[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2019-9497":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":671,"aliases":672,"duplicate_of":9,"upstream":673,"downstream":674,"duplicates":703,"related":704,"reserved_at":9,"published_at":713,"modified_at":714,"state":715,"summary":716,"references_raw":725,"kevs":777,"epss":778,"epss_history":781,"metrics":1043,"affected":1054},"CVE-2019-9497","The implementations of EAP-PWD in hostapd EAP Server and wpa_supplicant EAP Peer do not validate the scalar and element values in EAP-pwd-Commit. This vulnerability may allow an attacker to complete EAP-PWD authentication without knowing the password. However, unless the crypto library does not implement additional checks for the EC point, the attacker will not be able to derive the session key or complete the key exchange. Both hostapd with SAE support and wpa_supplicant with SAE support prior to and including version 2.4 are affected. Both hostapd with EAP-pwd support and wpa_supplicant with EAP-pwd support prior to and including version 2.7 are affected.",null,[11,660],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-287","Improper Authentication","When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.","weakness","Draft","Class","High",[20,182,261,265,269,273,292,481,543,627],{"id":21,"name":22,"techniques":23},"CAPEC-114","Authentication Abuse",[24],{"id":25,"name":26,"tactics":27,"countermeasures":34},"T1548","Abuse Elevation Control Mechanism",[28,31],{"id":29,"name":30},"TA0030","Defense Evasion",{"id":32,"name":33},"TA0111","Privilege Escalation",[35,40,44,48,52,57,61,65,69,73,77,81,85,89,94,98,103,108,112,116,120,125,129,133,137,141,146,150,154,158,162,166,170,174,178],{"id":36,"name":37,"tactic":38},"D3-CI","Configuration Inventory",{"name":39},"Model",{"id":41,"name":42,"tactic":43},"D3-AM","Access Modeling",{"name":39},{"id":45,"name":46,"tactic":47},"D3-DI","Data Inventory",{"name":39},{"id":49,"name":50,"tactic":51},"D3-NTPM","Network Traffic Policy Mapping",{"name":39},{"id":53,"name":54,"tactic":55},"D3-AEM","Application Exception Monitoring",{"name":56},"Detect",{"id":58,"name":59,"tactic":60},"D3-SCA","System Call Analysis",{"name":56},{"id":62,"name":63,"tactic":64},"D3-SFA","System File Analysis",{"name":56},{"id":66,"name":67,"tactic":68},"D3-FA","File Analysis",{"name":56},{"id":70,"name":71,"tactic":72},"D3-FIM","File Integrity Monitoring",{"name":56},{"id":74,"name":75,"tactic":76},"D3-OPM","Operational Process Monitoring",{"name":56},{"id":78,"name":79,"tactic":80},"D3-DA","Dynamic Analysis",{"name":56},{"id":82,"name":83,"tactic":84},"D3-EFA","Emulated File Analysis",{"name":56},{"id":86,"name":87,"tactic":88},"D3-PSA","Process Spawn Analysis",{"name":56},{"id":90,"name":91,"tactic":92},"D3-FEV","File Eviction",{"name":93},"Evict",{"id":95,"name":96,"tactic":97},"D3-AL","Account Locking",{"name":93},{"id":99,"name":100,"tactic":101},"D3-DF","Decoy File",{"name":102},"Deceive",{"id":104,"name":105,"tactic":106},"D3-FE","File Encryption",{"name":107},"Harden",{"id":109,"name":110,"tactic":111},"D3-AA","Agent Authentication",{"name":107},{"id":113,"name":114,"tactic":115},"D3-CDP","Change Default Password",{"name":107},{"id":117,"name":118,"tactic":119},"D3-SCP","System Configuration Permissions",{"name":107},{"id":121,"name":122,"tactic":123},"D3-RC","Restore Configuration",{"name":124},"Restore",{"id":126,"name":127,"tactic":128},"D3-RF","Restore File",{"name":124},{"id":130,"name":131,"tactic":132},"D3-ULA","Unlock