[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2020-8165":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":24,"aliases":34,"duplicate_of":9,"upstream":35,"downstream":36,"duplicates":71,"related":72,"reserved_at":9,"published_at":84,"modified_at":85,"state":86,"summary":87,"references_raw":94,"kevs":141,"epss":142,"epss_history":145,"metrics":353,"affected":362},"CVE-2020-8165","A deserialization of untrusted data vulnernerability exists in rails \u003C 5.2.4.3, rails \u003C 6.0.3.1 that can allow an attacker to unmarshal user-provided objects in MemCacheStore and RedisCacheStore potentially resulting in an RCE.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-502","Deserialization of Untrusted Data","The product deserializes untrusted data without sufficiently ensuring that the resulting data will be valid.","weakness","Draft","Base","Medium",[20],{"id":21,"name":22,"techniques":23},"CAPEC-586","Object Injection",[],[25],{"_key":26,"name":27,"source":28,"url":29,"maturity":30,"reliability_score":31,"verified":32,"type":9,"platforms":33,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_856F2F73F888FF75","Exploit Reference (hackerone.com)","reference","https://hackerone.com/reports/413388","unknown",0.2,false,[],[],[],[37,39,41,43,45,47,49,51,53,55,57,59,61,63,65,67,69],{"_key":38},"UBUNTU-CVE-2020-8165",{"_key":40},"SUSE-SU-2020:2899-1",{"_key":42},"SUSE-SU-2020:2929-1",{"_key":44},"SUSE-SU-2020:3036-1",{"_key":46},"SUSE-SU-2020:3147-1",{"_key":48},"SUSE-SU-2020:3160-1",{"_key":50},"OPENSUSE-SU-2020:1677-1",{"_key":52},"OPENSUSE-SU-2020:1679-1",{"_key":54},"OPENSUSE-SU-2020:1993-1",{"_key":56},"OPENSUSE-SU-2020:2000-1",{"_key":58},"OPENSUSE-SU-2024:10589-1",{"_key":60},"OPENSUSE-SU-2024:11828-1",{"_key":62},"DLA-2251-1",{"_key":64},"DLA-2282-1",{"_key":66},"DSA-4766-1",{"_key":68},"DEBIAN-CVE-2020-8165",{"_key":70},"RHSA-2021:1313",[],[73,74,75,76,77,78,79,80,81,82,83],{"_key":40},{"_key":42},{"_key":44},{"_key":46},{"_key":48},{"_key":50},{"_key":52},{"_key":54},{"_key":56},{"_key":58},{"_key":60},"2020-06-19T17:05:30.000Z","2025-05-09T20:03:28.191Z","Modified",{"cisa_kev":32,"cisa_ransomware":32,"cisa_vendor":9,"epss_severity":88,"epss_score":89,"severity":88,"severity_score":90,"severity_version":91,"severity_source":92,"severity_vector":93,"severity_status":86},"critical",0.90128,9.8,"v3.1","nvd","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",[95,103,108,113,119,123,128,133,137],{"url":29,"sources":96,"tags":98},[97,92],"cve.org",[99,100,101,102],"X Refsource MISC","Exploit","Patch","Third Party Advisory",{"url":104,"sources":105,"tags":106},"https://groups.google.com/g/rubyonrails-security/c/bv6fW4S0Y1c",[97,92],[99,107,101,102],"Mailing List",{"url":109,"sources":110,"tags":111},"https://lists.debian.org/debian-lts-announce/2020/06/msg00022.html",[97,92],[107,112,102],"X Refsource MLIST",{"url":114,"sources":115,"tags":116},"https://weblog.rubyonrails.org/2020/5/18/Rails-5-2-4-3-and-6-0-3-1-have-been-released/",[97,92],[117,118],"X Refsource CONFIRM","Vendor Advisory",{"url":120,"sources":121,"tags":122},"https://lists.debian.org/debian-lts-announce/2020/07/msg00013.html",[97,92],[107,112,102],{"url":124,"sources":125,"tags":126},"https://www.debian.org/security/2020/dsa-4766",[97,92],[118,127,102],"X Refsource DEBIAN",{"url":129,"sources":130,"tags":131},"http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00031.html",[97,92],[118,132,107,102],"X Refsource