[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2022-25236":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":19,"aliases":20,"duplicate_of":9,"upstream":21,"downstream":22,"duplicates":143,"related":144,"reserved_at":9,"published_at":173,"modified_at":174,"state":175,"summary":176,"references_raw":185,"kevs":242,"epss":243,"epss_history":246,"metrics":506,"affected":517},"CVE-2022-25236","xmlparse.c in Expat (aka libexpat) before 2.4.5 allows attackers to insert namespace-separator characters into namespace URIs.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-668","Exposure of Resource to Wrong Sphere","The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.","weakness","Draft","Class",[],[],[],[],[23,25,27,29,31,33,35,37,39,41,43,45,47,49,51,53,55,57,59,61,63,65,67,69,71,73,75,77,79,81,83,85,87,89,91,93,95,97,99,101,103,105,107,109,111,113,115,117,119,121,123,125,127,129,131,133,135,137,139,141],{"_key":24},"ALPINE-CVE-2022-25236",{"_key":26},"SUSE-SU-2022:2294-1",{"_key":28},"SUSE-SU-2022:0698-1",{"_key":30},"SUSE-SU-2022:0713-1",{"_key":32},"SUSE-SU-2022:0842-1",{"_key":34},"SUSE-SU-2022:0844-1",{"_key":36},"SUSE-SU-2022:0844-2",{"_key":38},"SUSE-SU-2022:14903-1",{"_key":40},"SUSE-SU-2022:14934-1",{"_key":42},"SUSE-SU-2024:0782-2",{"_key":44},"SUSE-SU-2024:0782-1",{"_key":46},"SUSE-SU-2024:0784-1",{"_key":48},"OPENSUSE-SU-2022:0713-1",{"_key":50},"OPENSUSE-SU-2022:0844-1",{"_key":52},"OPENSUSE-SU-2024:11866-1",{"_key":54},"OPENSUSE-SU-2024:12150-1",{"_key":56},"OPENSUSE-SU-2024:12152-1",{"_key":58},"OPENSUSE-SU-2024:12336-1",{"_key":60},"OPENSUSE-SU-2024:12341-1",{"_key":62},"OPENSUSE-SU-2024:12910-1",{"_key":64},"OPENSUSE-SU-2024:14109-1",{"_key":66},"OPENSUSE-SU-2024:14434-1",{"_key":68},"DLA-2935-1",{"_key":70},"DSA-5085-1",{"_key":72},"RHSA-2022:0815",{"_key":74},"RHSA-2022:0816",{"_key":76},"RHSA-2022:0817",{"_key":78},"RHSA-2022:0843",{"_key":80},"RHSA-2022:0847",{"_key":82},"RHSA-2022:0853",{"_key":84},"RHSA-2022:1012",{"_key":86},"RHSA-2022:1053",{"_key":88},"RHSA-2022:1068",{"_key":90},"RHSA-2022:1070",{"_key":92},"RHSA-2022:1309",{"_key":94},"RHSA-2022:7811",{"_key":96},"SUSE-SU-2025:20025-1",{"_key":98},"SUSE-SU-2025:20154-1",{"_key":100},"SUSE-SU-2025:20374-1",{"_key":102},"OPENSUSE-SU-2025:15713-1",{"_key":104},"MGASA-2022-0081",{"_key":106},"MGASA-2022-0156",{"_key":108},"MGASA-2022-0157",{"_key":110},"DEBIAN-CVE-2022-25236",{"_key":112},"USN-8235-1",{"_key":114},"USN-8240-1",{"_key":116},"USN-8241-1",{"_key":118},"RHSA-2022:0818",{"_key":120},"RHSA-2022:0824",{"_key":122},"RHSA-2022:0845",{"_key":124},"RHSA-2022:0850",{"_key":126},"RHSA-2022:0951",{"_key":128},"RHSA-2022:1069",{"_key":130},"USN-5288-1",{"_key":132},"USN-5455-1",{"_key":134},"RHSA-2022:1263",{"_key":136},"USN-8313-1",{"_key":138},"USN-8314-1",{"_key":140},"USN-8316-1",{"_key":142},"UBUNTU-CVE-2022-25236",[],[145,146,147,148,149,150,151,152,153,154,155,156,157,158,159,160,161,162,163,164,165,166,167,168,169,170,171,172],{"_key":26},{"_key":28},{"_key":30},{"_key":32},{"_key":34},{"_key":36},{"_key":38},{"_key":40},{"_key":42},{"_key":44},{"_key":46},{"_key":48},{"_key":50},{"_key":52},{"_key":54},{"_key":56},{"_key":58},{"_key":60},{"_key":62},{"_key":64},{"_key":66},{"_key":96},{"_key":98},{"_key":100},{"_key":102},{"_key":104},{"_key":106},{"_key":108},"2022-02-16T00:39:16.000Z","2025-05-05T16:23:43.998Z","Modified",{"cisa_kev":177,"cisa_ransomware":177,"cisa_vendor":9,"epss_severity":178,"epss_score":179,"severity":180,"severity_score":181,"severity_version":182,"severity_source":183,"severity_vector":184,"severity_status":175},false,"low",0.08156,"critical",9.8,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",[186,194,200,206,211,215,219,223,228,233,237],{"url":187,"sources":188,"tags":190},"https://github.com/libexpat/libexpat/pull/561",[183,189],"nvd",[191,192,193],"X