Account",{"name":124},{"id":134,"name":135,"tactic":136},"D3-RUAA","Restore User Account Access",{"name":124},{"id":138,"name":139,"tactic":140},"D3-RD","Restore Database",{"name":124},{"id":142,"name":143,"tactic":144},"D3-SCF","System Call Filtering",{"name":145},"Isolate",{"id":147,"name":148,"tactic":149},"D3-CF","Content Filtering",{"name":145},{"id":151,"name":152,"tactic":153},"D3-LFP","Local File Permissions",{"name":145},{"id":155,"name":156,"tactic":157},"D3-RFAM","Remote File Access Mediation",{"name":145},{"id":159,"name":160,"tactic":161},"D3-CQ","Content Quarantine",{"name":145},{"id":163,"name":164,"tactic":165},"D3-CM","Content Modification",{"name":145},{"id":167,"name":168,"tactic":169},"D3-UAP","User Account Permissions",{"name":145},{"id":171,"name":172,"tactic":173},"D3-EAL","Executable Allowlisting",{"name":145},{"id":175,"name":176,"tactic":177},"D3-EDL","Executable Denylisting",{"name":145},{"id":179,"name":180,"tactic":181},"D3-HBPI","Hardware-based Process Isolation",{"name":145},{"id":183,"name":184,"techniques":185},"CAPEC-115","Authentication Bypass",[186],{"id":25,"name":26,"tactics":187,"countermeasures":190},[188,189],{"id":29,"name":30},{"id":32,"name":33},[191,193,195,197,199,201,203,205,207,209,211,213,215,217,219,221,223,225,227,229,231,233,235,237,239,241,243,245,247,249,251,253,255,257,259],{"id":36,"name":37,"tactic":192},{"name":39},{"id":41,"name":42,"tactic":194},{"name":39},{"id":45,"name":46,"tactic":196},{"name":39},{"id":49,"name":50,"tactic":198},{"name":39},{"id":53,"name":54,"tactic":200},{"name":56},{"id":58,"name":59,"tactic":202},{"name":56},{"id":62,"name":63,"tactic":204},{"name":56},{"id":66,"name":67,"tactic":206},{"name":56},{"id":70,"name":71,"tactic":208},{"name":56},{"id":74,"name":75,"tactic":210},{"name":56},{"id":78,"name":79,"tactic":212},{"name":56},{"id":82,"name":83,"tactic":214},{"name":56},{"id":86,"name":87,"tactic":216},{"name":56},{"id":90,"name":91,"tactic":218},{"name":93},{"id":95,"name":96,"tactic":220},{"name":93},{"id":99,"name":100,"tactic":222},{"name":102},{"id":104,"name":105,"tactic":224},{"name":107},{"id":109,"name":110,"tactic":226},{"name":107},{"id":113,"name":114,"tactic":228},{"name":107},{"id":117,"name":118,"tactic":230},{"name":107},{"id":121,"name":122,"tactic":232},{"name":124},{"id":126,"name":127,"tactic":234},{"name":124},{"id":130,"name":131,"tactic":236},{"name":124},{"id":134,"name":135,"tactic":238},{"name":124},{"id":138,"name":139,"tactic":240},{"name":124},{"id":142,"name":143,"tactic":242},{"name":145},{"id":147,"name":148,"tactic":244},{"name":145},{"id":151,"name":152,"tactic":246},{"name":145},{"id":155,"name":156,"tactic":248},{"name":145},{"id":159,"name":160,"tactic":250},{"name":145},{"id":163,"name":164,"tactic":252},{"name":145},{"id":167,"name":168,"tactic":254},{"name":145},{"id":171,"name":172,"tactic":256},{"name":145},{"id":175,"name":176,"tactic":258},{"name":145},{"id":179,"name":180,"tactic":260},{"name":145},{"id":262,"name":263,"techniques":264},"CAPEC-151","Identity Spoofing",[],{"id":266,"name":267,"techniques":268},"CAPEC-194","Fake the Source of Data",[],{"id":270,"name":271,"techniques":272},"CAPEC-22","Exploiting Trust in Client",[],{"id":274,"name":275,"techniques":276},"CAPEC-57","Utilizing REST's Trust in the System Resource to Obtain Sensitive Data",[277],{"id":278,"name":279,"tactics":280,"countermeasures":287},"T1040","Network Sniffing",[281,284],{"id":282,"name":283},"TA0031","Credential Access",{"id":285,"name":286},"TA0102","Discovery",[288],{"id":289,"name":290,"tactic":291},"D3-DNSTA","DNS