SUSE",{"url":134,"sources":135,"tags":136},"http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00034.html",[97,92],[118,132,107,102],{"url":138,"sources":139,"tags":140},"https://security.netapp.com/advisory/ntap-20250509-0002/",[97,92],[],[],{"date":143,"score":89,"percentile":144},"2026-06-04",0.99605,[146,149,152,154,156,159,161,163,165,167,169,172,174,176,178,182,184,186,189,191,193,196,198,200,202,204,206,208,212,214,217,219,221,223,225,227,229,231,233,235,237,239,241,244,247,250,252,254,256,258,260,263,265,267,270,272,274,277,279,282,285,287,289,291,293,295,297,299,301,303,305,308,311,313,316,319,321,323,325,327,329,331,334,337,340,342,344,346,348,350],{"date":147,"score":89,"percentile":148},"2025-11-04",0.99558,{"date":150,"score":89,"percentile":151},"2025-11-05",0.99557,{"date":153,"score":89,"percentile":151},"2025-11-06",{"date":155,"score":89,"percentile":148},"2025-11-07",{"date":157,"score":89,"percentile":158},"2025-11-08",0.99556,{"date":160,"score":89,"percentile":158},"2025-11-09",{"date":162,"score":89,"percentile":158},"2025-11-10",{"date":164,"score":89,"percentile":158},"2025-11-11",{"date":166,"score":89,"percentile":151},"2025-11-12",{"date":168,"score":89,"percentile":158},"2025-11-13",{"date":170,"score":89,"percentile":171},"2025-11-14",0.99555,{"date":173,"score":89,"percentile":171},"2025-11-15",{"date":175,"score":89,"percentile":158},"2025-11-16",{"date":177,"score":89,"percentile":158},"2025-11-17",{"date":179,"score":180,"percentile":181},"2025-11-18",0.90958,0.99712,{"date":183,"score":180,"percentile":181},"2025-11-19",{"date":185,"score":180,"percentile":181},"2025-11-20",{"date":187,"score":89,"percentile":188},"2025-11-21",0.99554,{"date":190,"score":89,"percentile":188},"2025-11-22",{"date":192,"score":89,"percentile":188},"2025-11-23",{"date":194,"score":89,"percentile":195},"2025-11-24",0.99553,{"date":197,"score":89,"percentile":195},"2025-11-25",{"date":199,"score":89,"percentile":188},"2025-11-26",{"date":201,"score":89,"percentile":188},"2025-11-27",{"date":203,"score":89,"percentile":171},"2025-11-28",{"date":205,"score":89,"percentile":188},"2025-11-29",{"date":207,"score":89,"percentile":188},"2025-11-30",{"date":209,"score":210,"percentile":211},"2025-12-01",0.8306,0.99224,{"date":213,"score":210,"percentile":211},"2025-12-02",{"date":215,"score":210,"percentile":216},"2025-12-03",0.99225,{"date":218,"score":89,"percentile":158},"2025-12-04",{"date":220,"score":89,"percentile":151},"2025-12-05",{"date":222,"score":89,"percentile":151},"2025-12-06",{"date":224,"score":89,"percentile":151},"2025-12-07",{"date":226,"score":89,"percentile":148},"2025-12-08",{"date":228,"score":89,"percentile":148},"2025-12-09",{"date":230,"score":89,"percentile":148},"2025-12-10",{"date":232,"score":89,"percentile":148},"2025-12-11",{"date":234,"score":89,"percentile":148},"2025-12-12",{"date":236,"score":89,"percentile":148},"2025-12-13",{"date":238,"score":89,"percentile":148},"2025-12-14",{"date":240,"score":89,"percentile":148},"2025-12-15",{"date":242,"score":89,"percentile":243},"2025-12-16",0.99559,{"date":245,"score":89,"percentile":246},"2025-12-17",0.9956,{"date":248,"score":89,"percentile":249},"2025-12-18",0.99561,{"date":251,"score":89,"percentile":249},"2025-12-19",{"date":253,"score":89,"percentile":246},"2025-12-20",{"date":255,"score":89,"percentile":246},"2025-12-21",{"date":257,"score":89,"percentile":249},"2025-12-22",{"date":259,"score":89,"percentile":249},"2025-12-23",{"date":261,"score":89,"percentile":262},"2025-12-24",0.99562,{"date":264,"score":89,"percentile":262},"2025-12-25",{"date":266,"score":89,"percentile":262},"2025-12-26",{"date":268,"score":89,"percentile":269},"2025-12-27",0.99564,{"date":271,"score":89,"percentile":262},"2025-12-28",{"date":273,"score":89,"percentile":262},"2025-12-29",{"date":275,"score":89