[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2022-36280":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T02:53:27.892Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":78,"aliases":79,"duplicate_of":9,"upstream":80,"downstream":81,"duplicates":202,"related":203,"reserved_at":9,"published_at":232,"modified_at":233,"state":234,"summary":235,"references_raw":244,"kevs":267,"epss":268,"epss_history":271,"metrics":537,"affected":548},"CVE-2022-36280","An out-of-bounds(OOB) memory access vulnerability was found in vmwgfx driver in drivers/gpu/vmxgfx/vmxgfx_kms.c in GPU component in the Linux kernel with device file '/dev/dri/renderD128 (or Dxxx)'. This flaw allows a local attacker with a user account on the system to gain privilege, causing a denial of service(DoS).",null,[11,20],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-787","Out-of-bounds Write","The product writes data past the end, or before the beginning, of the intended buffer.","weakness","Draft","Base","High",[],{"_key":21,"id":21,"name":22,"description":23,"type":15,"status":24,"abstraction":17,"likelihood_of_exploit":18,"capec":25},"CWE-120","Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')","The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer.","Incomplete",[26,30,34,38,42,46,50,54,58,62,66,70,74],{"id":27,"name":28,"techniques":29},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":31,"name":32,"techniques":33},"CAPEC-100","Overflow Buffers",[],{"id":35,"name":36,"techniques":37},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":39,"name":40,"techniques":41},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":43,"name":44,"techniques":45},"CAPEC-42","MIME Conversion",[],{"id":47,"name":48,"techniques":49},"CAPEC-44","Overflow Binary Resource File",[],{"id":51,"name":52,"techniques":53},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":55,"name":56,"techniques":57},"CAPEC-46","Overflow Variables and Tags",[],{"id":59,"name":60,"techniques":61},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":63,"name":64,"techniques":65},"CAPEC-67","String Format Overflow in syslog()",[],{"id":67,"name":68,"techniques":69},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":71,"name":72,"techniques":73},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],{"id":75,"name":76,"techniques":77},"CAPEC-92","Forced Integer Overflow",[],[],[],[],[82,84,86,88,90,92,94,96,98,100,102,104,106,108,110,112,114,116,118,120,122,124,126,128,130,132,134,136,138,140,142,144,146,148,150,152,154,156,158,160,162,164,166,168,170,172,174,176,178,180,182,184,186,188,190,192,194,196,198,200],{"_key":83},"SUSE-SU-2025:0201-1",{"_key":85},"SUSE-SU-2023:0485-1",{"_key":87},"SUSE-SU-2023:0618-1",{"_key":89},"SUSE-SU-2023:0634-1",{"_key":91},"SUSE-SU-2023:0767-1",{"_key":93},"SUSE-SU-2023:0778-1",{"_key":95},"SUSE-SU-2023:0779-1",{"_key":97},"SUSE-SU-2023:0852-1",{"_key":99},"SUSE-SU-2025:0201-2",{"_key":101},"SUSE-SU-2025:0229-1",{"_key":103},"SUSE-SU-2025:03613-1",{"_key":105},"SUSE-SU-2025:03614-1",{"_key":107},"SUSE-SU-2025:03615-1",{"_key":109},"SUSE-SU-2025:03626-1",{"_key":111},"SUSE-SU-2025:03628-1",{"_key":113},"SUSE-SU-2025:3716-1",{"_key":115},"SUSE-SU-2025:3761-1",{"_key":117},"SUSE-SU-2023:0488-1",{"_key":119},"SUSE-SU-2023:0768-1",{"_key":121},"SUSE-SU-2023:0774-1",{"_key":123},"SUSE-SU-2023:0780-1