Traffic Analysis",{"name":56},{"id":293,"name":294,"techniques":295},"CAPEC-593","Session Hijacking",[296,340,453],{"id":297,"name":298,"tactics":299,"countermeasures":303},"T1185","Browser Session Hijacking",[300],{"id":301,"name":302},"TA0100","Collection",[304,308,312,316,320,324,328,332,336],{"id":305,"name":306,"tactic":307},"D3-UGLPA","User Geolocation Logon Pattern Analysis",{"name":56},{"id":309,"name":310,"tactic":311},"D3-PMAD","Protocol Metadata Anomaly Detection",{"name":56},{"id":313,"name":314,"tactic":315},"D3-CSPP","Client-server Payload Profiling",{"name":56},{"id":317,"name":318,"tactic":319},"D3-PHDURA","Per Host Download-Upload Ratio Analysis",{"name":56},{"id":321,"name":322,"tactic":323},"D3-NTSA","Network Traffic Signature Analysis",{"name":56},{"id":325,"name":326,"tactic":327},"D3-APCA","Application Protocol Command Analysis",{"name":56},{"id":329,"name":330,"tactic":331},"D3-NTCD","Network Traffic Community Deviation",{"name":56},{"id":333,"name":334,"tactic":335},"D3-RTSD","Remote Terminal Session Detection",{"name":56},{"id":337,"name":338,"tactic":339},"D3-NTF","Network Traffic Filtering",{"name":145},{"id":341,"name":342,"tactics":343,"countermeasures":348},"T1550.001","Application Access Token",[344,345],{"id":29,"name":30},{"id":346,"name":347},"TA0109","Lateral Movement",[349,353,357,359,363,365,367,369,371,373,375,377,379,383,387,391,395,399,403,407,411,415,419,423,427,431,435,437,439,443,447,451],{"id":350,"name":351,"tactic":352},"D3-PLA","Process Lineage Analysis",{"name":56},{"id":354,"name":355,"tactic":356},"D3-PSMD","Process Self-Modification Detection",{"name":56},{"id":86,"name":87,"tactic":358},{"name":56},{"id":360,"name":361,"tactic":362},"D3-CCSA","Credential Compromise Scope Analysis",{"name":56},{"id":305,"name":306,"tactic":364},{"name":56},{"id":309,"name":310,"tactic":366},{"name":56},{"id":313,"name":314,"tactic":368},{"name":56},{"id":317,"name":318,"tactic":370},{"name":56},{"id":321,"name":322,"tactic":372},{"name":56},{"id":325,"name":326,"tactic":374},{"name":56},{"id":329,"name":330,"tactic":376},{"name":56},{"id":333,"name":334,"tactic":378},{"name":56},{"id":380,"name":381,"tactic":382},"D3-PT","Process Termination",{"name":93},{"id":384,"name":385,"tactic":386},"D3-PS","Process Suspension",{"name":93},{"id":388,"name":389,"tactic":390},"D3-HR","Host Reboot",{"name":93},{"id":392,"name":393,"tactic":394},"D3-HS","Host Shutdown",{"name":93},{"id":396,"name":397,"tactic":398},"D3-CR","Credential Revocation",{"name":93},{"id":400,"name":401,"tactic":402},"D3-ANCI","Authentication Cache Invalidation",{"name":93},{"id":404,"name":405,"tactic":406},"D3-DUC","Decoy User Credential",{"name":102},{"id":408,"name":409,"tactic":410},"D3-CH","Credential Hardening",{"name":107},{"id":412,"name":413,"tactic":414},"D3-MFA","Multi-factor Authentication",{"name":107},{"id":416,"name":417,"tactic":418},"D3-CRO","Credential Rotation",{"name":107},{"id":420,"name":421,"tactic":422},"D3-TB","Token Binding",{"name":107},{"id":424,"name":425,"tactic":426},"D3-TBA","Token-based Authentication",{"name":107},{"id":428,"name":429,"tactic":430},"D3-RIC","Reissue Credential",{"name":124},{"id":432,"name":433,"tactic":434},"D3-KBPI","Kernel-based Process Isolation",{"name":145},{"id":142,"name":143,"tactic":436},{"name":145},{"id":179,"name":180,"tactic":438},{"name":145},{"id":440,"name":441,"tactic":442},"D3-ABPI","Application-based Process Isolation",{"name":145},{"id":444,"name":445,"tactic":446},"D3-WSAM","Web