[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2021-45960":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":28,"aliases":46,"duplicate_of":9,"upstream":47,"downstream":48,"duplicates":81,"related":82,"reserved_at":9,"published_at":89,"modified_at":90,"state":91,"summary":92,"references_raw":100,"kevs":149,"epss":150,"epss_history":153,"metrics":427,"affected":440},"CVE-2021-45960","In Expat (aka libexpat) before 2.4.3, a left shift by 29 (or more) places in the storeAtts function in xmlparse.c can lead to realloc misbehavior (e.g., allocating too few bytes, or only freeing memory).",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-682","Incorrect Calculation","The product performs a calculation that generates incorrect or unintended results that are later used in security-critical decisions or resource management.","weakness","Draft","Pillar","High",[20,24],{"id":21,"name":22,"techniques":23},"CAPEC-128","Integer Attacks",[],{"id":25,"name":26,"techniques":27},"CAPEC-129","Pointer Manipulation",[],[29,38],{"_key":30,"name":31,"source":32,"url":33,"maturity":34,"reliability_score":35,"verified":36,"type":9,"platforms":37,"requires_auth":9,"exploitdb":9,"metasploit":9},"GITHUB_LIBEXPAT_LIBEXPAT","Libexpat","github","https://github.com/libexpat/libexpat/pull/262","poc",0.3,false,[],{"_key":39,"name":40,"source":41,"url":42,"maturity":43,"reliability_score":44,"verified":36,"type":9,"platforms":45,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_6E0EDD8E47E1C019","Exploit Reference (openwall.com)","reference","http://www.openwall.com/lists/oss-security/2022/01/17/3","unknown",0.2,[],[],[],[49,51,53,55,57,59,61,63,65,67,69,71,73,75,77,79],{"_key":50},"ALPINE-CVE-2021-45960",{"_key":52},"SUSE-SU-2022:0178-1",{"_key":54},"SUSE-SU-2022:0179-1",{"_key":56},"SUSE-SU-2022:14878-1",{"_key":58},"OPENSUSE-SU-2022:0178-1",{"_key":60},"OPENSUSE-SU-2024:11762-1",{"_key":62},"DLA-2904-1",{"_key":64},"DSA-5073-1",{"_key":66},"MGASA-2022-0031",{"_key":68},"DEBIAN-CVE-2021-45960",{"_key":70},"RHSA-2022:0951",{"_key":72},"RHSA-2022:1069",{"_key":74},"USN-5288-1",{"_key":76},"UBUNTU-CVE-2021-45960",{"_key":78},"RHSA-2025:22785",{"_key":80},"RHSA-2025:22871",[],[83,84,85,86,87,88],{"_key":52},{"_key":54},{"_key":56},{"_key":58},{"_key":60},{"_key":66},"2022-01-01T18:47:46.000Z","2025-05-05T16:45:11.487Z","Modified",{"cisa_kev":36,"cisa_ransomware":36,"cisa_vendor":9,"epss_severity":93,"epss_score":94,"severity":95,"severity_score":96,"severity_version":97,"severity_source":98,"severity_vector":99,"severity_status":91},"low",0.00316,"high",9,"v2.0","nvd","AV:N/AC:L/Au:S/C:C/I:C/A:C",[101,111,115,120,125,130,134,140,144],{"url":102,"sources":103,"tags":105},"https://github.com/libexpat/libexpat/issues/531",[104,98],"cve.org",[106,107,108,109,110],"X Refsource MISC","Exploit","Issue Tracking","Patch","Third Party Advisory",{"url":112,"sources":113,"tags":114},"https://github.com/libexpat/libexpat/pull/534",[104,98],[106,109,110],{"url":116,"sources":117,"tags":118},"https://bugzilla.mozilla.org/show_bug.cgi?id=1217609",[104,98],[106,108,119,110],"Permissions Required",{"url":42,"sources":121,"tags":122},[104,98],[123,124,107,110],"Mailing List","X Refsource MLIST",{"url":126,"sources":127,"tags":128},"https://security.netapp.com/advisory/ntap-20220121-0004/",[104,98],[129,110],"X Refsource CONFIRM",{"url":131,"sources":132,"tags":133},"https://www.tenable.com/security/tns-2022-05",[104,98],[129,110],{"url":135,"sources":136,"tags":137},"https://www.debian.org/security/2022/dsa-5073",[104,98],[138,139,108,110],"Vendor Advisory","X Refsource DEBIAN",{"url":141,"sources":142,"tags":143},"https://cert-portal.siemens.com/productcert/pdf/ssa-484086.pdf",[104,98],[129,109,110],{"url":145,"sources":146,"tags":147},"https://security.gentoo.org/glsa/202209-24",[104,98],[138,148,110],"X Refsource