[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2020-28368":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":229,"aliases":230,"duplicate_of":9,"upstream":231,"downstream":232,"duplicates":283,"related":284,"reserved_at":9,"published_at":306,"modified_at":307,"state":308,"summary":309,"references_raw":318,"kevs":361,"epss":362,"epss_history":365,"metrics":628,"affected":638},"CVE-2020-28368","Xen through 4.14.x allows guest OS administrators to obtain sensitive information (such as AES keys from outside the guest) via a side-channel attack on a power/energy monitoring interface, aka a \"Platypus\" attack. NOTE: there is only one logically independent fix: to change the access control for each such interface in Xen.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-862","Missing Authorization","The product does not perform an authorization check when an actor attempts to access a resource or perform an action.","weakness","Incomplete","Class","High",[20],{"id":21,"name":22,"techniques":23},"CAPEC-665","Exploitation of Thunderbolt Protection Flaws",[24,61,101],{"id":25,"name":26,"tactics":27,"countermeasures":34},"T1211","Exploitation for Stealth",[28,31],{"id":29,"name":30},"TA0030","Defense Evasion",{"id":32,"name":33},"TA0005","Stealth",[35,40,44,48,53,57],{"id":36,"name":37,"tactic":38},"D3-MBT","Memory Boundary Tracking",{"name":39},"Detect",{"id":41,"name":42,"tactic":43},"D3-PCSV","Process Code Segment Verification",{"name":39},{"id":45,"name":46,"tactic":47},"D3-SSC","Shadow Stack Comparisons",{"name":39},{"id":49,"name":50,"tactic":51},"D3-PSEP","Process Segment Execution Prevention",{"name":52},"Harden",{"id":54,"name":55,"tactic":56},"D3-SAOR","Segment Address Offset Randomization",{"name":52},{"id":58,"name":59,"tactic":60},"D3-SFCV","Stack Frame Canary Validation",{"name":52},{"id":62,"name":63,"tactics":64,"countermeasures":70},"T1542.002","Component Firmware",[65,66,67],{"id":29,"name":30},{"id":32,"name":33},{"id":68,"name":69},"TA0110","Persistence",[71,76,80,84,88,92,96],{"id":72,"name":73,"tactic":74},"D3-SWI","Software Inventory",{"name":75},"Model",{"id":77,"name":78,"tactic":79},"D3-AVE","Asset Vulnerability Enumeration",{"name":75},{"id":81,"name":82,"tactic":83},"D3-FEMC","Firmware Embedded Monitoring Code",{"name":39},{"id":85,"name":86,"tactic":87},"D3-FV","Firmware Verification",{"name":39},{"id":89,"name":90,"tactic":91},"D3-FBA","Firmware Behavior Analysis",{"name":39},{"id":93,"name":94,"tactic":95},"D3-SU","Software Update",{"name":52},{"id":97,"name":98,"tactic":99},"D3-RS","Restore Software",{"name":100},"Restore",{"id":102,"name":103,"tactics":104,"countermeasures":113},"T1556","Modify Authentication Process",[105,106,109,110],{"id":29,"name":30},{"id":107,"name":108},"TA0112","Defense Impairment",{"id":68,"name":69},{"id":111,"name":112},"TA0031","Credential Access",[114,118,122,126,130,134,138,142,146,150,155,159,163,167,171,176,180,184,188,193,197,201,205,209,213,217,221,225],{"id":115,"name":116,"tactic":117},"D3-CI","Configuration Inventory",{"name":75},{"id":119,"name":120,"tactic":121},"D3-NTPM","Network Traffic Policy Mapping",{"name":75},{"id":123,"name":124,"tactic":125},"D3-AM","Access Modeling",{"name":75},{"id":127,"name":128,"tactic":129},"D3-FA","File Analysis",{"name":39},{"id":131,"name":132,"tactic":133},"D3-FIM","File Integrity Monitoring",{"name":39},{"id":135,"name":136,"tactic":137},"D3-PLA","Process Lineage Analysis",{"name":39},{"id":139,"name":140,"tactic":141},"D3-PSMD","Process Self-Modification Detection",{"name":39},{"id":143,"name":144,"tactic":145},"D3-PSA","Process Spawn Analysis",{"name":39},{"id":147,"name":148,"tactic":149},"D3-SFA","System File Analysis",{"name":39},{"id":151,"name":152,"tactic":153},"D3-FEV","File Eviction",{"name":154},"Evict",{"id":156,"name":157,"tactic":158},"D3-PT","Process