Session Access Mediation",{"name":145},{"id":448,"name":449,"tactic":450},"D3-CTS","Credential Transmission Scoping",{"name":145},{"id":337,"name":338,"tactic":452},{"name":145},{"id":454,"name":455,"tactics":456,"countermeasures":458},"T1563","Remote Service Session Hijacking",[457],{"id":346,"name":347},[459,461,463,465,467,469,471,473,475,479],{"id":305,"name":306,"tactic":460},{"name":56},{"id":309,"name":310,"tactic":462},{"name":56},{"id":313,"name":314,"tactic":464},{"name":56},{"id":317,"name":318,"tactic":466},{"name":56},{"id":321,"name":322,"tactic":468},{"name":56},{"id":325,"name":326,"tactic":470},{"name":56},{"id":329,"name":330,"tactic":472},{"name":56},{"id":333,"name":334,"tactic":474},{"name":56},{"id":476,"name":477,"tactic":478},"D3-ST","Session Termination",{"name":93},{"id":337,"name":338,"tactic":480},{"name":145},{"id":482,"name":483,"techniques":484},"CAPEC-633","Token Impersonation",[485],{"id":486,"name":487,"tactics":488,"countermeasures":494},"T1134","Access Token Manipulation",[489,490,493],{"id":29,"name":30},{"id":491,"name":492},"TA0005","Stealth",{"id":32,"name":33},[495,497,499,501,503,505,507,509,511,513,515,517,519,521,523,525,527,529,531,533,535,537,539,541],{"id":36,"name":37,"tactic":496},{"name":39},{"id":49,"name":50,"tactic":498},{"name":39},{"id":41,"name":42,"tactic":500},{"name":39},{"id":53,"name":54,"tactic":502},{"name":56},{"id":58,"name":59,"tactic":504},{"name":56},{"id":360,"name":361,"tactic":506},{"name":56},{"id":74,"name":75,"tactic":508},{"name":56},{"id":86,"name":87,"tactic":510},{"name":56},{"id":476,"name":477,"tactic":512},{"name":93},{"id":396,"name":397,"tactic":514},{"name":93},{"id":400,"name":401,"tactic":516},{"name":93},{"id":404,"name":405,"tactic":518},{"name":102},{"id":408,"name":409,"tactic":520},{"name":107},{"id":412,"name":413,"tactic":522},{"name":107},{"id":416,"name":417,"tactic":524},{"name":107},{"id":420,"name":421,"tactic":526},{"name":107},{"id":424,"name":425,"tactic":528},{"name":107},{"id":121,"name":122,"tactic":530},{"name":124},{"id":428,"name":429,"tactic":532},{"name":124},{"id":142,"name":143,"tactic":534},{"name":145},{"id":448,"name":449,"tactic":536},{"name":145},{"id":171,"name":172,"tactic":538},{"name":145},{"id":175,"name":176,"tactic":540},{"name":145},{"id":179,"name":180,"tactic":542},{"name":145},{"id":544,"name":545,"techniques":546},"CAPEC-650","Upload a Web Shell to a Web Server",[547],{"id":548,"name":549,"tactics":550,"countermeasures":554},"T1505.003","Web Shell",[551],{"id":552,"name":553},"TA0110","Persistence",[555,559,563,567,571,573,575,577,579,581,583,585,587,589,591,593,595,597,599,603,605,607,609,611,613,615,617,619,621,623,625],{"id":556,"name":557,"tactic":558},"D3-NNI","Network Node Inventory",{"name":39},{"id":560,"name":561,"tactic":562},"D3-PLM","Physical Link Mapping",{"name":39},{"id":564,"name":565,"tactic":566},"D3-LLM","Logical Link Mapping",{"name":39},{"id":568,"name":569,"tactic":570},"D3-EHB","Endpoint Health Beacon",{"name":56},{"id":66,"name":67,"tactic":572},{"name":56},{"id":70,"name":71,"tactic":574},{"name":56},{"id":78,"name":79,"tactic":576},{"name":56},{"id":82,"name":83,"tactic":578},{"name":56},{"id":350,"name":351,"tactic":580},{"name":56},{"id":354,"name":355,"tactic":582},{"name":56},{"id":86,"name":87,"tactic":584},{"name":56},{"id":90,"name":91,"tactic":586},{"name":93},{"id":380,"name":381,"tactic":588},{"name":93},{"id":384,"name":385,"tactic":590},{"name":93},{"id":388,"name":389,"tactic":592},{"name":93},{"id":392,"name":393,"tactic":594},{"name":93},{"id":99,"name":100,"tactic":596},{"name":102},{"id":104,"name":105,"tactic":598},{"name":107},{"id":600,"name":601,"tactic":602},"D3-RNA","Restore