Refsource MISC","Patch","Third Party Advisory",{"url":195,"sources":196,"tags":197},"http://www.openwall.com/lists/oss-security/2022/02/19/1",[183,189],[198,199,193],"Mailing List","X Refsource MLIST",{"url":201,"sources":202,"tags":203},"https://www.debian.org/security/2022/dsa-5085",[183,189],[204,205,193],"Vendor Advisory","X Refsource DEBIAN",{"url":207,"sources":208,"tags":209},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3UFRBA3UQVIQKXTBUQXDWQOVWNBKLERU/",[183,189],[204,210],"X Refsource FEDORA",{"url":212,"sources":213,"tags":214},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Y27XO3JMKAOMQZVPS3B4MJGEAHCZF5OM/",[183,189],[204,210],{"url":216,"sources":217,"tags":218},"https://lists.debian.org/debian-lts-announce/2022/03/msg00007.html",[183,189],[198,199,193],{"url":220,"sources":221,"tags":222},"https://www.oracle.com/security-alerts/cpuapr2022.html",[183,189],[191,192,193],{"url":224,"sources":225,"tags":226},"https://security.netapp.com/advisory/ntap-20220303-0008/",[183,189],[227,193],"X Refsource CONFIRM",{"url":229,"sources":230,"tags":231},"http://packetstormsecurity.com/files/167238/Zoom-XMPP-Stanza-Smuggling-Remote-Code-Execution.html",[183,189],[191,193,232],"VDB Entry",{"url":234,"sources":235,"tags":236},"https://cert-portal.siemens.com/productcert/pdf/ssa-484086.pdf",[183,189],[227,193],{"url":238,"sources":239,"tags":240},"https://security.gentoo.org/glsa/202209-24",[183,189],[204,241,193],"X Refsource GENTOO",[],{"date":244,"score":179,"percentile":245},"2026-06-04",0.92325,[247,251,253,256,259,262,265,268,271,274,277,280,282,284,286,290,293,296,300,303,306,309,312,315,317,320,323,326,329,332,335,338,341,344,346,349,352,356,359,362,365,368,371,373,376,379,382,384,387,390,393,396,399,402,406,408,410,413,416,419,423,426,429,432,435,437,440,443,446,449,451,454,457,459,462,465,468,470,473,476,479,482,485,488,490,493,496,498,500,503],{"date":248,"score":249,"percentile":250},"2025-11-04",0.10885,0.93053,{"date":252,"score":249,"percentile":250},"2025-11-05",{"date":254,"score":249,"percentile":255},"2025-11-06",0.93055,{"date":257,"score":249,"percentile":258},"2025-11-07",0.9306,{"date":260,"score":249,"percentile":261},"2025-11-08",0.93059,{"date":263,"score":249,"percentile":264},"2025-11-09",0.93058,{"date":266,"score":249,"percentile":267},"2025-11-10",0.93057,{"date":269,"score":249,"percentile":270},"2025-11-11",0.93063,{"date":272,"score":249,"percentile":273},"2025-11-12",0.9307,{"date":275,"score":249,"percentile":276},"2025-11-13",0.93073,{"date":278,"score":249,"percentile":279},"2025-11-14",0.93075,{"date":281,"score":249,"percentile":273},"2025-11-15",{"date":283,"score":249,"percentile":279},"2025-11-16",{"date":285,"score":249,"percentile":276},"2025-11-17",{"date":287,"score":288,"percentile":289},"2025-11-18",0.16827,0.94428,{"date":291,"score":288,"percentile":292},"2025-11-19",0.94432,{"date":294,"score":288,"percentile":295},"2025-11-20",0.94435,{"date":297,"score":298,"percentile":299},"2025-11-21",0.11146,0.93179,{"date":301,"score":298,"percentile":302},"2025-11-22",0.93178,{"date":304,"score":298,"percentile":305},"2025-11-23",0.93182,{"date":307,"score":298,"percentile":308},"2025-11-24",0.93184,{"date":310,"score":298,"percentile":311},"2025-11-25",0.93185,{"date":313,"score":298,"percentile":314},"2025-11-26",0.93183,{"date":316,"score":298,"percentile":308},"2025-11-27",{"date":318,"score":298,"percentile":319},"2025-11-28",0.93177,{"date":321,"score":298,"percentile":322},"2025-11-29",0.93186,{"date":324,"score":249,"percentile":325},"2025-11-30",0.93093,{"date":327,"score":249,"percentile":328},"2025-12-01",0.9314,{"date":330,"score":249,"percentile":331},"2025-12-02",0.93144,{"date":333,"score":249,"percentile":334},"2025-12-03",0.93147,{"date":336,"score":249,"percentile":337},"2025-12-04",0.93101,{"date":339,"score":249,"percentile":340},"2025-12-05",0.93104,{"date":342,"score":249,"percentile":343},"2025-12-06",0.93105,{"date":345,"score":249,"percentile":340},"2025-12-07",{"date":347,"score":249,"percentile":348},"2025-12-08",0.93107,{"date":350,"score":249,"percentile":351},"2025-12-09",0.93109,{"date":353,"score":354,"percentile":355},"2025-12-10",0.08627,0.92113,{"date":357,"score":354,"percentile":358},"2025-12-11",0.92116,{"date":360,"score":354,"percentile":361},"2025-12-12",0.92121,{"date":363,"score":354,"percentile":364},"2025-12-13",0.92112,{"date":366,"score":354,"percentile":367},"2025-12-14",0.92109,{"date":369,"score":354,"percentile":370},"2025-12-15",0.92111,{"date":372,"score":354,"percentile":361},"2025-12-16",{"date":374,"score":354,"percentile":375},"2025-12-17",0.92126,{"date":377,"score":354,"percentile":378},"2025-12-18",0.92131,{"date":380,"score":354,"percentile":381},"2025-12-19",0.92134,{"date":383,"score":354,"percentile":381},"2025-12-20",{"date":385,"score":354,"percentile":386},"2025-12-21",0.92135,{"date":388,"score":354,"percentile":389},"2025-12-22",0.92133,{"date":391,"score":354,"percentile":392},"2025-12-23",0.92136,{"date":394,"score":354,"percentile":395},"2025-12-24",0.9214,{"date":397,"score":354,"percentile":398},"2025-12-25",0.92143,{"date":400,"score":354,"percentile":401},"2025-12-26",0.92144,{"date":403,"score":404,"percentile":405},"2025-12-27",0.07383,0.91454,{"date":407,"score":354,"percentile":395},"2025-12-28",{"date":409,"score":354,"percentile":392},"2025-12-29",{"date":411,"score":354,"percentile":412},"2025-12-30",0.92141,{"date":414,"score":404,"percentile":415},"2025-12-31",0.91426,{"date":417,"score":404,"percentile":418},"2026-01-01",0.91491,{"date":420,"score":421,"percentile":422},"2026-01-02",0.09358,0.92557,{"date":424,"score":421,"percentile":425},"2026-01-03",0.92555,{"date":427,"score":421,"percentile":428},"2026-01-04",0.9251,{"date":430,"score":421,"percentile":431},"2026-01-05",0.92509,{"date":433,"score":421,"percentile":434},"2026-01-06",0.92512,{"date":436,"score":421,"percentile":434},"2026-01-07",{"date":438,"score":421,"percentile":439},"2026-01-08",0.92515,{"date":441,"score":421,"percentile":442},"2026-01-09",0.92518,{"date":444,"score":421,"percentile":445},"2026-01-10",0.92519,{"date":447,"score":421,"percentile":448},"2026-01-11",0.92516,{"date":450,"score":421,"percentile":448},"2026-01-12",{"date":452,"score":421,"percentile":453},"2026-01-13",0.92517,{"date":455,"score":421,"percentile":456},"2026-01-14",0.92527,{"date":458,"score