Termination",{"name":154},{"id":160,"name":161,"tactic":162},"D3-PS","Process Suspension",{"name":154},{"id":164,"name":165,"tactic":166},"D3-HR","Host Reboot",{"name":154},{"id":168,"name":169,"tactic":170},"D3-HS","Host Shutdown",{"name":154},{"id":172,"name":173,"tactic":174},"D3-DF","Decoy File",{"name":175},"Deceive",{"id":177,"name":178,"tactic":179},"D3-FE","File Encryption",{"name":52},{"id":181,"name":182,"tactic":183},"D3-RF","Restore File",{"name":100},{"id":185,"name":186,"tactic":187},"D3-RC","Restore Configuration",{"name":100},{"id":189,"name":190,"tactic":191},"D3-CF","Content Filtering",{"name":192},"Isolate",{"id":194,"name":195,"tactic":196},"D3-LFP","Local File Permissions",{"name":192},{"id":198,"name":199,"tactic":200},"D3-RFAM","Remote File Access Mediation",{"name":192},{"id":202,"name":203,"tactic":204},"D3-CQ","Content Quarantine",{"name":192},{"id":206,"name":207,"tactic":208},"D3-CM","Content Modification",{"name":192},{"id":210,"name":211,"tactic":212},"D3-KBPI","Kernel-based Process Isolation",{"name":192},{"id":214,"name":215,"tactic":216},"D3-SCF","System Call Filtering",{"name":192},{"id":218,"name":219,"tactic":220},"D3-HBPI","Hardware-based Process Isolation",{"name":192},{"id":222,"name":223,"tactic":224},"D3-ABPI","Application-based Process Isolation",{"name":192},{"id":226,"name":227,"tactic":228},"D3-WSAM","Web Session Access Mediation",{"name":192},[],[],[],[233,235,237,239,241,243,245,247,249,251,253,255,257,259,261,263,265,267,269,271,273,275,277,279,281],{"_key":234},"ALPINE-CVE-2020-28368",{"_key":236},"OPENSUSE-SU-2024:11520-1",{"_key":238},"SUSE-SU-2020:14557-1",{"_key":240},"SUSE-SU-2020:3412-1",{"_key":242},"SUSE-SU-2020:3413-1",{"_key":244},"SUSE-SU-2020:3414-1",{"_key":246},"SUSE-SU-2020:3415-1",{"_key":248},"SUSE-SU-2020:3416-1",{"_key":250},"SUSE-SU-2020:3611-1",{"_key":252},"SUSE-SU-2020:3612-1",{"_key":254},"SUSE-SU-2020:3615-1",{"_key":256},"SUSE-SU-2020:3627-1",{"_key":258},"SUSE-SU-2020:3631-1",{"_key":260},"SUSE-SU-2020:3653-1",{"_key":262},"SUSE-SU-2020:3713-1",{"_key":264},"SUSE-SU-2020:3742-1",{"_key":266},"SUSE-SU-2021:1023-1",{"_key":268},"SUSE-SU-2021:1460-1",{"_key":270},"OPENSUSE-SU-2020:2017-1",{"_key":272},"OPENSUSE-SU-2020:2030-1",{"_key":274},"OPENSUSE-SU-2020:2162-1",{"_key":276},"OPENSUSE-SU-2020:2192-1",{"_key":278},"DSA-4804-1",{"_key":280},"UBUNTU-CVE-2020-28368",{"_key":282},"DEBIAN-CVE-2020-28368",[],[285,286,287,288,289,290,291,292,293,294,295,296,297,298,299,300,301,302,303,304,305],{"_key":236},{"_key":238},{"_key":240},{"_key":242},{"_key":244},{"_key":246},{"_key":248},{"_key":250},{"_key":252},{"_key":254},{"_key":256},{"_key":258},{"_key":260},{"_key":262},{"_key":264},{"_key":266},{"_key":268},{"_key":270},{"_key":272},{"_key":274},{"_key":276},"2020-11-10T18:17:29.000Z","2024-08-04T16:33:59.028Z","Modified",{"cisa_kev":310,"cisa_ransomware":310,"cisa_vendor":9,"epss_severity":311,"epss_score":312,"severity":313,"severity_score":314,"severity_version":315,"severity_source":316,"severity_vector":317,"severity_status":308},false,"low",0.00067,"medium",4.4,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",[319,327,332,336,341,346,352,356],{"url":320,"sources":321,"tags":323},"https://xenbits.xen.org/xsa/advisory-351.html",[322,316],"cve.org",[324,325,326],"X Refsource MISC","Patch","Vendor Advisory",{"url":328,"sources":329,"tags":330},"https://platypusattack.com",[322,316],[324,331],"Third Party Advisory",{"url":333,"sources":334,"tags":335},"https://www.zdnet.com/article/new-platypus-attack-can-steal-data-from-intel-cpus/",[322,316],[324,331],{"url":337,"sources":338,"tags":339},"http://xenbits.xen.org/xsa/advisory-351.html",[322,316],[340,326],"X Refsource CONFIRM",{"url":342,"sources":343,"tags":344},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XV23EZIMNLJN4YXRRXLQV2ALW6ZEALXV/",[322,316],[326,345],"X