[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2020-9543":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":131,"aliases":141,"duplicate_of":9,"upstream":144,"downstream":145,"duplicates":164,"related":165,"reserved_at":9,"published_at":170,"modified_at":171,"state":172,"summary":173,"references_raw":181,"kevs":227,"epss":228,"epss_history":231,"metrics":491,"affected":507},"CVE-2020-9543","OpenStack Manila \u003C7.4.1, >=8.0.0 \u003C8.1.1, and >=9.0.0 \u003C9.1.1 allows attackers to view, update, delete, or share resources that do not belong to them, because of a context-free lookup of a UUID. Attackers may also create resources, such as shared file systems and groups of shares on such share networks.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-276","Incorrect Default Permissions","During installation, installed file permissions are set to allow anyone to modify those files.","weakness","Draft","Base","Medium",[20,68,127],{"id":21,"name":22,"techniques":23},"CAPEC-1","Accessing Functionality Not Properly Constrained by ACLs",[24],{"id":25,"name":26,"tactics":27,"countermeasures":43},"T1574.010","Services File Permissions Weakness",[28,31,34,37,40],{"id":29,"name":30},"TA0110","Persistence",{"id":32,"name":33},"TA0111","Privilege Escalation",{"id":35,"name":36},"TA0030","Defense Evasion",{"id":38,"name":39},"TA0005","Stealth",{"id":41,"name":42},"TA0104","Execution",[44,49,53,58,63],{"id":45,"name":46,"tactic":47},"D3-SWI","Software Inventory",{"name":48},"Model",{"id":50,"name":51,"tactic":52},"D3-AVE","Asset Vulnerability Enumeration",{"name":48},{"id":54,"name":55,"tactic":56},"D3-SBV","Service Binary Verification",{"name":57},"Detect",{"id":59,"name":60,"tactic":61},"D3-SU","Software Update",{"name":62},"Harden",{"id":64,"name":65,"tactic":66},"D3-RS","Restore Software",{"name":67},"Restore",{"id":69,"name":70,"techniques":71},"CAPEC-127","Directory Indexing",[72],{"id":73,"name":74,"tactics":75,"countermeasures":79},"T1083","File and Directory Discovery",[76],{"id":77,"name":78},"TA0102","Discovery",[80,84,88,93,98,102,106,111,115,119,123],{"id":81,"name":82,"tactic":83},"D3-FA","File Analysis",{"name":57},{"id":85,"name":86,"tactic":87},"D3-FIM","File Integrity Monitoring",{"name":57},{"id":89,"name":90,"tactic":91},"D3-FEV","File Eviction",{"name":92},"Evict",{"id":94,"name":95,"tactic":96},"D3-DF","Decoy File",{"name":97},"Deceive",{"id":99,"name":100,"tactic":101},"D3-FE","File Encryption",{"name":62},{"id":103,"name":104,"tactic":105},"D3-RF","Restore File",{"name":67},{"id":107,"name":108,"tactic":109},"D3-LFP","Local File Permissions",{"name":110},"Isolate",{"id":112,"name":113,"tactic":114},"D3-CF","Content Filtering",{"name":110},{"id":116,"name":117,"tactic":118},"D3-RFAM","Remote File Access Mediation",{"name":110},{"id":120,"name":121,"tactic":122},"D3-CQ","Content Quarantine",{"name":110},{"id":124,"name":125,"tactic":126},"D3-CM","Content Modification",{"name":110},{"id":128,"name":129,"techniques":130},"CAPEC-81","Web Server Logs Tampering",[],[132],{"_key":133,"name":134,"source":135,"url":136,"maturity":137,"reliability_score":138,"verified":139,"type":9,"platforms":140,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_682FE5E228EF0FA9","Exploit Reference (bugs.launchpad.net)","reference","https://bugs.launchpad.net/manila/+bug/1861485","unknown",0.2,false,[],[142,143],"GHSA-jx7v-gmqc-6xrj","PYSEC-2020-63",[],[146,148,150,152,154,156,158,160,162],{"_key":147},"RHSA-2020:1326",{"_key":149},"RHSA-2020:2165",{"_key":151},"RHSA-2020:2729",{"_key":153},"UBUNTU-CVE-2020-9543",{"_key":155},"SUSE-SU-2020:0659-1",{"_key":157},"SUSE-SU-2020:0660-1",{"_key":159},"SUSE-SU-2020:1066-1",{"_key":161},"SUSE-SU-2020:1190-1",{"_key":163},"DEBIAN-CVE-2020-9543",[],[166,167,168,169],{"_key":155},{"_key":157},{"_key":159},{"_key":161},"2020-03-12T16:40:20.000Z","2024-08-04T10:34:38.884Z","Modified",{"cisa_kev":139,"cisa_ransomware":139,"cisa_vendor":9,"epss_severity":174,"epss_score":175,"severity":176,"severity_score":177,"severity_version":178,"severity_source":179,"severity_vector":180,"severity_status":172},"low",0.00272,"high",8.3,"v3.1","nvd","CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L",[182,192,199,205,210,214,219,223],{"url":136,"sources":183,"tags":186},[184,179,185],"cve.org","osv_pypi",[187,188,189,190,191],"X Refsource MISC","Exploit","Issue Tracking","Third Party Advisory","WEB",{"url":193,"sources":194,"tags":195},"https://security.openstack.org/ossa/OSSA-2020-002.html",[184,179,185],[196,197,198,191],"X Refsource CONFIRM","Patch","Vendor Advisory",{"url":200,"sources":201,"tags":202},"http://www.openwall.com/lists/oss-security/2020/03/12/1",[184,179,185],[203,204,197,190,191],"Mailing List","X Refsource MLIST",{"url":206,"sources":207,"tags":208},"https://nvd.nist.gov/vuln/detail/CVE-2020-9543",[185],[209],"Advisory",{"url":211,"sources":212,"tags":213},"https://github.com/openstack/manila/commit/947315f0903c823b0fdd9d99c60078814587272c",[185],[191],{"url":215,"sources":216,"tags":217},"https://github.com/openstack/manila",[185],[218],"PACKAGE",{"url":220,"sources":221,"tags":222},"https://github.com/pypa/advisory-database/tree/main/vulns/manila/PYSEC-2020-63.yaml",[185],[191],{"url":224,"sources":225,"tags":226},"https://opendev.org/openstack/manila/commit/947315f0903c823b0fdd9d99c60078814587272c",[185],[191],[],{"date":229,"score":175,"percentile":230},"2026-06-04",0.50804,[232,236,239,242,244,247,250,253,256,259,262,265,267,270,273,276,279,281,284,287,290,293,295,298,301,304,307,310,313,316,319,322,325,328,331,334,337,339,342,345,348,350,352,355,358,361,364,367,370,373,376,379,382,385,388,391,394,397,400,403,406,409,411,414,417,420,423,426,428,430,432,435,438,441,444,447,450,453,455,458,461,464,467,470,473,476,479,482,485,488],{"date":233,"score":234,"percentile":235},"2025-11-04",0.00323,0.54815,{"date":237,"score":234,"percentile":238},"2025-11-05",0.54778,{"date":240,"score":234,"percentile":241},"2025-11-06",0.54793,{"date":243,"score":234,"percentile":235},"2025-11-07",{"date":245,"score":234,"percentile":246},"2025-11-08",0.54816,{"date":248,"score":234,"percentile":249},"2025-11-09",0.54811,{"date":251,"score":234,"percentile":252},"2025-11-10",0.54787,{"date":254,"score":234,"percentile":255},"2025-11-11",0.548,{"date":257,"score":234,"percentile":258},"2025-11-12",0.54825,{"date":260,"score":234,"percentile":261},"2025-11-13",0.54833,{"date":263,"score":234,"percentile":264},"2025-11-14",0.54832,{"date":266,"score":234,"percentile":258},"2025-11-15",{"date":268,"score":234,"percentile":269},"2025-11-16",0.54805,{"date":271,"score":234,"percentile":272},"2025-11-17",0.54792,{"date":274,"score":234,"percentile":275},"2025-11-18",0.52329,