":421,"percentile":456},"2026-01-15",{"date":460,"score":421,"percentile":461},"2026-01-16",0.92531,{"date":463,"score":421,"percentile":464},"2026-01-17",0.92533,{"date":466,"score":421,"percentile":467},"2026-01-18",0.92526,{"date":469,"score":421,"percentile":456},"2026-01-19",{"date":471,"score":421,"percentile":472},"2026-01-20",0.92529,{"date":474,"score":421,"percentile":475},"2026-01-21",0.92534,{"date":477,"score":421,"percentile":478},"2026-01-22",0.92536,{"date":480,"score":421,"percentile":481},"2026-01-23",0.92542,{"date":483,"score":421,"percentile":484},"2026-01-24",0.9255,{"date":486,"score":421,"percentile":487},"2026-01-25",0.92553,{"date":489,"score":421,"percentile":487},"2026-01-26",{"date":491,"score":421,"percentile":492},"2026-01-27",0.92556,{"date":494,"score":421,"percentile":495},"2026-01-28",0.92559,{"date":497,"score":421,"percentile":495},"2026-01-29",{"date":499,"score":421,"percentile":495},"2026-01-30",{"date":501,"score":421,"percentile":502},"2026-01-31",0.9256,{"date":504,"score":421,"percentile":505},"2026-02-01",0.92604,[507,511],{"source":183,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":508,"cvss_v4_0":9},{"baseScore":181,"baseSeverity":509,"vectorString":184,"impactScore":181,"exploitabilityScore":510},"CRITICAL",10,{"source":189,"cvss_v2_0":512,"cvss_v3_0":9,"cvss_v3_1":516,"cvss_v4_0":9},{"baseScore":513,"baseSeverity":9,"vectorString":514,"impactScore":515,"exploitabilityScore":510},7.5,"AV:N/AC:L/Au:N/C:P/I:P/A:P",6.4,{"baseScore":181,"baseSeverity":509,"vectorString":184,"impactScore":181,"exploitabilityScore":510},[518,529,539,548,554],{"ecosystem":9,"name":519,"vendor":520,"product":521,"cpe_part":522,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":523},"debian linux","debian","debian_linux","o",[524,527],{"version":525,"is_range":177,"range_type":526,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.0","cpe",{"version":528,"is_range":177,"range_type":526,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0",{"ecosystem":9,"name":530,"vendor":531,"product":530,"cpe_part":532,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":533},"libexpat","libexpat_project","a",[534],{"version":535,"is_range":536,"range_type":526,"version_start":9,"version_start_type":9,"version_end":537,"version_end_type":538,"fixed_in":9},"lt2.4.5",true,"2.4.5","excluding",{"ecosystem":9,"name":540,"vendor":541,"product":542,"cpe_part":532,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":543},"http server","oracle","http_server",[544,546],{"version":545,"is_range":177,"range_type":526,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"12.2.1.3.0",{"version":547,"is_range":177,"range_type":526,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"12.2.1.4.0",{"ecosystem":9,"name":549,"vendor":541,"product":550,"cpe_part":532,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":551},"zfs storage appliance kit","zfs_storage_appliance_kit",[552],{"version":553,"is_range":177,"range_type":526,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.8",{"ecosystem":9,"name":555,"vendor":556,"product":557,"cpe_part":532,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":558},"sinema remote connect server","siemens","sinema_remote_connect_server",[559],{"version":560,"is_range":536,"range_type":526,"version_start":9,"version_start_type":9,"version_end":561,"version_end_type":538,"fixed_in":9},"lt3.1","3.1"]