[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2020-13253":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":23,"aliases":24,"duplicate_of":9,"upstream":25,"downstream":26,"duplicates":47,"related":48,"reserved_at":9,"published_at":53,"modified_at":54,"state":55,"summary":56,"references_raw":65,"kevs":105,"epss":106,"epss_history":109,"metrics":381,"affected":392},"CVE-2020-13253","sd_wp_addr in hw/sd/sd.c in QEMU 4.2.0 uses an unvalidated address, which leads to an out-of-bounds read during sdhci_write() operations. A guest OS user can crash the QEMU process.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-125","Out-of-bounds Read","The product reads data past the end, or before the beginning, of the intended buffer.","weakness","Draft","Base",[19],{"id":20,"name":21,"techniques":22},"CAPEC-540","Overread Buffers",[],[],[],[],[27,29,31,33,35,37,39,41,43,45],{"_key":28},"SUSE-SU-2022:0210-1",{"_key":30},"SUSE-SU-2022:0210-2",{"_key":32},"SUSE-SU-2023:0761-1",{"_key":34},"UBUNTU-CVE-2020-13253",{"_key":36},"USN-4467-2",{"_key":38},"OPENSUSE-SU-2022:0210-1",{"_key":40},"DLA-2373-1",{"_key":42},"DLA-3099-1",{"_key":44},"USN-4467-1",{"_key":46},"DEBIAN-CVE-2020-13253",[],[49,50,51,52],{"_key":28},{"_key":30},{"_key":32},{"_key":38},"2020-05-27T14:09:55.000Z","2024-08-04T12:11:19.480Z","Modified",{"cisa_kev":57,"cisa_ransomware":57,"cisa_vendor":9,"epss_severity":58,"epss_score":59,"severity":60,"severity_score":61,"severity_version":62,"severity_source":63,"severity_vector":64,"severity_status":55},false,"low",0.00116,"medium",5.5,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",[66,75,80,85,91,96,101],{"url":67,"sources":68,"tags":70},"https://lists.gnu.org/archive/html/qemu-devel/2020-05/msg05835.html",[69,63],"cve.org",[71,72,73,74],"X Refsource MISC","Mailing List","Patch","Third Party Advisory",{"url":76,"sources":77,"tags":78},"http://www.openwall.com/lists/oss-security/2020/05/27/2",[69,63],[79,72,73,74],"X Refsource CONFIRM",{"url":81,"sources":82,"tags":83},"https://bugzilla.redhat.com/show_bug.cgi?id=1838546",[69,63],[79,84,73,74],"Issue Tracking",{"url":86,"sources":87,"tags":88},"https://usn.ubuntu.com/4467-1/",[69,63],[89,90,74],"Vendor Advisory","X Refsource UBUNTU",{"url":92,"sources":93,"tags":94},"https://lists.debian.org/debian-lts-announce/2020/09/msg00013.html",[69,63],[72,95,74],"X Refsource MLIST",{"url":97,"sources":98,"tags":99},"https://security.gentoo.org/glsa/202011-09",[69,63],[89,100,74],"X Refsource GENTOO",{"url":102,"sources":103,"tags":104},"https://lists.debian.org/debian-lts-announce/2022/09/msg00008.html",[69,63],[72,95,74],[],{"date":107,"score":59,"percentile":108},"2026-06-04",0.29925,[110,114,117,120,123,126,129,132,135,138,141,144,147,150,153,157,160,163,167,170,173,176,179,182,185,188,190,192,195,199,203,206,209,212,215,218,221,224,227,230,233,236,239,242,245,248,251,254,257,260,263,266,269,272,275,278,281,284,287,290,293,296,299,302,305,308,311,314,317,320,323,326,329,332,335,338,341,344,347,350,353,356,359,362,365,368,371,374,376,379],{"date":111,"score":112,"percentile":113},"2025-11-04",0.00036,0.098,{"date":115,"score":112,"percentile":116},"2025-11-05",0.09825,{"date":118,"score":112,"percentile":119},"2025-11-06",0.0994,{"date":121,"score":112,"percentile":122},"2025-11-07",0.09963,{"date":124,"score":112,"percentile":125},"2025-11-08",0.09973,{"date":127,"score":112,"percentile":128},"2025-11-09",0