[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2020-15863":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T20:55:29.923Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":20,"aliases":21,"duplicate_of":9,"upstream":22,"downstream":23,"duplicates":54,"related":55,"reserved_at":9,"published_at":66,"modified_at":67,"state":68,"summary":69,"references_raw":78,"kevs":122,"epss":123,"epss_history":126,"metrics":393,"affected":404},"CVE-2020-15863","hw/net/xgmac.c in the XGMAC Ethernet controller in QEMU before 07-20-2020 has a buffer overflow. This occurs during packet transmission and affects the highbank and midway emulated machines. A guest user or process could use this flaw to crash the QEMU process on the host, resulting in a denial of service or potential privileged code execution. This was fixed in commit 5519724a13664b43e225ca05351c60b4468e4555.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-787","Out-of-bounds Write","The product writes data past the end, or before the beginning, of the intended buffer.","weakness","Draft","Base","High",[],[],[],[],[24,26,28,30,32,34,36,38,40,42,44,46,48,50,52],{"_key":25},"SUSE-SU-2020:2743-1",{"_key":27},"SUSE-SU-2020:2877-1",{"_key":29},"SUSE-SU-2021:1240-1",{"_key":31},"SUSE-SU-2021:1241-1",{"_key":33},"SUSE-SU-2021:1244-1",{"_key":35},"SUSE-SU-2021:1245-1",{"_key":37},"SUSE-SU-2021:1305-1",{"_key":39},"SUSE-SU-2021:14772-1",{"_key":41},"SUSE-SU-2021:14774-1",{"_key":43},"UBUNTU-CVE-2020-15863",{"_key":45},"OPENSUSE-SU-2020:1664-1",{"_key":47},"DLA-2288-1",{"_key":49},"DSA-4760-1",{"_key":51},"USN-4467-1",{"_key":53},"DEBIAN-CVE-2020-15863",[],[56,57,58,59,60,61,62,63,64,65],{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":45},"2020-07-28T15:40:29.000Z","2024-08-04T13:30:22.902Z","Modified",{"cisa_kev":70,"cisa_ransomware":70,"cisa_vendor":9,"epss_severity":71,"epss_score":72,"severity":73,"severity_score":74,"severity_version":75,"severity_source":76,"severity_vector":77,"severity_status":68},false,"low",0.00127,"medium",5.3,"v3.1","nvd","CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L",[79,88,93,97,101,107,112,117],{"url":80,"sources":81,"tags":83},"https://lists.nongnu.org/archive/html/qemu-devel/2020-07/msg03497.html",[82,76],"cve.org",[84,85,86,87],"X Refsource MISC","Mailing List","Patch","Third Party Advisory",{"url":89,"sources":90,"tags":91},"http://www.openwall.com/lists/oss-security/2020/07/22/1",[82,76],[92,85,86,87],"X Refsource CONFIRM",{"url":94,"sources":95,"tags":96},"https://git.qemu.org/?p=qemu.git%3Ba=commitdiff%3Bh=5519724a13664b43e225ca05351c60b4468e4555",[82,76],[92],{"url":98,"sources":99,"tags":100},"https://lists.nongnu.org/archive/html/qemu-devel/2020-07/msg05745.html",[82,76],[84,85,86,87],{"url":102,"sources":103,"tags":104},"https://usn.ubuntu.com/4467-1/",[82,76],[105,106,87],"Vendor Advisory","X Refsource UBUNTU",{"url":108,"sources":109,"tags":110},"https://www.debian.org/security/2020/dsa-4760",[82,76],[105,111,87],"X Refsource DEBIAN",{"url":113,"sources":114,"tags":115},"http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00024.html",[82,76],[105,116,85,87],"X Refsource SUSE",{"url":118,"sources":119,"tags":120},"https://security.gentoo.org/glsa/202208-27",[82,76],[105,121,87],"X Refsource