Network Access",{"name":124},{"id":126,"name":127,"tactic":604},{"name":124},{"id":147,"name":148,"tactic":606},{"name":145},{"id":151,"name":152,"tactic":608},{"name":145},{"id":155,"name":156,"tactic":610},{"name":145},{"id":159,"name":160,"tactic":612},{"name":145},{"id":163,"name":164,"tactic":614},{"name":145},{"id":171,"name":172,"tactic":616},{"name":145},{"id":175,"name":176,"tactic":618},{"name":145},{"id":432,"name":433,"tactic":620},{"name":145},{"id":142,"name":143,"tactic":622},{"name":145},{"id":179,"name":180,"tactic":624},{"name":145},{"id":440,"name":441,"tactic":626},{"name":145},{"id":628,"name":629,"techniques":630},"CAPEC-94","Adversary in the Middle (AiTM)",[631],{"id":632,"name":633,"tactics":634,"countermeasures":637},"T1557","Adversary-in-the-Middle",[635,636],{"id":282,"name":283},{"id":301,"name":302},[638,640,642,644,646,648,650,652,654,658],{"id":305,"name":306,"tactic":639},{"name":56},{"id":309,"name":310,"tactic":641},{"name":56},{"id":313,"name":314,"tactic":643},{"name":56},{"id":317,"name":318,"tactic":645},{"name":56},{"id":321,"name":322,"tactic":647},{"name":56},{"id":325,"name":326,"tactic":649},{"name":56},{"id":329,"name":330,"tactic":651},{"name":56},{"id":333,"name":334,"tactic":653},{"name":56},{"id":655,"name":656,"tactic":657},"D3-CAA","Connection Attempt Analysis",{"name":56},{"id":337,"name":338,"tactic":659},{"name":145},{"_key":661,"id":661,"name":662,"description":663,"type":15,"status":16,"abstraction":664,"likelihood_of_exploit":665,"capec":666},"CWE-301","Reflection Attack in an Authentication Protocol","Simple authentication protocols are subject to reflection attacks if a malicious user can use the target machine to impersonate a trusted user.","Base","Medium",[667],{"id":668,"name":669,"techniques":670},"CAPEC-90","Reflection Attack in Authentication Protocol",[],[],[],[],[675,677,679,681,683,685,687,689,691,693,695,697,699,701],{"_key":676},"ALPINE-CVE-2019-9497",{"_key":678},"SUSE-SU-2020:3380-1",{"_key":680},"SUSE-SU-2020:3424-1",{"_key":682},"SUSE-SU-2022:1853-1",{"_key":684},"UBUNTU-CVE-2019-9497",{"_key":686},"USN-3944-1",{"_key":688},"OPENSUSE-SU-2020:0222-1",{"_key":690},"OPENSUSE-SU-2020:2053-1",{"_key":692},"OPENSUSE-SU-2020:2059-1",{"_key":694},"OPENSUSE-SU-2024:10846-1",{"_key":696},"OPENSUSE-SU-2024:11515-1",{"_key":698},"DLA-1867-1",{"_key":700},"DSA-4430-1",{"_key":702},"DEBIAN-CVE-2019-9497",[],[705,706,707,708,709,710,711,712],{"_key":678},{"_key":680},{"_key":682},{"_key":688},{"_key":690},{"_key":692},{"_key":694},{"_key":696},"2019-04-17T13:31:08.000Z","2024-08-04T21:54:44.151Z","Modified",{"cisa_kev":717,"cisa_ransomware":717,"cisa_vendor":9,"epss_severity":718,"epss_score":719,"severity":720,"severity_score":721,"severity_version":722,"severity_source":723,"severity_vector":724,"severity_status":715},false,"medium",0.11468,"high",8.1,"v3.0","nvd","CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",[726,734,738,743,747,751,756,762,767,772],{"url":727,"sources":728,"tags":730},"https://w1.fi/security/2019-4/",[729,723],"cve.org",[731,732,733],"X Refsource CONFIRM","Patch","Vendor Advisory",{"url":735,"sources":736,"tags":737},"https://www.synology.com/security/advisory/Synology_SA_19_16",[729,723],[731],{"url":739,"sources":740,"tags":741},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/56OBBOJJSKRTDGEXZOVFSTP4HDSDBLAE/",[729,723],[733,742],"X