.09949,{"date":130,"score":112,"percentile":131},"2025-11-10",0.09915,{"date":133,"score":112,"percentile":134},"2025-11-11",0.0993,{"date":136,"score":112,"percentile":137},"2025-11-12",0.09956,{"date":139,"score":112,"percentile":140},"2025-11-13",0.09999,{"date":142,"score":112,"percentile":143},"2025-11-14",0.10013,{"date":145,"score":112,"percentile":146},"2025-11-15",0.10016,{"date":148,"score":112,"percentile":149},"2025-11-16",0.10021,{"date":151,"score":112,"percentile":152},"2025-11-17",0.10014,{"date":154,"score":155,"percentile":156},"2025-11-18",0.00061,0.14759,{"date":158,"score":155,"percentile":159},"2025-11-19",0.14776,{"date":161,"score":155,"percentile":162},"2025-11-20",0.14788,{"date":164,"score":165,"percentile":166},"2025-11-21",0.00037,0.10538,{"date":168,"score":165,"percentile":169},"2025-11-22",0.10543,{"date":171,"score":165,"percentile":172},"2025-11-23",0.10505,{"date":174,"score":165,"percentile":175},"2025-11-24",0.10469,{"date":177,"score":165,"percentile":178},"2025-11-25",0.10474,{"date":180,"score":165,"percentile":181},"2025-11-26",0.10467,{"date":183,"score":165,"percentile":184},"2025-11-27",0.10472,{"date":186,"score":165,"percentile":187},"2025-11-28",0.1046,{"date":189,"score":165,"percentile":187},"2025-11-29",{"date":191,"score":165,"percentile":184},"2025-11-30",{"date":193,"score":165,"percentile":194},"2025-12-01",0.10511,{"date":196,"score":197,"percentile":198},"2025-12-02",0.00026,0.06238,{"date":200,"score":201,"percentile":202},"2025-12-03",0.00025,0.05937,{"date":204,"score":201,"percentile":205},"2025-12-04",0.05899,{"date":207,"score":201,"percentile":208},"2025-12-05",0.05948,{"date":210,"score":201,"percentile":211},"2025-12-06",0.05954,{"date":213,"score":201,"percentile":214},"2025-12-07",0.05957,{"date":216,"score":201,"percentile":217},"2025-12-08",0.05968,{"date":219,"score":201,"percentile":220},"2025-12-09",0.06031,{"date":222,"score":201,"percentile":223},"2025-12-10",0.06102,{"date":225,"score":201,"percentile":226},"2025-12-11",0.06108,{"date":228,"score":201,"percentile":229},"2025-12-12",0.06126,{"date":231,"score":201,"percentile":232},"2025-12-13",0.06167,{"date":234,"score":201,"percentile":235},"2025-12-14",0.06137,{"date":237,"score":201,"percentile":238},"2025-12-15",0.06115,{"date":240,"score":201,"percentile":241},"2025-12-16",0.06141,{"date":243,"score":201,"percentile":244},"2025-12-17",0.06229,{"date":246,"score":201,"percentile":247},"2025-12-18",0.0628,{"date":249,"score":201,"percentile":250},"2025-12-19",0.06264,{"date":252,"score":201,"percentile":253},"2025-12-20",0.0626,{"date":255,"score":201,"percentile":256},"2025-12-21",0.06246,{"date":258,"score":201,"percentile":259},"2025-12-22",0.06198,{"date":261,"score":201,"percentile":262},"2025-12-23",0.06212,{"date":264,"score":201,"percentile":265},"2025-12-24",0.06244,{"date":267,"score":201,"percentile":268},"2025-12-25",0.06295,{"date":270,"score":201,"percentile":271},"2025-12-26",0.06289,{"date":273,"score":197,"percentile":274},"2025-12-27",0.06506,{"date":276,"score":201,"percentile":277},"2025-12-28",0.06285,{"date":279,"score":201,"percentile":280},"2025-12-29",0.06271,{"date":282,"score":201,"percentile":283},"2025-12-30",0.06253,{"date":285,"score":201,"percentile":286},"2025-12-31",0.06303,{"date":288,"score":201,"percentile":289},"2026-01-01",0.0637,{"date":291,"score":201,"percentile":292},"2026-01-02",0.06365,{"date":294