[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2020-21427":6},{"stargazers_count":4,"fetched_at":5},5,"2026-04-09T02:11:32.352Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":72,"aliases":73,"duplicate_of":9,"upstream":74,"downstream":75,"duplicates":86,"related":87,"reserved_at":9,"published_at":88,"modified_at":89,"state":90,"summary":91,"references_raw":100,"kevs":125,"epss":126,"epss_history":129,"metrics":388,"affected":396},"CVE-2020-21427","Buffer Overflow vulnerability in function LoadPixelDataRLE8 in PluginBMP.cpp in FreeImage 3.18.0 allows remote attackers to run arbitrary code and cause other impacts via crafted image file.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-120","Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')","The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer.","weakness","Incomplete","Base","High",[20,24,28,32,36,40,44,48,52,56,60,64,68],{"id":21,"name":22,"techniques":23},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":25,"name":26,"techniques":27},"CAPEC-100","Overflow Buffers",[],{"id":29,"name":30,"techniques":31},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":33,"name":34,"techniques":35},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":37,"name":38,"techniques":39},"CAPEC-42","MIME Conversion",[],{"id":41,"name":42,"techniques":43},"CAPEC-44","Overflow Binary Resource File",[],{"id":45,"name":46,"techniques":47},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":49,"name":50,"techniques":51},"CAPEC-46","Overflow Variables and Tags",[],{"id":53,"name":54,"techniques":55},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":57,"name":58,"techniques":59},"CAPEC-67","String Format Overflow in syslog()",[],{"id":61,"name":62,"techniques":63},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":65,"name":66,"techniques":67},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],{"id":69,"name":70,"techniques":71},"CAPEC-92","Forced Integer Overflow",[],[],[],[],[76,78,80,82,84],{"_key":77},"DEBIAN-CVE-2020-21427",{"_key":79},"UBUNTU-CVE-2020-21427",{"_key":81},"USN-6586-1",{"_key":83},"DLA-3662-1",{"_key":85},"DSA-5579-1",[],[],"2023-08-22T00:00:00.000Z","2025-05-05T12:50:14.075Z","Modified",{"cisa_kev":92,"cisa_ransomware":92,"cisa_vendor":9,"epss_severity":93,"epss_score":94,"severity":95,"severity_score":96,"severity_version":97,"severity_source":98,"severity_vector":99,"severity_status":90},false,"low",0.00847,"high",7.8,"v3.1","cve.org","CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",[101,107,112,116,121],{"url":102,"sources":103,"tags":105},"https://sourceforge.net/p/freeimage/bugs/298/",[98,104],"nvd",[106],"Third Party Advisory",{"url":108,"sources":109,"tags":110},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RUEK2JOVJBQZVNQIIZZO3JFMTVB4R5KS/",[98,104],[111],"Vendor Advisory",{"url":113,"sources":114,"tags":115},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UGOMCRAANNCQYJYPPMGRQWKRZGIP6NME/",[98,104],[111],{"url":117,"sources":118,"tags":119},"https://lists.debian.org/debian-lts-announce/2023/11/msg00020.html",[98,104],[120],"Mailing List",{"url":122,"sources":123,"tags":124},"https://www.debian.org/security/2023/dsa-5579",[98,104],[111],[],{"date":127,"score":94,"percentile":128},"2026-04-08",0.74833,[130,133,136,139,142,145,148,151,154,156,159,162,165,168,171,175,178,181,184,187,190,193,196,198,200,203,206,209,212,215,218,220,223,225,228,230,233,236,239,242,245,248,251,253,256,259,262,265,268,271,274,277,280,283,286,288,290,293,296,299,301,304,307,310,313,316,319,322,325,328,331,334,336,339,342,345,348,351,354,357,360,363,366,369,371,374,376,379,382,385],{"date":131,"score":94,"percentile":132},"2025-11-04",0.74114,{"date":134,"score":94,"percentile":135},"2025-11-05",0.74098,{"date":137,"score":94,"percentile":138},"2025-11-06",0.74097,{"date":140,"score":94,"percentile":141},"2025-11-07",0.74115,{"date":143,"score":94,"percentile":144},"2025-11-08",0.74112,{"date":146,"score":94,"percentile":147},"2025-11-09",0.74107,{"date":149,"score":94,"percentile":150},"2025-11-10",0.74092,{"date":152,"score":94,"percentile":153},"2025-11-11",0.74095,{"date":155,"score":94,"percentile":132},"2025-11-12",{"date":157,"score":94,"percentile":158},"2025-11-13",0.74121,{"date":160,"score":94,"percentile":161},"2025-11-14",0.74126,{"date":163,"score":94,"percentile":164},"2025-11-15",0.74124,{"date":166,"score":94,"percentile":167},"2025-11-16",0.7412,{"date":169,"score":94,"percentile":170},"2025-11-17",0.7411,{"date":172,"score":173,"percentile":174},"2025-11-18",0.00227,0.41692,{"date":176,"score":173,"percentile":177},"2025-11-19",0.41709,{"date":179,"score":173,"percentile":180},"2025-11-20",0.41718,{"date":182,"score":94,"percentile":183},"2025-11-21",0.74125,{"date":185,"score":94,"percentile":186},"2025-11-22",0.74119,{"date":188,"score":94,"percentile":189},"2025-11-23",0.74104,{"date":191,"score