Refsource FEDORA",{"url":744,"sources":745,"tags":746},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TDOZGR3T7FVO5JSZWK2QPR7AOFIEJTIZ/",[729,723],[733,742],{"url":748,"sources":749,"tags":750},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SVMJOFEYBGXZLFF5IOLW67SSOPKFEJP3/",[729,723],[733,742],{"url":752,"sources":753,"tags":754},"https://security.FreeBSD.org/advisories/FreeBSD-SA-19:03.wpa.asc",[729,723],[733,755],"X Refsource FREEBSD",{"url":757,"sources":758,"tags":759},"https://seclists.org/bugtraq/2019/May/40",[729,723],[760,761],"Mailing List","X Refsource BUGTRAQ",{"url":763,"sources":764,"tags":765},"http://packetstormsecurity.com/files/152914/FreeBSD-Security-Advisory-FreeBSD-SA-19-03.wpa.html",[729,723],[766],"X Refsource MISC",{"url":768,"sources":769,"tags":770},"https://lists.debian.org/debian-lts-announce/2019/07/msg00030.html",[729,723],[760,771],"X Refsource MLIST",{"url":773,"sources":774,"tags":775},"http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00021.html",[729,723],[733,776],"X Refsource SUSE",[],{"date":779,"score":719,"percentile":780},"2026-06-03",0.93739,[782,786,789,792,795,798,800,802,805,808,811,814,817,820,823,827,830,833,836,839,842,844,846,849,852,855,858,861,865,868,871,874,876,879,882,884,886,889,892,895,898,901,903,906,909,912,915,918,921,923,926,929,932,935,938,941,944,947,950,953,956,959,962,965,968,970,973,976,979,982,984,986,989,992,995,998,1000,1002,1006,1009,1012,1015,1018,1021,1024,1027,1030,1032,1035,1039],{"date":783,"score":784,"percentile":785},"2025-11-04",0.08116,0.91769,{"date":787,"score":784,"percentile":788},"2025-11-05",0.91768,{"date":790,"score":784,"percentile":791},"2025-11-06",0.91771,{"date":793,"score":784,"percentile":794},"2025-11-07",0.91776,{"date":796,"score":784,"percentile":797},"2025-11-08",0.91773,{"date":799,"score":784,"percentile":791},"2025-11-09",{"date":801,"score":784,"percentile":797},"2025-11-10",{"date":803,"score":784,"percentile":804},"2025-11-11",0.91779,{"date":806,"score":784,"percentile":807},"2025-11-12",0.91784,{"date":809,"score":784,"percentile":810},"2025-11-13",0.91786,{"date":812,"score":784,"percentile":813},"2025-11-14",0.91788,{"date":815,"score":784,"percentile":816},"2025-11-15",0.91785,{"date":818,"score":784,"percentile":819},"2025-11-16",0.91794,{"date":821,"score":784,"percentile":822},"2025-11-17",0.91795,{"date":824,"score":825,"percentile":826},"2025-11-18",0.10643,0.9254,{"date":828,"score":825,"percentile":829},"2025-11-19",0.92543,{"date":831,"score":825,"percentile":832},"2025-11-20",0.92547,{"date":834,"score":784,"percentile":835},"2025-11-21",0.91802,{"date":837,"score":784,"percentile":838},"2025-11-22",0.91801,{"date":840,"score":784,"percentile":841},"2025-11-23",0.91807,{"date":843,"score":784,"percentile":841},"2025-11-24",{"date":845,"score":784,"percentile":841},"2025-11-25",{"date":847,"score":784,"percentile":848},"2025-11-26",0.91808,{"date":850,"score":784,"percentile":851},"2025-11-27",0.91806,{"date":853,"score":784,"percentile":854},"2025-11-28",0.91798,{"date":856,"score":784,"percentile":857},"2025-11-29",0.91824,{"date":859,"score":784,"percentile":860},"2025-11-30",0.91823,{"date":862,"score":863,"percentile":864},"2025-12-01",0.02084,0.83524,{"date":866,"score":863,"percentile":867},"2025-12-02",0.83525,{"date":869,"score":863,"percentile":870},"2025-12-03",0.83528,{"date":872,"score":784,"percentile":873},"2025-12-04",0.91821,{"date":875,"score