[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2020-27672":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":36,"aliases":37,"duplicate_of":9,"upstream":38,"downstream":39,"duplicates":82,"related":83,"reserved_at":9,"published_at":101,"modified_at":102,"state":103,"summary":104,"references_raw":112,"kevs":157,"epss":158,"epss_history":161,"metrics":420,"affected":431},"CVE-2020-27672","An issue was discovered in Xen through 4.14.x allowing x86 guest OS users to cause a host OS denial of service, achieve data corruption, or possibly gain privileges by exploiting a race condition that leads to a use-after-free involving 2MiB and 1GiB superpages.",null,[11,28],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-362","Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')","The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.","weakness","Draft","Class","Medium",[20,24],{"id":21,"name":22,"techniques":23},"CAPEC-26","Leveraging Race Conditions",[],{"id":25,"name":26,"techniques":27},"CAPEC-29","Leveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions",[],{"_key":29,"id":29,"name":30,"description":31,"type":15,"status":32,"abstraction":33,"likelihood_of_exploit":34,"capec":35},"CWE-416","Use After Free","The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory \"belongs\" to the code that operates on the new pointer.","Stable","Variant","High",[],[],[],[],[40,42,44,46,48,50,52,54,56,58,60,62,64,66,68,70,72,74,76,78,80],{"_key":41},"ALPINE-CVE-2020-27672",{"_key":43},"SUSE-SU-2020:3051-1",{"_key":45},"OPENSUSE-SU-2024:11520-1",{"_key":47},"SUSE-SU-2020:14557-1",{"_key":49},"SUSE-SU-2020:3049-1",{"_key":51},"SUSE-SU-2020:3050-1",{"_key":53},"SUSE-SU-2020:3052-1",{"_key":55},"SUSE-SU-2020:3088-1",{"_key":57},"SUSE-SU-2020:3611-1",{"_key":59},"SUSE-SU-2020:3615-1",{"_key":61},"SUSE-SU-2020:3627-1",{"_key":63},"SUSE-SU-2020:3631-1",{"_key":65},"SUSE-SU-2020:3653-1",{"_key":67},"SUSE-SU-2020:3742-1",{"_key":69},"OPENSUSE-SU-2020:1783-1",{"_key":71},"OPENSUSE-SU-2020:1844-1",{"_key":73},"OPENSUSE-SU-2020:2162-1",{"_key":75},"OPENSUSE-SU-2020:2192-1",{"_key":77},"DSA-4804-1",{"_key":79},"UBUNTU-CVE-2020-27672",{"_key":81},"DEBIAN-CVE-2020-27672",[],[84,85,86,87,88,89,90,91,92,93,94,95,96,97,98,99,100],{"_key":43},{"_key":45},{"_key":47},{"_key":49},{"_key":51},{"_key":53},{"_key":55},{"_key":57},{"_key":59},{"_key":61},{"_key":63},{"_key":65},{"_key":67},{"_key":69},{"_key":71},{"_key":73},{"_key":75},"2020-10-22T20:33:53.000Z","2024-08-04T16:18:45.678Z","Modified",{"cisa_kev":105,"cisa_ransomware":105,"cisa_vendor":9,"epss_severity":106,"epss_score":107,"severity":108,"severity_score":4,"severity_version":109,"severity_source":110,"severity_vector":111,"severity_status":103},false,"low",0.00039,"high","v3.1","nvd","CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",[113,121,126,133,137,142,147,152],{"url":114,"sources":115,"tags":117},"http://xenbits.xen.org/xsa/advisory-345.html",[116,110],"cve.org",[118,119,120],"X Refsource CONFIRM","Patch","Vendor Advisory",{"url":122,"sources":123,"tags":124},"https://xenbits.xen.org/xsa/advisory-345.html",[116,110],[125,119,120],"X Refsource MISC",{"url":127,"sources":128,"tags":129},"http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00075.html",[116,110],[120,130,131,132],"X Refsource SUSE","Mailing List","Third Party Advisory",{"url":134,"sources":135,"tags":136},"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00025.html",[116,110],[120,130,131,132],{"url":138,"sources":139,"tags":140},"https://security.gentoo.org/glsa/202011-06",[116,110],[120,141,132],"X Refsource GENTOO",{"url":143,"sources":144,"tags":145},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XIK57QJOVOPWH6RFRNMGOBCROBCKMDG2/",[116,110],[120,146],"X Refsource FEDORA",{"url":148,"sources":149,"tags":150},"https://www.debian.org/security/2020/dsa-4804",[116,110],[120,151,132],"X