",{"_key":125},"SUSE-SU-2023:1608-1",{"_key":127},"SUSE-SU-2023:1710-1",{"_key":129},"SUSE-SU-2023:2646-1",{"_key":131},"SUSE-SU-2023:2809-1",{"_key":133},"SUSE-SU-2023:2871-1",{"_key":135},"DLA-3349-1",{"_key":137},"DLA-3403-1",{"_key":139},"DSA-5324-1",{"_key":141},"MGASA-2023-0007",{"_key":143},"MGASA-2023-0008",{"_key":145},"DEBIAN-CVE-2022-36280",{"_key":147},"RHSA-2023:2148",{"_key":149},"RHSA-2023:2458",{"_key":151},"UBUNTU-CVE-2022-36280",{"_key":153},"USN-5976-1",{"_key":155},"USN-5981-1",{"_key":157},"USN-5984-1",{"_key":159},"USN-5991-1",{"_key":161},"USN-6001-1",{"_key":163},"USN-6009-1",{"_key":165},"USN-6013-1",{"_key":167},"USN-6014-1",{"_key":169},"USN-6030-1",{"_key":171},"USN-5915-1",{"_key":173},"USN-5917-1",{"_key":175},"USN-5924-1",{"_key":177},"USN-5927-1",{"_key":179},"USN-5934-1",{"_key":181},"USN-5939-1",{"_key":183},"USN-5940-1",{"_key":185},"USN-5951-1",{"_key":187},"USN-5975-1",{"_key":189},"USN-5982-1",{"_key":191},"USN-5987-1",{"_key":193},"USN-6000-1",{"_key":195},"USN-6004-1",{"_key":197},"USN-6032-1",{"_key":199},"USN-6079-1",{"_key":201},"USN-6096-1",[],[204,205,206,207,208,209,210,211,212,213,214,215,216,217,218,219,220,221,222,223,224,225,226,227,228,229,230,231],{"_key":83},{"_key":85},{"_key":87},{"_key":89},{"_key":91},{"_key":93},{"_key":95},{"_key":97},{"_key":99},{"_key":101},{"_key":103},{"_key":105},{"_key":107},{"_key":109},{"_key":111},{"_key":113},{"_key":115},{"_key":117},{"_key":119},{"_key":121},{"_key":123},{"_key":125},{"_key":127},{"_key":129},{"_key":131},{"_key":133},{"_key":141},{"_key":143},"2022-09-09T14:39:50.986Z","2024-09-17T00:01:20.651Z","Modified",{"cisa_kev":236,"cisa_ransomware":236,"cisa_vendor":9,"epss_severity":237,"epss_score":238,"severity":239,"severity_score":240,"severity_version":241,"severity_source":242,"severity_vector":243,"severity_status":234},false,"low",0.00049,"medium",6.3,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:H",[245,253,258,263],{"url":246,"sources":247,"tags":249},"https://bugzilla.openanolis.cn/show_bug.cgi?id=2071",[242,248],"nvd",[250,251,252],"Issue Tracking","Permissions Required","Third Party Advisory",{"url":254,"sources":255,"tags":256},"https://www.debian.org/security/2023/dsa-5324",[242,248],[257,252],"Vendor Advisory",{"url":259,"sources":260,"tags":261},"https://lists.debian.org/debian-lts-announce/2023/03/msg00000.html",[242,248],[262],"Mailing List",{"url":264,"sources":265,"tags":266},"https://lists.debian.org/debian-lts-announce/2023/05/msg00006.html",[242,248],[262],[],{"date":269,"score":238,"percentile":270},"2026-06-03",0.15739,[272,276,279,282,285,289,292,295,298,301,304,307,310,313,316,320,323,326,329,331,334,337,340,343,346,349,351,353,356,359,362,364,367,370,373,376,379,382,385,388,391,394,397,400,403,406,409,412,414,417,420,423,426,429,432,434,437,440,443,446,449,452,455,458,461,464,467,469,473,476,479,482,485,488,491,494,496,499,502,505,508,511,513,516,519,522,525,528,531,534],{"date":273,"score":274,"percentile":275},"2025-11-04",0.00038,0.10767,{"date":277,"score":274,"percentile":278},"2025-11-05",0.10794,{"date":280,"score":274,"percentile":281},"2025-11-06",0.10907,{"date":283,"score":274,"percentile":284},"2025-11-07",0.10927,{"date":286,"score":287,"percentile":288},"2025-11-08",0.00037,0.10532,{"date":290,"score":287,"percentile":291},"2025-11-09",0.10496,{"