,"percentile":276},"2025-12-30",0.99563,{"date":278,"score":89,"percentile":276},"2025-12-31",{"date":280,"score":210,"percentile":281},"2026-01-01",0.99238,{"date":283,"score":210,"percentile":284},"2026-01-02",0.99237,{"date":286,"score":210,"percentile":284},"2026-01-03",{"date":288,"score":89,"percentile":269},"2026-01-04",{"date":290,"score":89,"percentile":269},"2026-01-05",{"date":292,"score":89,"percentile":269},"2026-01-06",{"date":294,"score":89,"percentile":269},"2026-01-07",{"date":296,"score":89,"percentile":276},"2026-01-08",{"date":298,"score":89,"percentile":269},"2026-01-09",{"date":300,"score":89,"percentile":269},"2026-01-10",{"date":302,"score":89,"percentile":269},"2026-01-11",{"date":304,"score":89,"percentile":269},"2026-01-12",{"date":306,"score":89,"percentile":307},"2026-01-13",0.99565,{"date":309,"score":89,"percentile":310},"2026-01-14",0.99566,{"date":312,"score":89,"percentile":310},"2026-01-15",{"date":314,"score":89,"percentile":315},"2026-01-16",0.99567,{"date":317,"score":89,"percentile":318},"2026-01-17",0.99568,{"date":320,"score":89,"percentile":318},"2026-01-18",{"date":322,"score":89,"percentile":318},"2026-01-19",{"date":324,"score":89,"percentile":318},"2026-01-20",{"date":326,"score":89,"percentile":315},"2026-01-21",{"date":328,"score":89,"percentile":315},"2026-01-22",{"date":330,"score":89,"percentile":318},"2026-01-23",{"date":332,"score":89,"percentile":333},"2026-01-24",0.99569,{"date":335,"score":89,"percentile":336},"2026-01-25",0.99571,{"date":338,"score":89,"percentile":339},"2026-01-26",0.9957,{"date":341,"score":89,"percentile":339},"2026-01-27",{"date":343,"score":89,"percentile":339},"2026-01-28",{"date":345,"score":89,"percentile":339},"2026-01-29",{"date":347,"score":89,"percentile":339},"2026-01-30",{"date":349,"score":89,"percentile":336},"2026-01-31",{"date":351,"score":210,"percentile":352},"2026-02-01",0.99243,[354],{"source":92,"cvss_v2_0":355,"cvss_v3_0":9,"cvss_v3_1":360,"cvss_v4_0":9},{"baseScore":356,"baseSeverity":9,"vectorString":357,"impactScore":358,"exploitabilityScore":359},7.5,"AV:N/AC:L/Au:N/C:P/I:P/A:P",6.4,10,{"baseScore":90,"baseSeverity":361,"vectorString":93,"impactScore":90,"exploitabilityScore":359},"CRITICAL",[363,376,384],{"ecosystem":9,"name":364,"vendor":365,"product":366,"cpe_part":367,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":368},"debian linux","debian","debian_linux","o",[369,372,374],{"version":370,"is_range":32,"range_type":371,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0","cpe",{"version":373,"is_range":32,"range_type":371,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0",{"version":375,"is_range":32,"range_type":371,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.0",{"ecosystem":9,"name":377,"vendor":378,"product":377,"cpe_part":367,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":379},"leap","opensuse",[380,382],{"version":381,"is_range":32,"range_type":371,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"15.1",{"version":383,"is_range":32,"range_type":371,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"15.2",{"ecosystem":9,"name":385,"vendor":386,"product":385,"cpe_part":387,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":388},"rails","rubyonrails","a",[389,394],{"version":390,"is_range":391,"range_type":371,"version_start":9,"version_start_type":9,"version_end":392,"version_end_type":393,"fixed_in":9},"lt5.2.4.3",true,"5.2.4.3","excluding",{"version":395,"is_range":391,"range_type":371,"version_start":396,"version_start_type":397,"version_end":398,"version_end_type":393,"fixed_in":9},"gte6.0.0_lt6.0.3.1","6.0.0","including","6.0.3.1"]