Refsource DEBIAN",{"url":153,"sources":154,"tags":155},"http://www.openwall.com/lists/oss-security/2021/01/19/7",[116,110],[131,156,132],"X Refsource MLIST",[],{"date":159,"score":107,"percentile":160},"2026-06-03",0.11927,[162,165,168,171,174,177,180,183,186,189,192,195,198,200,203,206,209,212,215,218,221,224,227,230,233,236,239,242,245,248,250,252,255,257,260,263,266,269,272,275,278,281,284,287,290,293,296,299,301,304,307,310,313,316,319,322,325,328,331,333,335,338,341,344,347,350,353,356,359,362,365,368,371,374,377,380,382,385,388,391,394,397,399,402,404,407,409,412,414,417],{"date":163,"score":107,"percentile":164},"2025-11-04",0.11228,{"date":166,"score":107,"percentile":167},"2025-11-05",0.11255,{"date":169,"score":107,"percentile":170},"2025-11-06",0.11374,{"date":172,"score":107,"percentile":173},"2025-11-07",0.11393,{"date":175,"score":107,"percentile":176},"2025-11-08",0.11408,{"date":178,"score":107,"percentile":179},"2025-11-09",0.11376,{"date":181,"score":107,"percentile":182},"2025-11-10",0.11325,{"date":184,"score":107,"percentile":185},"2025-11-11",0.11336,{"date":187,"score":107,"percentile":188},"2025-11-12",0.11362,{"date":190,"score":107,"percentile":191},"2025-11-13",0.11388,{"date":193,"score":107,"percentile":194},"2025-11-14",0.11403,{"date":196,"score":107,"percentile":197},"2025-11-15",0.11404,{"date":199,"score":107,"percentile":194},"2025-11-16",{"date":201,"score":107,"percentile":202},"2025-11-17",0.11382,{"date":204,"score":107,"percentile":205},"2025-11-18",0.0712,{"date":207,"score":107,"percentile":208},"2025-11-19",0.07131,{"date":210,"score":107,"percentile":211},"2025-11-20",0.07162,{"date":213,"score":107,"percentile":214},"2025-11-21",0.11421,{"date":216,"score":107,"percentile":217},"2025-11-22",0.11432,{"date":219,"score":107,"percentile":220},"2025-11-23",0.11402,{"date":222,"score":107,"percentile":223},"2025-11-24",0.11358,{"date":225,"score":107,"percentile":226},"2025-11-25",0.1136,{"date":228,"score":107,"percentile":229},"2025-11-26",0.11351,{"date":231,"score":107,"percentile":232},"2025-11-27",0.11356,{"date":234,"score":107,"percentile":235},"2025-11-28",0.11352,{"date":237,"score":107,"percentile":238},"2025-11-29",0.1131,{"date":240,"score":107,"percentile":241},"2025-11-30",0.11307,{"date":243,"score":107,"percentile":244},"2025-12-01",0.11343,{"date":246,"score":107,"percentile":247},"2025-12-02",0.11353,{"date":249,"score":107,"percentile":226},"2025-12-03",{"date":251,"score":107,"percentile":244},"2025-12-04",{"date":253,"score":107,"percentile":254},"2025-12-05",0.11375,{"date":256,"score":107,"percentile":202},"2025-12-06",{"date":258,"score":107,"percentile":259},"2025-12-07",0.11373,{"date":261,"score":107,"percentile":262},"2025-12-08",0.11378,{"date":264,"score":107,"percentile":265},"2025-12-09",0.11424,{"date":267,"score":107,"percentile":268},"2025-12-10",0.11487,{"date":270,"score":107,"percentile":271},"2025-12-11",0.11519,{"date":273,"score":107,"percentile":274},"2025-12-12",0.11548,{"date":276,"score":107,"percentile":277},"2025-12-13",0.11559,{"date":279,"score":107,"percentile":280},"2025-12-14",0.11551,{"date":282,"score":107,"percentile":283},"2025-12-15",0.11503,{"date":285,"score":107,"percentile":286},"2025-12-16",0.11496,{"date":288,"score":107,"percentile":289},"2025-12-17",0.1158,{"date":291,"score":107,"percentile":292},"2025-12-18",0.11626,{"date":294,"score":107,"percentile":295},"2025-12-19",0.11643,{"date":297,"score":107,"percentile":298},"2025-12-20",0.11644,{"date":300,"score":107,"percentile":292},"2025-12-21",{"date":302,"score":107,"percentile":303},"2025-12-22",0.11593,{"date":305,"score":107,"percentile":306},"2025-12-23",0.11592,{"date":308,"score":107,"percentile":309},"2025-12-24",0.11605,{"date":311,"score":107,"percentile":312},"2025-12-25",0.11673,{"date":314,"score":107,"percentile":315},"2025-12-26",0.11655