Refsource FEDORA",{"url":347,"sources":348,"tags":349},"http://www.openwall.com/lists/oss-security/2020/11/26/1",[322,316],[350,351,331],"Mailing List","X Refsource MLIST",{"url":353,"sources":354,"tags":355},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5J66QUUHXH2RR4CNCKQRGVXVSOUFRPDA/",[322,316],[326,345],{"url":357,"sources":358,"tags":359},"https://www.debian.org/security/2020/dsa-4804",[322,316],[326,360,350,331],"X Refsource DEBIAN",[],{"date":363,"score":312,"percentile":364},"2026-06-03",0.20753,[366,369,371,374,377,380,383,386,389,392,395,398,401,404,407,411,414,417,420,423,426,429,432,435,438,441,444,447,450,453,456,459,462,464,467,470,473,476,479,482,484,487,490,493,496,499,502,505,508,511,514,517,520,523,526,529,532,535,538,541,543,546,549,552,555,557,560,563,566,569,572,575,577,579,582,585,588,591,594,597,600,603,606,609,612,615,617,619,622,625],{"date":367,"score":312,"percentile":368},"2025-11-04",0.20798,{"date":370,"score":312,"percentile":368},"2025-11-05",{"date":372,"score":312,"percentile":373},"2025-11-06",0.20799,{"date":375,"score":312,"percentile":376},"2025-11-07",0.20805,{"date":378,"score":312,"percentile":379},"2025-11-08",0.2081,{"date":381,"score":312,"percentile":382},"2025-11-09",0.20776,{"date":384,"score":312,"percentile":385},"2025-11-10",0.2072,{"date":387,"score":312,"percentile":388},"2025-11-11",0.20741,{"date":390,"score":312,"percentile":391},"2025-11-12",0.2079,{"date":393,"score":312,"percentile":394},"2025-11-13",0.20804,{"date":396,"score":312,"percentile":397},"2025-11-14",0.20794,{"date":399,"score":312,"percentile":400},"2025-11-15",0.20766,{"date":402,"score":312,"percentile":403},"2025-11-16",0.20723,{"date":405,"score":312,"percentile":406},"2025-11-17",0.20689,{"date":408,"score":409,"percentile":410},"2025-11-18",0.00074,0.18593,{"date":412,"score":409,"percentile":413},"2025-11-19",0.1861,{"date":415,"score":409,"percentile":416},"2025-11-20",0.1859,{"date":418,"score":312,"percentile":419},"2025-11-21",0.20654,{"date":421,"score":312,"percentile":422},"2025-11-22",0.2065,{"date":424,"score":312,"percentile":425},"2025-11-23",0.20616,{"date":427,"score":312,"percentile":428},"2025-11-24",0.20588,{"date":430,"score":312,"percentile":431},"2025-11-25",0.20576,{"date":433,"score":312,"percentile":434},"2025-11-26",0.20565,{"date":436,"score":312,"percentile":437},"2025-11-27",0.20523,{"date":439,"score":312,"percentile":440},"2025-11-28",0.20507,{"date":442,"score":312,"percentile":443},"2025-11-29",0.20494,{"date":445,"score":312,"percentile":446},"2025-11-30",0.20492,{"date":448,"score":312,"percentile":449},"2025-12-01",0.20533,{"date":451,"score":312,"percentile":452},"2025-12-02",0.20552,{"date":454,"score":312,"percentile":455},"2025-12-03",0.20567,{"date":457,"score":312,"percentile":458},"2025-12-04",0.20524,{"date":460,"score":312,"percentile":461},"2025-12-05",0.20571,{"date":463,"score":312,"percentile":431},"2025-12-06",{"date":465,"score":312,"percentile":466},"2025-12-07",0.20559,{"date":468,"score":312,"percentile":469},"2025-12-08",0.20578,{"date":471,"score":312,"percentile":472},"2025-12-09",0.20639,{"date":474,"score":312,"percentile":475},"2025-12-10",0.20711,{"date":477,"score":312,"percentile":478},"2025-12-11",0.20748,{"date":480,"score":312,"percentile":481},"2025-12-12",0.20763,{"date":483,"score":312,"percentile":400},"2025-12-13",{"date":485,"score":312,"percentile":486},"2025-12-14",0.20731,{"date":488,"score":312,"percentile":489},"2025-12-15",0.20709,{"date":491,"score":312,"percentile":492},"2025-12-16",0.20737,{"date":494,"score":312,"percentile":495},"2025-12-17",0.20814,{"date":497,"score":312,"percentile":498},"2025-12-18",0.20901,{"date":500,"score":312,"percentile":501},"2025-12-19",0.20918,{"date":503,"score":312,"percentile":504},"2025-12-20",0.20904,{"date":506,"score":312