,"vectorString":752,"impactScore":748,"exploitabilityScore":753},"HIGH","CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",4.6,[755,780,794,809,816,822,830,835,840,847,866,879,885,889,898,906,913,919,925],{"ecosystem":9,"name":756,"vendor":757,"product":756,"cpe_part":758,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":759},"mesos","apache","a",[760,768,772,776],{"version":761,"is_range":762,"range_type":763,"version_start":764,"version_start_type":765,"version_end":766,"version_end_type":767,"fixed_in":9},"gte1.4.0_lt1.4.3",true,"cpe","1.4.0","including","1.4.3","excluding",{"version":769,"is_range":762,"range_type":763,"version_start":770,"version_start_type":765,"version_end":771,"version_end_type":767,"fixed_in":9},"gte1.5.0_lt1.5.3","1.5.0","1.5.3",{"version":773,"is_range":762,"range_type":763,"version_start":774,"version_start_type":765,"version_end":775,"version_end_type":767,"fixed_in":9},"gte1.6.0_lt1.6.2","1.6.0","1.6.2",{"version":777,"is_range":762,"range_type":763,"version_start":778,"version_start_type":765,"version_end":779,"version_end_type":767,"fixed_in":9},"gte1.7.0_lt1.7.2","1.7.0","1.7.2",{"ecosystem":9,"name":781,"vendor":782,"product":783,"cpe_part":784,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":785},"ubuntu linux","canonical","ubuntu_linux","o",[786,788,790,792],{"version":787,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"16.04",{"version":789,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"18.04",{"version":791,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"18.10",{"version":793,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"19.04",{"ecosystem":9,"name":795,"vendor":796,"product":795,"cpe_part":784,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":797},"dc\\/os","d2iq",[798,801,805],{"version":799,"is_range":762,"range_type":763,"version_start":9,"version_start_type":9,"version_end":800,"version_end_type":767,"fixed_in":9},"lt1.10.10","1.10.10",{"version":802,"is_range":762,"range_type":763,"version_start":803,"version_start_type":765,"version_end":804,"version_end_type":767,"fixed_in":9},"gte1.10.11_lt1.11.9","1.10.11","1.11.9",{"version":806,"is_range":762,"range_type":763,"version_start":807,"version_start_type":765,"version_end":808,"version_end_type":767,"fixed_in":9},"gte1.11.10_lt1.12.1","1.11.10","1.12.1",{"ecosystem":9,"name":810,"vendor":796,"product":811,"cpe_part":758,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":812},"kubernetes engine","kubernetes_engine",[813],{"version":814,"is_range":762,"range_type":763,"version_start":9,"version_start_type":9,"version_end":815,"version_end_type":767,"fixed_in":9},"lt2.2.0-1.13.3","2.2.0-1.13.3",{"ecosystem":9,"name":817,"vendor":817,"product":817,"cpe_part":758,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":818},"docker",[819],{"version":820,"is_range":762,"range_type":763,"version_start":9,"version_start_type":9,"version_end":821,"version_end_type":767,"fixed_in":9},"lt18.09.2","18.09.2",{"ecosystem":9,"name":823,"vendor":824,"product":823,"cpe_part":784,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":825},"fedora","fedoraproject",[826,828],{"version":827,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"29",{"version":829,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"30",{"ecosystem":9,"name":810,"vendor":831,"product":811,"cpe_part":758,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":832},"google",[833],{"version":834,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"na",{"ecosystem":9,"name":836,"vendor":837,"product":836,"cpe_part":758,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":838},"onesphere","hp",[839],{"version":834,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":841,"vendor":842,"product":841,"cpe_part":758,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":843},"lxc","linuxcontainers",[844],{"version":845,"is_range":762,"range_type":763,"version_start":9,"version_start_type":9,"version_end":846,"version_end_type":767,"fixed_in":9},"lt3.2.0","3.2.0",{"ecosystem":9,"name":848,"vendor":849,"product":848,"cpe_part":758,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":850},"runc","linuxfoundation",[851,854,856,858,860,862,864],{"version":852,"is_range":762,"range_type":763,"version_start":9,"version_start_type":9,"version_end":853,"version_end_type":765,"fixed_in":9},"lte0.1.1","0.1.1",{"version":855,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.0.0:rc1",{"version":857,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.0.0:rc2",{"version":859,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.0.0:rc3",{"version":861,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.0.0:rc4",{"version":863,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.0.0:rc5",{"version":865,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.0.0:rc6",{"ecosystem":9,"name":867,"vendor":868,"product":869,"cpe_part":758,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":870},"service management automation","microfocus","service_management_automation",[871,873,875,877],{"version":872,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2018.02",{"version":874,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2018.05",{"version":876,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2018.08",{"version":878,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2018.11",{"ecosystem":9,"name":880,"vendor":881,"product":882,"cpe_part":758,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":883},"hci management node","netapp","hci_management_node",[884],{"version":834,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":886,"vendor":881,"product":886,"cpe_part":758,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":887},"solidfire",[888],{"version":834,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":890,"vendor":891,"product":892,"cpe_part":758,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":893},"backports sle","opensuse","backports_sle",[894,896],{"version":895,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"15.0",{"version":897,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"15.0:sp1",{"ecosystem":9,"name":899,"vendor":891,"product":899,"cpe_part":784,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":900},"leap",[901,902,904],{"version":895,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":903,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"15.1",{"version":905,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"42.3",{"ecosystem":9,"name":907,"vendor":908,"product":909,"cpe_part":758,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":910},"container development kit","redhat","container_development_kit",[911],{"version":912,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.7",{"ecosystem":9,"name":914,"vendor":908,"product":915,"cpe_part":784,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":916},"enterprise linux","enterprise_linux",[917],{"version":918,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0",{"ecosystem":9,"name":920,"vendor":908,"product":921,"cpe_part":784,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":922},"enterprise linux server","enterprise_linux_server",[923],{"version":924,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0",{"ecosystem":9,"name":926,"vendor":908,"product":926,"cpe_part":758,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":927},"openshift",[928,930,932,934],{"version":929,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.4",{"version":931,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.5",{"version":933,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.6",{"version":912,"is_range":48,"range_type":763,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9}]