date":293,"score":287,"percentile":294},"2025-11-10",0.10459,{"date":296,"score":287,"percentile":297},"2025-11-11",0.10471,{"date":299,"score":287,"percentile":300},"2025-11-12",0.10502,{"date":302,"score":287,"percentile":303},"2025-11-13",0.10539,{"date":305,"score":287,"percentile":306},"2025-11-14",0.10546,{"date":308,"score":287,"percentile":309},"2025-11-15",0.1054,{"date":311,"score":287,"percentile":312},"2025-11-16",0.10538,{"date":314,"score":287,"percentile":315},"2025-11-17",0.1052,{"date":317,"score":318,"percentile":319},"2025-11-18",0.00371,0.56019,{"date":321,"score":318,"percentile":322},"2025-11-19",0.56035,{"date":324,"score":318,"percentile":325},"2025-11-20",0.56025,{"date":327,"score":287,"percentile":328},"2025-11-21",0.10542,{"date":330,"score":287,"percentile":306},"2025-11-22",{"date":332,"score":287,"percentile":333},"2025-11-23",0.10509,{"date":335,"score":287,"percentile":336},"2025-11-24",0.10474,{"date":338,"score":287,"percentile":339},"2025-11-25",0.10479,{"date":341,"score":287,"percentile":342},"2025-11-26",0.10472,{"date":344,"score":287,"percentile":345},"2025-11-27",0.10477,{"date":347,"score":287,"percentile":348},"2025-11-28",0.10466,{"date":350,"score":287,"percentile":348},"2025-11-29",{"date":352,"score":287,"percentile":345},"2025-11-30",{"date":354,"score":287,"percentile":355},"2025-12-01",0.10517,{"date":357,"score":287,"percentile":358},"2025-12-02",0.10524,{"date":360,"score":287,"percentile":361},"2025-12-03",0.10537,{"date":363,"score":287,"percentile":315},"2025-12-04",{"date":365,"score":287,"percentile":366},"2025-12-05",0.10548,{"date":368,"score":287,"percentile":369},"2025-12-06",0.10557,{"date":371,"score":287,"percentile":372},"2025-12-07",0.10553,{"date":374,"score":287,"percentile":375},"2025-12-08",0.10554,{"date":377,"score":287,"percentile":378},"2025-12-09",0.10601,{"date":380,"score":287,"percentile":381},"2025-12-10",0.10665,{"date":383,"score":287,"percentile":384},"2025-12-11",0.10695,{"date":386,"score":287,"percentile":387},"2025-12-12",0.10716,{"date":389,"score":287,"percentile":390},"2025-12-13",0.1072,{"date":392,"score":287,"percentile":393},"2025-12-14",0.10715,{"date":395,"score":287,"percentile":396},"2025-12-15",0.10657,{"date":398,"score":287,"percentile":399},"2025-12-16",0.10643,{"date":401,"score":287,"percentile":402},"2025-12-17",0.10723,{"date":404,"score":287,"percentile":405},"2025-12-18",0.10776,{"date":407,"score":287,"percentile":408},"2025-12-19",0.1079,{"date":410,"score":287,"percentile":411},"2025-12-20",0.10784,{"date":413,"score":287,"percentile":275},"2025-12-21",{"date":415,"score":287,"percentile":416},"2025-12-22",0.10741,{"date":418,"score":287,"percentile":419},"2025-12-23",0.10728,{"date":421,"score":287,"percentile":422},"2025-12-24",0.10736,{"date":424,"score":287,"percentile":425},"2025-12-25",0.10818,{"date":427,"score":287,"percentile":428},"2025-12-26",0.1081,{"date":430,"score":287,"percentile":431},"2025-12-27",0.10812,{"date":433,"score":287,"percentile":431},"2025-12-28",{"date":435,"score":287,"percentile":436},"2025-12-29",0.10775,{"date":438,"score":287,"percentile":439},"2025-12-30",0.10754,{"date":441,"score":287,"percentile":442},"2025-12-31",0.10804,{"date":444,"score":287,"percentile":445},"2026-01-01",0.10846,{"date":447,"score":287,"percentile":448},"2026-01-02",0.10844