{"date":277,"score":234,"percentile":278},"2025-11-19",0.5234,{"date":280,"score":234,"percentile":275},"2025-11-20",{"date":282,"score":234,"percentile":283},"2025-11-21",0.54803,{"date":285,"score":234,"percentile":286},"2025-11-22",0.54795,{"date":288,"score":234,"percentile":289},"2025-11-23",0.54763,{"date":291,"score":234,"percentile":292},"2025-11-24",0.54758,{"date":294,"score":234,"percentile":289},"2025-11-25",{"date":296,"score":234,"percentile":297},"2025-11-26",0.54768,{"date":299,"score":234,"percentile":300},"2025-11-27",0.54771,{"date":302,"score":234,"percentile":303},"2025-11-28",0.54742,{"date":305,"score":234,"percentile":306},"2025-11-29",0.54724,{"date":308,"score":234,"percentile":309},"2025-11-30",0.54718,{"date":311,"score":234,"percentile":312},"2025-12-01",0.5487,{"date":314,"score":234,"percentile":315},"2025-12-02",0.54886,{"date":317,"score":234,"percentile":318},"2025-12-03",0.54879,{"date":320,"score":234,"percentile":321},"2025-12-04",0.54719,{"date":323,"score":234,"percentile":324},"2025-12-05",0.54737,{"date":326,"score":234,"percentile":327},"2025-12-06",0.54735,{"date":329,"score":234,"percentile":330},"2025-12-07",0.54727,{"date":332,"score":234,"percentile":333},"2025-12-08",0.54729,{"date":335,"score":234,"percentile":336},"2025-12-09",0.54745,{"date":338,"score":234,"percentile":283},"2025-12-10",{"date":340,"score":234,"percentile":341},"2025-12-11",0.54823,{"date":343,"score":234,"percentile":344},"2025-12-12",0.54845,{"date":346,"score":234,"percentile":347},"2025-12-13",0.54838,{"date":349,"score":234,"percentile":261},"2025-12-14",{"date":351,"score":234,"percentile":341},"2025-12-15",{"date":353,"score":234,"percentile":354},"2025-12-16",0.54837,{"date":356,"score":234,"percentile":357},"2025-12-17",0.54859,{"date":359,"score":234,"percentile":360},"2025-12-18",0.54896,{"date":362,"score":234,"percentile":363},"2025-12-19",0.54899,{"date":365,"score":234,"percentile":366},"2025-12-20",0.54889,{"date":368,"score":234,"percentile":369},"2025-12-21",0.54866,{"date":371,"score":234,"percentile":372},"2025-12-22",0.54844,{"date":374,"score":234,"percentile":375},"2025-12-23",0.54848,{"date":377,"score":234,"percentile":378},"2025-12-24",0.54856,{"date":380,"score":234,"percentile":381},"2025-12-25",0.54903,{"date":383,"score":234,"percentile":384},"2025-12-26",0.54898,{"date":386,"score":234,"percentile":387},"2025-12-27",0.54943,{"date":389,"score":234,"percentile":390},"2025-12-28",0.54864,{"date":392,"score":234,"percentile":393},"2025-12-29",0.54847,{"date":395,"score":234,"percentile":396},"2025-12-30",0.5484,{"date":398,"score":234,"percentile":399},"2025-12-31",0.54853,{"date":401,"score":234,"percentile":402},"2026-01-01",0.55021,{"date":404,"score":234,"percentile":405},"2026-01-02",0.55002,{"date":407,"score":234,"percentile":408},"2026-01-03",0.54992,{"date":410,"score":234,"percentile":258},"2026-01-04",{"date":412,"score":234,"percentile":413},"2026-01-05",0.54813,{"date":415,"score":234,"percentile":416},"2026-01-06",0.54822,{"date":418,"score":234,"percentile":419},"2026-01-07",0.54846,{"date":421,"score":234,"percentile":422},"2026-01-08",0.54867,{"date":424,"score":234,"percentile":425},"2026-01-09",0.5486,{"date":427,"score":234,"percentile":357},"2026-01-10",{"date":429,"score":234,"percentile":354},"2026-01-11",{"date":431,"score":234,"percentile":272},"2026-01-12",{"date":433,"score":234,"percentile":434},"2026-01-13",0.54769,{"date":436,"score":234,"percentile":437},"2026-01-14",0.54818,{"date":439,"score":234,"percentile":440},"2026-01-15",0.5482,{"date":442,"score":175,"percentile":443},"2026-01-16",0.50333,{"date":445,"score":175,"percentile":446},"2026-01-17",0.50311,{"date":448,"score":175,"percentile":449},"2026-01-18",0.50286,{"date":451,"score":175,"percentile":452},"2026-01-19",0.5026,{"date":454,"score":175,"percentile":452},"2026-01-20",{"date":456,"score":175,"percentile":457},"2026-01-21",0.50261,{"date":459,"score":175,"percentile":460},"2026-01-22",0.50268,{"date":462,"score":175,"percentile":463},"2026-01-23",0.50317,{"date":465,"score":175,"percentile":466},"2026-01-24",0.50323,{"date":468,"score":175,"percentile":469},"2026-01-25",0.50275,{"date":471,"score":175,"percentile":472},"2026-01-26",0.50249,{"date":474,"score":175,"percentile":475},"2026-01-27",0.50253,{"date":477,"score":175,"percentile":478},"2026-01-28",0.50266,{"date":480,"score":175,"percentile":481},"2026-01-29",0.50263,{"date":483,"score":175,"percentile":484},"2026-01-30",0.50265,{"date":486,"score":175,"percentile":487},"2026-01-31",0.50271,{"date":489,"score":175,"percentile":490},"2026-02-01",0.50406,[492,502],{"source":179,"cvss_v2_0":493,"cvss_v3_0":9,"cvss_v3_1":498,"cvss_v4_0":9},{"baseScore":494,"baseSeverity":9,"vectorString":495,"impactScore":496,"exploitabilityScore":497},6.5,"AV:N/AC:L/Au:S/C:P/I:P/A:P",6.4,8,{"baseScore":177,"baseSeverity":499,"vectorString":180,"impactScore":500,"exploitabilityScore":501},"HIGH",9.2,7.2,{"source":185,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":503,"cvss_v4_0":504},{"baseScore":177,"baseSeverity":9,"vectorString":180,"impactScore":500,"exploitabilityScore":501},{"baseScore":505,"baseSeverity":9,"vectorString":506,"impactScore":9,"exploitabilityScore":9},8.7,"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N",[508,528],{"ecosystem":9,"name":509,"vendor":510,"product":509,"cpe_part":511,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":512},"manila","openstack","a",[513,519,524],{"version":514,"is_range":515,"range_type":516,"version_start":9,"version_start_type":9,"version_end":517,"version_end_type":518,"fixed_in":9},"lt7.4.1",true,"cpe","7.4.1","excluding",{"version":520,"is_range":515,"range_type":516,"version_start":521,"version_start_type":522,"version_end":523,"version_end_type":518,"fixed_in":9},"gte8.0.0_lt8.1.1","8.0.0","including","8.1.1",{"version":525,"is_range":515,"range_type":516,"version_start":526,"version_start_type":522,"version_end":527,"version_end_type":518,"fixed_in":9},"gte9.0.0_lt9.1.1","9.0.0","9.1.1",{"ecosystem":529,"name":509,"vendor":529,"product":509,"cpe_part":9,"purl_type":530,"purl_namespace":9,"purl_name":509,"source":9,"versions":531},"PyPI","pypi",[532,535,537],{"version":533,"is_range":515,"range_type":534,"version_start":9,"version_start_type":9,"version_end":517,"version_end_type":518,"fixed_in":9},"lt7_4_1","ecosystem",{"version":536,"is_range":515,"range_type":534,"version_start":521,"version_start_type":522,"version_end":523,"version_end_type":518,"fixed_in":9},"gte8_0_0_lt8_1_1",{"version":538,"is_range":515,"range_type":534,"version_start":526,"version_start_type":522,"version_end":527,"version_end_type":518,"fixed_in":9},"gte9_0_0_lt9_1_1"]