GENTOO",[],{"date":124,"score":72,"percentile":125},"2026-06-04",0.3148,[127,131,134,137,140,143,146,149,152,155,158,161,164,166,169,173,176,179,182,185,188,191,194,197,200,203,206,209,212,215,218,221,224,227,230,233,236,239,242,245,248,251,254,257,260,263,266,269,272,275,278,281,284,287,291,294,297,300,303,306,309,312,315,318,321,324,326,329,331,334,337,340,343,345,348,351,354,357,360,363,366,369,372,375,377,380,383,386,389,391],{"date":128,"score":129,"percentile":130},"2025-11-04",0.00045,0.13561,{"date":132,"score":129,"percentile":133},"2025-11-05",0.1359,{"date":135,"score":129,"percentile":136},"2025-11-06",0.13678,{"date":138,"score":129,"percentile":139},"2025-11-07",0.13689,{"date":141,"score":129,"percentile":142},"2025-11-08",0.13693,{"date":144,"score":129,"percentile":145},"2025-11-09",0.13665,{"date":147,"score":129,"percentile":148},"2025-11-10",0.13637,{"date":150,"score":129,"percentile":151},"2025-11-11",0.13655,{"date":153,"score":129,"percentile":154},"2025-11-12",0.13657,{"date":156,"score":129,"percentile":157},"2025-11-13",0.13683,{"date":159,"score":129,"percentile":160},"2025-11-14",0.1371,{"date":162,"score":129,"percentile":163},"2025-11-15",0.13681,{"date":165,"score":129,"percentile":163},"2025-11-16",{"date":167,"score":129,"percentile":168},"2025-11-17",0.13656,{"date":170,"score":171,"percentile":172},"2025-11-18",0.00112,0.25307,{"date":174,"score":171,"percentile":175},"2025-11-19",0.25331,{"date":177,"score":171,"percentile":178},"2025-11-20",0.25339,{"date":180,"score":129,"percentile":181},"2025-11-21",0.1368,{"date":183,"score":129,"percentile":184},"2025-11-22",0.13669,{"date":186,"score":129,"percentile":187},"2025-11-23",0.13651,{"date":189,"score":129,"percentile":190},"2025-11-24",0.13611,{"date":192,"score":129,"percentile":193},"2025-11-25",0.13613,{"date":195,"score":129,"percentile":196},"2025-11-26",0.13608,{"date":198,"score":129,"percentile":199},"2025-11-27",0.13607,{"date":201,"score":129,"percentile":202},"2025-11-28",0.13587,{"date":204,"score":129,"percentile":205},"2025-11-29",0.13586,{"date":207,"score":129,"percentile":208},"2025-11-30",0.13592,{"date":210,"score":129,"percentile":211},"2025-12-01",0.13628,{"date":213,"score":129,"percentile":214},"2025-12-02",0.13648,{"date":216,"score":129,"percentile":217},"2025-12-03",0.13675,{"date":219,"score":129,"percentile":220},"2025-12-04",0.13645,{"date":222,"score":129,"percentile":223},"2025-12-05",0.13715,{"date":225,"score":129,"percentile":226},"2025-12-06",0.13732,{"date":228,"score":129,"percentile":229},"2025-12-07",0.13717,{"date":231,"score":129,"percentile":232},"2025-12-08",0.13729,{"date":234,"score":129,"percentile":235},"2025-12-09",0.13787,{"date":237,"score":129,"percentile":238},"2025-12-10",0.13855,{"date":240,"score":129,"percentile":241},"2025-12-11",0.13888,{"date":243,"score":129,"percentile":244},"2025-12-12",0.13938,{"date":246,"score":129,"percentile":247},"2025-12-13",0.13957,{"date":249,"score":129,"percentile":250},"2025-12-14",0.13924,{"date":252,"score":129,"percentile":253},"2025-12-15",0.1389,{"date":255,"score":129,"percentile":256},"2025-12-16",0.13894,{"date":258,"score":129,"percentile":259},"2025-12-17",0.13993,{"date":261,"score":129,"percentile":262},"2025-12-18",0.14049,{"date":264,"score":129,"percentile":265},"2025-12-19",0.14091,{"date":267,"score":129,"percentile":268},"2025-12-20",0.14073,{"date":270,"score":129,"percentile":271},"2025-12-21",0.14032,{"date":273,"score":129,"percentile":274},"2025-12-22",0.13983,{"date":276,"score":129,"percentile":277},"2025-12-23",0.13976,{"date":279,"score":129,"percentile":280},"2025-12-24",0.13972,{"date":282,"score":129,"percentile":283},"2025-12-25",0.14043,{"date":285,"score":129,"percentile":286},"2025-12-26",0.14004,{"date":288,"score":289,"percentile":290},"2025-12-27",0.00047,0.14614,{"date":292,"score":129,"percentile":293},"2025-12-28",0.13971,{"date":295,"score":129,"percentile":296},"2025-12-29",0.13876,{"date":298,"score":129,"percentile":299},"2025-12-30",0.13887,{"date":301,"score":129,"percentile":302},"2025-12-31",0.1395,{"date":304,"score":129,"percentile":305},"2026-01-01",0.14024,{"date":307,"score":129,"percentile":308},"2026-01-02",0.14013,{"date":310,"score":129,"percentile":311},"2026-01-03",0.1398,{"date":313,"score":129,"percentile":314},"2026-01-04",0.13904,{"date":316,"score":129,"percentile":317},"2026-01-05",0.13848,{"date":319,"score":129,"percentile":320},"2026-01-06",0.13857,{"date":322,"score":129,"percentile":323},"2026-01-07",0.13896,{"date":325,"score":129,"percentile":302},"2026-01-08",{"date":327,"score":129,"percentile":328},"2026-01-09",0.13955,{"date":330,"score":129,"percentile":280},"2026-01-10",{"date":332,"score":129,"percentile":333},"2026-01-11",0.13901,{"date":335,"score":129,"percentile":336},"2026-01-12",0.13867,{"date":338,"score":129,"percentile":339},"2026-01-13",0.13842,{"date":341,"score":129,"percentile":342},"2026-01-14",0.13898,{"date":344,"score":129,"percentile":342},"2026-01-15",{"date":346,"score":129,"percentile":347},"2026-01-16",0.13941,{"date":349,"score":129,"percentile":350},"2026-01-17",0.13959,{"date":352,"score":129,"percentile":353},"2026-01-18",0.13893,{"date":355,"score":129,"percentile":356},"2026-01-19",0.13833,{"date":358,"score":129,"percentile":359},"2026-01-20",0.13811,{"date":361,"score":129,"percentile":362},"2026-01-21",0.13799,{"date":364,"score":129,"percentile":365},"2026-01-22",0.13727,{"date":367,"score":129,"percentile":368},"2026-01-23",0.13807,{"date":370,"score":129,"percentile":371},"2026-01-24",0.13851,{"date":373,"score":129,"percentile":374},"2026-01-25",0.1379,{"date":376,"score":129,"percentile":229},"2026-01-26",{"date":378,"score":129,"percentile":379},"2026-01-27",0.13713,{"date":381,"score":129,"percentile":382},"2026-01-28",0.13721,{"date":384,"score":129,"percentile":385},"2026-01-29",0.13698,{"date":387,"score":129,"percentile":388},"2026-01-30",0.13707,{"date":390,"score":129,"percentile":223},"2026-01-31",{"date":392,"score":129,"percentile":365},"2026-02-01",[394],{"source":76,"cvss_v2_0":395,"cvss_v3_0":9,"cvss_v3_1":400,"cvss_v4_0":9},{"baseScore":396,"baseSeverity":9,"vectorString":397,"impactScore":398,"exploitabilityScore":399},4.4,"AV:L/AC:M/Au:N/C:P/I:P/A:P",6.4,3.4,{"baseScore":74,"baseSeverity":401,"vectorString":77,"impactScore":402,"exploitabilityScore":403},"MEDIUM",6.2,2.8,[405,418,425],{"ecosystem":9,"name":406,"vendor":407,"product":408,"cpe_part":409,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":410},"ubuntu linux","canonical","ubuntu_linux","o",[411,414,416],{"version":412,"is_range":70,"range_type":413,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"16.04","cpe",{"version":415,"is_range":70,"range_type":413,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"18.04",{"version":417,"is_range":70,"range_type":413,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"20.04",{"ecosystem":9,"name":419,"vendor":420,"product":421,"cpe_part":409,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":422},"debian linux","debian","debian_linux",[423],{"version":424,"is_range":70,"range_type":413,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.0",{"ecosystem":9,"name":426,"vendor":426,"product":426,"cpe_part":427,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":428},"qemu","a",[429,434],{"version":430,"is_range":431,"range_type":413,"version_start":9,"version_start_type":9,"version_end":432,"version_end_type":433,"fixed_in":9},"lte5.0.0",true,"5.0.0","including",{"version":435,"is_range":70,"range_type":413,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.1.0:rc0"]