":94,"percentile":192},"2025-11-24",0.74101,{"date":194,"score":94,"percentile":195},"2025-11-25",0.74103,{"date":197,"score":94,"percentile":147},"2025-11-26",{"date":199,"score":94,"percentile":170},"2025-11-27",{"date":201,"score":94,"percentile":202},"2025-11-28",0.74099,{"date":204,"score":94,"percentile":205},"2025-11-29",0.74096,{"date":207,"score":94,"percentile":208},"2025-11-30",0.74091,{"date":210,"score":94,"percentile":211},"2025-12-01",0.74224,{"date":213,"score":94,"percentile":214},"2025-12-02",0.74231,{"date":216,"score":94,"percentile":217},"2025-12-03",0.7423,{"date":219,"score":94,"percentile":135},"2025-12-04",{"date":221,"score":94,"percentile":222},"2025-12-05",0.74108,{"date":224,"score":94,"percentile":170},"2025-12-06",{"date":226,"score":94,"percentile":227},"2025-12-07",0.74109,{"date":229,"score":94,"percentile":144},"2025-12-08",{"date":231,"score":94,"percentile":232},"2025-12-09",0.74142,{"date":234,"score":94,"percentile":235},"2025-12-10",0.74174,{"date":237,"score":94,"percentile":238},"2025-12-11",0.74189,{"date":240,"score":94,"percentile":241},"2025-12-12",0.74212,{"date":243,"score":94,"percentile":244},"2025-12-13",0.74217,{"date":246,"score":94,"percentile":247},"2025-12-14",0.74216,{"date":249,"score":94,"percentile":250},"2025-12-15",0.7422,{"date":252,"score":94,"percentile":214},"2025-12-16",{"date":254,"score":94,"percentile":255},"2025-12-17",0.74242,{"date":257,"score":94,"percentile":258},"2025-12-18",0.74262,{"date":260,"score":94,"percentile":261},"2025-12-19",0.74279,{"date":263,"score":94,"percentile":264},"2025-12-20",0.74277,{"date":266,"score":94,"percentile":267},"2025-12-21",0.74269,{"date":269,"score":94,"percentile":270},"2025-12-22",0.7427,{"date":272,"score":94,"percentile":273},"2025-12-23",0.74261,{"date":275,"score":94,"percentile":276},"2025-12-24",0.74273,{"date":278,"score":94,"percentile":279},"2025-12-25",0.743,{"date":281,"score":94,"percentile":282},"2025-12-26",0.74295,{"date":284,"score":94,"percentile":285},"2025-12-27",0.74341,{"date":287,"score":94,"percentile":276},"2025-12-28",{"date":289,"score":94,"percentile":267},"2025-12-29",{"date":291,"score":94,"percentile":292},"2025-12-30",0.74286,{"date":294,"score":94,"percentile":295},"2025-12-31",0.74312,{"date":297,"score":94,"percentile":298},"2026-01-01",0.74455,{"date":300,"score":94,"percentile":298},"2026-01-02",{"date":302,"score":94,"percentile":303},"2026-01-03",0.74457,{"date":305,"score":94,"percentile":306},"2026-01-04",0.74323,{"date":308,"score":94,"percentile":309},"2026-01-05",0.74317,{"date":311,"score":94,"percentile":312},"2026-01-06",0.74333,{"date":314,"score":94,"percentile":315},"2026-01-07",0.7434,{"date":317,"score":94,"percentile":318},"2026-01-08",0.74353,{"date":320,"score":94,"percentile":321},"2026-01-09",0.74359,{"date":323,"score":94,"percentile":324},"2026-01-10",0.74355,{"date":326,"score":94,"percentile":327},"2026-01-11",0.74343,{"date":329,"score":94,"percentile":330},"2026-01-12",0.74332,{"date":332,"score":94,"percentile":333},"2026-01-13",0.74331,{"date":335,"score":94,"percentile":324},"2026-01-14",{"date":337,"score":94,"percentile":338},"2026-01-15",0.74363,{"date":340,"score":94,"percentile":341},"2026-01-16",0.74379,{"date":343,"score":94,"percentile":344},"2026-01-17",0.74376,{"date":346,"score":94,"percentile":347},"2026-01-18",0.74352,{"date":349,"score":94,"percentile":350},"2026-01-19",0.74342,{"date":352,"score":94,"percentile":353},"2026-01-20",0.74348,{"date":355,"score":94,"percentile":356},"2026-01-21",0.74351,{"date":358,"score":94,"percentile":359},"2026-01-22",0.74357,{"date":361,"score":94,"percentile":362},"2026-01-23",0.74386,{"date":364,"score":94,"percentile":365},"2026-01-24",0.74394,{"date":367,"score":94,"percentile":368},"2026-01-25",0.74378,{"date":370,"score":94,"percentile":344},"2026-01-26",{"date":372,"score":94,"percentile":373},"2026-01-27",0.74385,{"date":375,"score":94,"percentile":365},"2026-01-28",{"date":377,"score":94,"percentile":378},"2026-01-29",0.74392,{"date":380,"score":94,"percentile":381},"2026-01-30",0.74395,{"date":383,"score":94,"percentile":384},"2026-01-31",0.74399,{"date":386,"score":94,"percentile":387},"2026-02-01",0.74521,[389,394],{"source":98,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":390,"cvss_v4_0":9},{"baseScore":96,"baseSeverity":391,"vectorString":99,"impactScore":392,"exploitabilityScore":393},"HIGH",9.8,4.6,{"source":104,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":395,"cvss_v4_0":9},{"baseScore":96,"baseSeverity":391,"vectorString":99,"impactScore":392,"exploitabilityScore":393},[397],{"ecosystem":9,"name":398,"vendor":399,"product":398,"cpe_part":400,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":401},"freeimage","freeimage_project","a",[402],{"version":403,"is_range":92,"range_type":404,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.18.0","cpe"]