,"score":201,"percentile":295},"2026-01-03",0.0635,{"date":297,"score":201,"percentile":298},"2026-01-04",0.06266,{"date":300,"score":201,"percentile":301},"2026-01-05",0.0621,{"date":303,"score":201,"percentile":304},"2026-01-06",0.06217,{"date":306,"score":201,"percentile":307},"2026-01-07",0.06241,{"date":309,"score":201,"percentile":310},"2026-01-08",0.06298,{"date":312,"score":201,"percentile":313},"2026-01-09",0.06297,{"date":315,"score":201,"percentile":316},"2026-01-10",0.06299,{"date":318,"score":201,"percentile":319},"2026-01-11",0.06306,{"date":321,"score":201,"percentile":322},"2026-01-12",0.06281,{"date":324,"score":201,"percentile":325},"2026-01-13",0.06265,{"date":327,"score":201,"percentile":328},"2026-01-14",0.06317,{"date":330,"score":201,"percentile":331},"2026-01-15",0.06321,{"date":333,"score":201,"percentile":334},"2026-01-16",0.06335,{"date":336,"score":201,"percentile":337},"2026-01-17",0.06344,{"date":339,"score":201,"percentile":340},"2026-01-18",0.0634,{"date":342,"score":201,"percentile":343},"2026-01-19",0.06319,{"date":345,"score":201,"percentile":346},"2026-01-20",0.06278,{"date":348,"score":201,"percentile":349},"2026-01-21",0.06274,{"date":351,"score":201,"percentile":352},"2026-01-22",0.0624,{"date":354,"score":201,"percentile":355},"2026-01-23",0.06307,{"date":357,"score":201,"percentile":358},"2026-01-24",0.06345,{"date":360,"score":201,"percentile":361},"2026-01-25",0.06293,{"date":363,"score":201,"percentile":364},"2026-01-26",0.06279,{"date":366,"score":201,"percentile":367},"2026-01-27",0.06263,{"date":369,"score":201,"percentile":370},"2026-01-28",0.06236,{"date":372,"score":201,"percentile":373},"2026-01-29",0.06233,{"date":375,"score":201,"percentile":198},"2026-01-30",{"date":377,"score":201,"percentile":378},"2026-01-31",0.06224,{"date":380,"score":201,"percentile":250},"2026-02-01",[382],{"source":63,"cvss_v2_0":383,"cvss_v3_0":9,"cvss_v3_1":388,"cvss_v4_0":9},{"baseScore":384,"baseSeverity":9,"vectorString":385,"impactScore":386,"exploitabilityScore":387},2.1,"AV:L/AC:L/Au:N/C:N/I:N/A:P",2.9,3.9,{"baseScore":61,"baseSeverity":389,"vectorString":64,"impactScore":390,"exploitabilityScore":391},"MEDIUM",6,4.6,[393,406,415],{"ecosystem":9,"name":394,"vendor":395,"product":396,"cpe_part":397,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":398},"ubuntu linux","canonical","ubuntu_linux","o",[399,402,404],{"version":400,"is_range":57,"range_type":401,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"16.04","cpe",{"version":403,"is_range":57,"range_type":401,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"18.04",{"version":405,"is_range":57,"range_type":401,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"20.04",{"ecosystem":9,"name":407,"vendor":408,"product":409,"cpe_part":397,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":410},"debian linux","debian","debian_linux",[411,413],{"version":412,"is_range":57,"range_type":401,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0",{"version":414,"is_range":57,"range_type":401,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.0",{"ecosystem":9,"name":416,"vendor":416,"product":416,"cpe_part":417,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":418},"qemu","a",[419],{"version":420,"is_range":421,"range_type":401,"version_start":9,"version_start_type":9,"version_end":422,"version_end_type":423,"fixed_in":9},"lte5.0.1",true,"5.0.1","including"]