":784,"percentile":857},"2025-12-05",{"date":877,"score":784,"percentile":878},"2025-12-06",0.91828,{"date":880,"score":784,"percentile":881},"2025-12-07",0.91825,{"date":883,"score":784,"percentile":857},"2025-12-08",{"date":885,"score":784,"percentile":878},"2025-12-09",{"date":887,"score":784,"percentile":888},"2025-12-10",0.91836,{"date":890,"score":784,"percentile":891},"2025-12-11",0.91838,{"date":893,"score":784,"percentile":894},"2025-12-12",0.9184,{"date":896,"score":784,"percentile":897},"2025-12-13",0.9183,{"date":899,"score":784,"percentile":900},"2025-12-14",0.91827,{"date":902,"score":784,"percentile":897},"2025-12-15",{"date":904,"score":784,"percentile":905},"2025-12-16",0.91842,{"date":907,"score":784,"percentile":908},"2025-12-17",0.91849,{"date":910,"score":784,"percentile":911},"2025-12-18",0.91854,{"date":913,"score":784,"percentile":914},"2025-12-19",0.91857,{"date":916,"score":784,"percentile":917},"2025-12-20",0.91858,{"date":919,"score":784,"percentile":920},"2025-12-21",0.91859,{"date":922,"score":784,"percentile":914},"2025-12-22",{"date":924,"score":784,"percentile":925},"2025-12-23",0.91861,{"date":927,"score":784,"percentile":928},"2025-12-24",0.91868,{"date":930,"score":784,"percentile":931},"2025-12-25",0.91871,{"date":933,"score":784,"percentile":934},"2025-12-26",0.9187,{"date":936,"score":784,"percentile":937},"2025-12-27",0.91894,{"date":939,"score":784,"percentile":940},"2025-12-28",0.91866,{"date":942,"score":784,"percentile":943},"2025-12-29",0.91862,{"date":945,"score":784,"percentile":946},"2025-12-30",0.91867,{"date":948,"score":784,"percentile":949},"2025-12-31",0.91875,{"date":951,"score":863,"percentile":952},"2026-01-01",0.83619,{"date":954,"score":863,"percentile":955},"2026-01-02",0.83617,{"date":957,"score":863,"percentile":958},"2026-01-03",0.83612,{"date":960,"score":784,"percentile":961},"2026-01-04",0.91885,{"date":963,"score":784,"percentile":964},"2026-01-05",0.91882,{"date":966,"score":784,"percentile":967},"2026-01-06",0.91884,{"date":969,"score":784,"percentile":967},"2026-01-07",{"date":971,"score":784,"percentile":972},"2026-01-08",0.91887,{"date":974,"score":784,"percentile":975},"2026-01-09",0.9189,{"date":977,"score":784,"percentile":978},"2026-01-10",0.91891,{"date":980,"score":784,"percentile":981},"2026-01-11",0.91883,{"date":983,"score":784,"percentile":967},"2026-01-12",{"date":985,"score":784,"percentile":981},"2026-01-13",{"date":987,"score":784,"percentile":988},"2026-01-14",0.91897,{"date":990,"score":784,"percentile":991},"2026-01-15",0.91901,{"date":993,"score":784,"percentile":994},"2026-01-16",0.91902,{"date":996,"score":784,"percentile":997},"2026-01-17",0.91906,{"date":999,"score":784,"percentile":994},"2026-01-18",{"date":1001,"score":784,"percentile":997},"2026-01-19",{"date":1003,"score":1004,"percentile":1005},"2026-01-20",0.08319,0.92011,{"date":1007,"score":1004,"percentile":1008},"2026-01-21",0.92015,{"date":1010,"score":1004,"percentile":1011},"2026-01-22",0.92018,{"date":1013,"score":1004,"percentile":1014},"2026-01-23",0.92027,{"date":1016,"score":1004,"percentile":1017},"2026-01-24",0.92034,{"date":1019,"score":1004,"percentile":1020},"2026-01-25",0.92035,{"date":1022,"score":1004,"percentile":1023},"2026-01-26",0.92037,{"date":1025,"score":1004,"percentile":1026},"2026-01-27",0.92039,{"date":1028,"score":1004,"percentile":1029},"2026-01-28",0.92044,{"date":1031,"score":1004,"percentile":1029},"2026-01-29",{"date":1033,"score":1004,"percentile":1034},"2026-01-30",0.92042,{"date":1036,"score":1037,"percentile":1038},"2026-01-31",0.08176,0.91966,{"date":1040,"score":1041,"percentile":1042},"2026-02-01",0.02101,0.83735,[1044],{"source":723,"cvss_v2_0":1045,"cvss_v3_0":1050,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":1046,"baseSeverity":9,"vectorString":1047,"impactScore":1048,"exploitabilityScore":1049},6.8,"AV:N/AC:M/Au:N/C:P/I:P/A:P",6.4,8.6,{"baseScore":721,"baseSeverity":1051,"vectorString":724,"impactScore":1052,"exploitabilityScore":1053},"HIGH",9.8,5.6,[1055,1067,1081,1087,1094,1100,1105],{"ecosystem":9,"name":1056,"vendor":1057,"product":1056,"cpe_part":1058,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1059},"fedora","fedoraproject","o",[1060,1063,1065],{"version":1061,"is_range":717,"range_type":1062,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"28","cpe",{"version":1064,"is_range":717,"range_type":1062,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"29",{"version":1066,"is_range":717,"range_type":1062,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"30",{"ecosystem":9,"name":1068,"vendor":1069,"product":1068,"cpe_part":1070,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1071},"hostapd","w1.fi","a",[1072,1077],{"version":1073,"is_range":1074,"range_type":1062,"version_start":9,"version_start_type":9,"version_end":1075,"version_end_type":1076,"fixed_in":9},"lte2.4",true,"2.4","including",{"version":1078,"is_range":1074,"range_type":1062,"version_start":1079,"version_start_type":1076,"version_end":1080,"version_end_type":1076,"fixed_in":9},"gte2.5_lte2.7","2.5","2.7",{"ecosystem":9,"name":1082,"vendor":1069,"product":1083,"cpe_part":1070,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1084},"wpa supplicant","wpa_supplicant",[1085,1086],{"version":1073,"is_range":1074,"range_type":1062,"version_start":9,"version_start_type":9,"version_end":1075,"version_end_type":1076,"fixed_in":9},{"version":1078,"is_range":1074,"range_type":1062,"version_start":1079,"version_start_type":1076,"version_end":1080,"version_end_type":1076,"fixed_in":9},{"ecosystem":9,"name":1088,"vendor":1089,"product":1090,"cpe_part":1070,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1091},"hostapd with EAP-pwd support","wi-fi alliance","hostapd with eap-pwd support",[1092],{"version":1093,"is_range":1074,"range_type":729,"version_start":1080,"version_start_type":1076,"version_end":1080,"version_end_type":1076,"fixed_in":9},">= 2.7, \u003C= 2.7",{"ecosystem":9,"name":1095,"vendor":1089,"product":1096,"cpe_part":1070,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1097},"hostapd with SAE support","hostapd with sae support",[1098],{"version":1099,"is_range":1074,"range_type":729,"version_start":1075,"version_start_type":1076,"version_end":1075,"version_end_type":1076,"fixed_in":9},">= 2.4, \u003C= 2.4",{"ecosystem":9,"name":1101,"vendor":1089,"product":1102,"cpe_part":1070,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1103},"wpa_supplicant with EAP-pwd support","wpa_supplicant with eap-pwd support",[1104],{"version":1093,"is_range":1074,"range_type":729,"version_start":1080,"version_start_type":1076,"version_end":1080,"version_end_type":1076,"fixed_in":9},{"ecosystem":9,"name":1106,"vendor":1089,"product":1107,"cpe_part":1070,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1108},"wpa_supplicant with SAE support","wpa_supplicant with sae support",[1109],{"version":1099,"is_range":1074,"range_type":729,"version_start":1075,"version_start_type":1076,"version_end":1075,"version_end_type":1076,"fixed_in":9}]