GENTOO",[],{"date":151,"score":94,"percentile":152},"2026-06-04",0.55,[154,158,161,164,167,170,174,177,180,183,186,188,191,194,197,201,204,207,211,215,218,221,224,227,230,233,236,239,242,245,248,251,254,257,261,264,267,270,273,277,280,283,286,289,292,295,298,301,304,307,310,313,316,320,323,326,329,333,336,339,342,345,348,351,354,357,360,363,366,369,372,375,378,380,383,386,388,391,394,397,400,403,406,408,411,413,416,419,421,424],{"date":155,"score":156,"percentile":157},"2025-11-04",0.00374,0.58379,{"date":159,"score":156,"percentile":160},"2025-11-05",0.58362,{"date":162,"score":156,"percentile":163},"2025-11-06",0.58363,{"date":165,"score":156,"percentile":166},"2025-11-07",0.5838,{"date":168,"score":156,"percentile":169},"2025-11-08",0.58378,{"date":171,"score":172,"percentile":173},"2025-11-09",0.00346,0.56493,{"date":175,"score":172,"percentile":176},"2025-11-10",0.56467,{"date":178,"score":172,"percentile":179},"2025-11-11",0.5648,{"date":181,"score":172,"percentile":182},"2025-11-12",0.56506,{"date":184,"score":172,"percentile":185},"2025-11-13",0.56512,{"date":187,"score":172,"percentile":185},"2025-11-14",{"date":189,"score":172,"percentile":190},"2025-11-15",0.56504,{"date":192,"score":172,"percentile":193},"2025-11-16",0.56487,{"date":195,"score":172,"percentile":196},"2025-11-17",0.56481,{"date":198,"score":199,"percentile":200},"2025-11-18",0.04869,0.88489,{"date":202,"score":199,"percentile":203},"2025-11-19",0.88493,{"date":205,"score":199,"percentile":206},"2025-11-20",0.88497,{"date":208,"score":209,"percentile":210},"2025-11-21",0.0035,0.56806,{"date":212,"score":213,"percentile":214},"2025-11-22",0.00355,0.57145,{"date":216,"score":213,"percentile":217},"2025-11-23",0.57119,{"date":219,"score":213,"percentile":220},"2025-11-24",0.57111,{"date":222,"score":213,"percentile":223},"2025-11-25",0.57114,{"date":225,"score":213,"percentile":226},"2025-11-26",0.57117,{"date":228,"score":213,"percentile":229},"2025-11-27",0.57118,{"date":231,"score":213,"percentile":232},"2025-11-28",0.57095,{"date":234,"score":213,"percentile":235},"2025-11-29",0.57083,{"date":237,"score":213,"percentile":238},"2025-11-30",0.57077,{"date":240,"score":213,"percentile":241},"2025-12-01",0.5723,{"date":243,"score":213,"percentile":244},"2025-12-02",0.57246,{"date":246,"score":213,"percentile":247},"2025-12-03",0.57245,{"date":249,"score":213,"percentile":250},"2025-12-04",0.57079,{"date":252,"score":172,"percentile":253},"2025-12-05",0.56441,{"date":255,"score":172,"percentile":256},"2025-12-06",0.56443,{"date":258,"score":259,"percentile":260},"2025-12-07",0.00398,0.59795,{"date":262,"score":259,"percentile":263},"2025-12-08",0.59797,{"date":265,"score":259,"percentile":266},"2025-12-09",0.59833,{"date":268,"score":259,"percentile":269},"2025-12-10",0.59879,{"date":271,"score":259,"percentile":272},"2025-12-11",0.59899,{"date":274,"score":275,"percentile":276},"2025-12-12",0.00409,0.60579,{"date":278,"score":213,"percentile":279},"2025-12-13",0.5722,{"date":281,"score":213,"percentile":282},"2025-12-14",0.57221,{"date":284,"score":213,"percentile":285},"2025-12-15",0.57205,{"date":287,"score":213,"percentile":288},"2025-12-16",0.57219,{"date":290,"score":213,"percentile":291},"2025-12-17",0.57233,{"date":293,"score":213,"percentile":294},"2025-12-18",0.5727,{"date":296,"score":213,"percentile":297},"2025-12-19",0.57279,{"date":299,"score":213,"percentile":300},"2025-12-20",0.57277,{"date":302,"score":213,"percentile":303},"2025-12-21",0.57259,{"date":305,"score":213,"percentile":306},"2025-12-22",0.5724,{"date":308,"score":213,"percentile":309},"2025-12-23",0.57247,{"date":311,"score":213,"percentile":312},"2025-12-24",0.57258,{"date":314,"score":213,"percentile":315},"2025-12-25",0.57303,{"date":317,"score":318,"percentile":319},"2025-12-26",0.00318,0.54468,{"date":321,"score":318,"percentile":322},"2025-12-27",0.54518,{"date":324,"score":318,"percentile":325},"2025-12-28",0.5444,{"date":327,"score":318,"percentile":328},"2025-12-29",0.54421,{"date":330,"score":331,"percentile":332},"2025-12-30",0.00309,0.53696,{"date":334,"score":331,"percentile":335},"2025-12-31",0.53714,{"date":337,"score":331,"percentile":338},"2026-01-01",0.5388,{"date":340,"score":331,"percentile":341},"2026-01-02",0.53858,{"date":343,"score":331,"percentile":344},"2026-01-03",0.53851,{"date":346,"score":331,"percentile":347},"2026-01-04",0.53685,{"date":349,"score":331,"percentile":350},"2026-01-05",0.53671,{"date":352,"score":331,"percentile":353},"2026-01-06",0.53677,{"date":355,"score":331,"percentile":356},"2026-01-07",0.53701,{"date":358,"score":331,"percentile":359},"2026-01-08",0.53723,{"date":361,"score":331,"percentile":362},"2026-01-09",0.53717,{"date":364,"score":331,"percentile":365},"2026-01-10",0.53716,{"date":367,"score":331,"percentile":368},"2026-01-11",0.53697,{"date":370,"score":331,"percentile":371},"2026-01-12",0.53649,{"date":373,"score":331,"percentile":374},"2026-01-13",0.53627,{"date":376,"score":331,"percentile":377},"2026-01-14",0.53668,{"date":379,"score":331,"percentile":350},"2026-01-15",{"date":381,"score":331,"percentile":382},"2026-01-16",0.53693,{"date":384,"score":331,"percentile":385},"2026-01-17",0.5368,{"date":387,"score":331,"percentile":377},"2026-01-18",{"date":389,"score":331,"percentile":390},"2026-01-19",0.53659,{"date":392,"score":331,"percentile":393},"2026-01-20",0.53662,{"date":395,"score":331,"percentile":396},"2026-01-21",0.53669,{"date":398,"score":331,"percentile":399},"2026-01-22",0.53676,{"date":401,"score":331,"percentile":402},"2026-01-23",0.53718,{"date":404,"score":331,"percentile":405},"2026-01-24",0.53719,{"date":407,"score":331,"percentile":399},"2026-01-25",{"date":409,"score":331,"percentile":410},"2026-01-26",0.5366,{"date":412,"score":331,"percentile":350},"2026-01-27",{"date":414,"score":331,"percentile":415},"2026-01-28",0.53688,{"date":417,"score":331,"percentile":418},"2026-01-29",0.53684,{"date":420,"score":331,"percentile":415},"2026-01-30",{"date":422,"score":331,"percentile":423},"2026-01-31",0.53695,{"date":425,"score":331,"percentile":426},"2026-02-01",0.53833,[428,435],{"source":104,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":429,"cvss_v4_0":9},{"baseScore":430,"baseSeverity":431,"vectorString":432,"impactScore":433,"exploitabilityScore":434},8.8,"HIGH","CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",9.8,7.2,{"source":98,"cvss_v2_0":436,"cvss_v3_0":9,"cvss_v3_1":439,"cvss_v4_0":9},{"baseScore":96,"baseSeverity":9,"vectorString":99,"impactScore":437,"exploitabilityScore":438},10,8,{"baseScore":430,"baseSeverity":431,"vectorString":432,"impactScore":433,"exploitabilityScore":434},[441,452,462,469,479,484,489,497],{"ecosystem":9,"name":442,"vendor":443,"product":444,"cpe_part":445,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":446},"debian linux","debian","debian_linux","o",[447,450],{"version":448,"is_range":36,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.0","cpe",{"version":451,"is_range":36,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0",{"ecosystem":9,"name":453,"vendor":454,"product":453,"cpe_part":455,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":456},"libexpat","libexpat_project","a",[457],{"version":458,"is_range":459,"range_type":449,"version_start":9,"version_start_type":9,"version_end":460,"version_end_type":461,"fixed_in":9},"lt2.4.3",true,"2.4.3","excluding",{"ecosystem":9,"name":463,"vendor":464,"product":465,"cpe_part":455,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":466},"active iq unified manager","netapp","active_iq_unified_manager",[467],{"version":468,"is_range":36,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"na",{"ecosystem":9,"name":470,"vendor":464,"product":471,"cpe_part":455,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":472},"hci baseboard management controller","hci_baseboard_management_controller",[473,475,477],{"version":474,"is_range":36,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"h610c",{"version":476,"is_range":36,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"h610s",{"version":478,"is_range":36,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"h615c",{"ecosystem":9,"name":480,"vendor":464,"product":481,"cpe_part":455,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":482},"oncommand workflow automation","oncommand_workflow_automation",[483],{"version":468,"is_range":36,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":485,"vendor":464,"product":486,"cpe_part":455,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":487},"solidfire \\& hci management node","solidfire_\\&_hci_management_node",[488],{"version":468,"is_range":36,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":490,"vendor":491,"product":492,"cpe_part":455,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":493},"sinema remote connect server","siemens","sinema_remote_connect_server",[494],{"version":495,"is_range":459,"range_type":449,"version_start":9,"version_start_type":9,"version_end":496,"version_end_type":461,"fixed_in":9},"lt3.1","3.1",{"ecosystem":9,"name":498,"vendor":499,"product":498,"cpe_part":455,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":500},"nessus","tenable",[501,504],{"version":502,"is_range":459,"range_type":449,"version_start":9,"version_start_type":9,"version_end":503,"version_end_type":461,"fixed_in":9},"lt8.15.3","8.15.3",{"version":505,"is_range":459,"range_type":449,"version_start":506,"version_start_type":507,"version_end":508,"version_end_type":461,"fixed_in":9},"gte10.0.0_lt10.1.1","10.0.0","including","10.1.1"]