,"percentile":507},"2025-12-21",0.2085,{"date":509,"score":312,"percentile":510},"2025-12-22",0.20818,{"date":512,"score":312,"percentile":513},"2025-12-23",0.20816,{"date":515,"score":312,"percentile":516},"2025-12-24",0.20842,{"date":518,"score":312,"percentile":519},"2025-12-25",0.20926,{"date":521,"score":312,"percentile":522},"2025-12-26",0.20923,{"date":524,"score":312,"percentile":525},"2025-12-27",0.20929,{"date":527,"score":312,"percentile":528},"2025-12-28",0.20885,{"date":530,"score":312,"percentile":531},"2025-12-29",0.20851,{"date":533,"score":312,"percentile":534},"2025-12-30",0.20832,{"date":536,"score":312,"percentile":537},"2025-12-31",0.20894,{"date":539,"score":312,"percentile":540},"2026-01-01",0.20985,{"date":542,"score":312,"percentile":540},"2026-01-02",{"date":544,"score":312,"percentile":545},"2026-01-03",0.20972,{"date":547,"score":312,"percentile":548},"2026-01-04",0.2088,{"date":550,"score":312,"percentile":551},"2026-01-05",0.20872,{"date":553,"score":312,"percentile":554},"2026-01-06",0.20882,{"date":556,"score":312,"percentile":501},"2026-01-07",{"date":558,"score":312,"percentile":559},"2026-01-08",0.20966,{"date":561,"score":312,"percentile":562},"2026-01-09",0.20962,{"date":564,"score":312,"percentile":565},"2026-01-10",0.20944,{"date":567,"score":312,"percentile":568},"2026-01-11",0.20914,{"date":570,"score":312,"percentile":571},"2026-01-12",0.20877,{"date":573,"score":312,"percentile":574},"2026-01-13",0.20855,{"date":576,"score":312,"percentile":568},"2026-01-14",{"date":578,"score":312,"percentile":501},"2026-01-15",{"date":580,"score":312,"percentile":581},"2026-01-16",0.20946,{"date":583,"score":312,"percentile":584},"2026-01-17",0.20952,{"date":586,"score":312,"percentile":587},"2026-01-18",0.20903,{"date":589,"score":312,"percentile":590},"2026-01-19",0.20858,{"date":592,"score":312,"percentile":593},"2026-01-20",0.20837,{"date":595,"score":312,"percentile":596},"2026-01-21",0.20795,{"date":598,"score":312,"percentile":599},"2026-01-22",0.20771,{"date":601,"score":312,"percentile":602},"2026-01-23",0.20865,{"date":604,"score":312,"percentile":605},"2026-01-24",0.20884,{"date":607,"score":312,"percentile":608},"2026-01-25",0.20807,{"date":610,"score":312,"percentile":611},"2026-01-26",0.20701,{"date":613,"score":312,"percentile":614},"2026-01-27",0.20691,{"date":616,"score":312,"percentile":406},"2026-01-28",{"date":618,"score":312,"percentile":422},"2026-01-29",{"date":620,"score":312,"percentile":621},"2026-01-30",0.20652,{"date":623,"score":312,"percentile":624},"2026-01-31",0.20657,{"date":626,"score":312,"percentile":627},"2026-02-01",0.20683,[629],{"source":316,"cvss_v2_0":630,"cvss_v3_0":9,"cvss_v3_1":635,"cvss_v4_0":9},{"baseScore":631,"baseSeverity":9,"vectorString":632,"impactScore":633,"exploitabilityScore":634},2.1,"AV:L/AC:L/Au:N/C:P/I:N/A:N",2.9,3.9,{"baseScore":314,"baseSeverity":636,"vectorString":317,"impactScore":637,"exploitabilityScore":631},"MEDIUM",6,[639,648,654],{"ecosystem":9,"name":640,"vendor":641,"product":642,"cpe_part":643,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":644},"debian linux","debian","debian_linux","o",[645],{"version":646,"is_range":310,"range_type":647,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.0","cpe",{"ecosystem":9,"name":649,"vendor":650,"product":649,"cpe_part":643,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":651},"fedora","fedoraproject",[652],{"version":653,"is_range":310,"range_type":647,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"32",{"ecosystem":9,"name":655,"vendor":655,"product":655,"cpe_part":643,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":656},"xen",[657],{"version":658,"is_range":659,"range_type":647,"version_start":9,"version_start_type":9,"version_end":660,"version_end_type":661,"fixed_in":9},"lte4.14.0",true,"4.14.0","including"]