,{"date":450,"score":287,"percentile":451},"2026-01-03",0.10815,{"date":453,"score":287,"percentile":454},"2026-01-04",0.10743,{"date":456,"score":287,"percentile":457},"2026-01-05",0.107,{"date":459,"score":287,"percentile":460},"2026-01-06",0.10699,{"date":462,"score":287,"percentile":463},"2026-01-07",0.1073,{"date":465,"score":287,"percentile":466},"2026-01-08",0.10782,{"date":468,"score":287,"percentile":428},"2026-01-09",{"date":470,"score":471,"percentile":472},"2026-01-10",0.00039,0.11763,{"date":474,"score":471,"percentile":475},"2026-01-11",0.11735,{"date":477,"score":471,"percentile":478},"2026-01-12",0.11707,{"date":480,"score":471,"percentile":481},"2026-01-13",0.11683,{"date":483,"score":471,"percentile":484},"2026-01-14",0.11739,{"date":486,"score":471,"percentile":487},"2026-01-15",0.11743,{"date":489,"score":471,"percentile":490},"2026-01-16",0.11786,{"date":492,"score":471,"percentile":493},"2026-01-17",0.11794,{"date":495,"score":471,"percentile":487},"2026-01-18",{"date":497,"score":471,"percentile":498},"2026-01-19",0.11676,{"date":500,"score":471,"percentile":501},"2026-01-20",0.11655,{"date":503,"score":471,"percentile":504},"2026-01-21",0.11635,{"date":506,"score":471,"percentile":507},"2026-01-22",0.11622,{"date":509,"score":471,"percentile":510},"2026-01-23",0.11709,{"date":512,"score":471,"percentile":472},"2026-01-24",{"date":514,"score":471,"percentile":515},"2026-01-25",0.11717,{"date":517,"score":471,"percentile":518},"2026-01-26",0.11667,{"date":520,"score":471,"percentile":521},"2026-01-27",0.11656,{"date":523,"score":287,"percentile":524},"2026-01-28",0.1074,{"date":526,"score":287,"percentile":527},"2026-01-29",0.10725,{"date":529,"score":287,"percentile":530},"2026-01-30",0.10744,{"date":532,"score":287,"percentile":533},"2026-01-31",0.10762,{"date":535,"score":287,"percentile":536},"2026-02-01",0.10764,[538,542],{"source":242,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":539,"cvss_v4_0":9},{"baseScore":240,"baseSeverity":540,"vectorString":243,"impactScore":4,"exploitabilityScore":541},"MEDIUM",5.4,{"source":248,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":543,"cvss_v4_0":9},{"baseScore":544,"baseSeverity":540,"vectorString":545,"impactScore":546,"exploitabilityScore":547},5.5,"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",6,4.6,[549,558,568],{"ecosystem":9,"name":550,"vendor":551,"product":552,"cpe_part":553,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":554},"debian linux","debian","debian_linux","o",[555],{"version":556,"is_range":236,"range_type":557,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0","cpe",{"ecosystem":9,"name":559,"vendor":9,"product":559,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":560},"Kernel",[561],{"version":562,"is_range":563,"range_type":242,"version_start":564,"version_start_type":565,"version_end":566,"version_end_type":567,"fixed_in":9},">= v3.2-rc1, \u003C 5.13.0-52*",true,"v3.2-rc1","including","5.13.0-52*","excluding",{"ecosystem":9,"name":569,"vendor":570,"product":571,"cpe_part":553,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":572},"linux kernel","linux","linux_kernel",[573],{"version":574,"is_range":563,"range_type":557,"version_start":575,"version_start_type":565,"version_end":576,"version_end_type":565,"fixed_in":9},"gte3.2_lte5.13.0-52","3.2","5.13.0-52"]