,{"date":317,"score":107,"percentile":318},"2025-12-27",0.1167,{"date":320,"score":107,"percentile":321},"2025-12-28",0.11648,{"date":323,"score":107,"percentile":324},"2025-12-29",0.11598,{"date":326,"score":107,"percentile":327},"2025-12-30",0.11574,{"date":329,"score":107,"percentile":330},"2025-12-31",0.11616,{"date":332,"score":107,"percentile":315},"2026-01-01",{"date":334,"score":107,"percentile":295},"2026-01-02",{"date":336,"score":107,"percentile":337},"2026-01-03",0.11603,{"date":339,"score":107,"percentile":340},"2026-01-04",0.11531,{"date":342,"score":107,"percentile":343},"2026-01-05",0.11493,{"date":345,"score":107,"percentile":346},"2026-01-06",0.115,{"date":348,"score":107,"percentile":349},"2026-01-07",0.11536,{"date":351,"score":107,"percentile":352},"2026-01-08",0.11585,{"date":354,"score":107,"percentile":355},"2026-01-09",0.11612,{"date":357,"score":107,"percentile":358},"2026-01-10",0.11621,{"date":360,"score":107,"percentile":361},"2026-01-11",0.11594,{"date":363,"score":107,"percentile":364},"2026-01-12",0.11569,{"date":366,"score":107,"percentile":367},"2026-01-13",0.11542,{"date":369,"score":107,"percentile":370},"2026-01-14",0.11595,{"date":372,"score":107,"percentile":373},"2026-01-15",0.11597,{"date":375,"score":107,"percentile":376},"2026-01-16",0.11638,{"date":378,"score":107,"percentile":379},"2026-01-17",0.11645,{"date":381,"score":107,"percentile":303},"2026-01-18",{"date":383,"score":107,"percentile":384},"2026-01-19",0.11528,{"date":386,"score":107,"percentile":387},"2026-01-20",0.11509,{"date":389,"score":107,"percentile":390},"2026-01-21",0.1149,{"date":392,"score":107,"percentile":393},"2026-01-22",0.11475,{"date":395,"score":107,"percentile":396},"2026-01-23",0.11563,{"date":398,"score":107,"percentile":330},"2026-01-24",{"date":400,"score":107,"percentile":401},"2026-01-25",0.1157,{"date":403,"score":107,"percentile":387},"2026-01-26",{"date":405,"score":107,"percentile":406},"2026-01-27",0.11495,{"date":408,"score":107,"percentile":268},"2026-01-28",{"date":410,"score":107,"percentile":411},"2026-01-29",0.11466,{"date":413,"score":107,"percentile":406},"2026-01-30",{"date":415,"score":107,"percentile":416},"2026-01-31",0.1151,{"date":418,"score":107,"percentile":419},"2026-02-01",0.11516,[421],{"source":110,"cvss_v2_0":422,"cvss_v3_0":9,"cvss_v3_1":427,"cvss_v4_0":9},{"baseScore":423,"baseSeverity":9,"vectorString":424,"impactScore":425,"exploitabilityScore":426},6.9,"AV:L/AC:M/Au:N/C:C/I:C/A:C",10,3.4,{"baseScore":4,"baseSeverity":428,"vectorString":111,"impactScore":429,"exploitabilityScore":430},"HIGH",9.8,2.6,[432,441,447,455],{"ecosystem":9,"name":433,"vendor":434,"product":435,"cpe_part":436,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":437},"debian linux","debian","debian_linux","o",[438],{"version":439,"is_range":105,"range_type":440,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.0","cpe",{"ecosystem":9,"name":442,"vendor":443,"product":442,"cpe_part":436,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":444},"fedora","fedoraproject",[445],{"version":446,"is_range":105,"range_type":440,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"31",{"ecosystem":9,"name":448,"vendor":449,"product":448,"cpe_part":436,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":450},"leap","opensuse",[451,453],{"version":452,"is_range":105,"range_type":440,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"15.1",{"version":454,"is_range":105,"range_type":440,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"15.2",{"ecosystem":9,"name":456,"vendor":456,"product":456,"cpe_part":436,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":457},"xen",[458],{"version":459,"is_range":460,"range_type":440,"version_start":461,"version_start_type":462,"version_end":463,"version_end_type":462,"fixed_in":9},"gte3.2.0_lte4.14.0",true,"3.2.0","including","4.14.0"]