[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2023-31147":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T14:55:33.319Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":177,"aliases":178,"duplicate_of":9,"upstream":179,"downstream":180,"duplicates":215,"related":216,"reserved_at":9,"published_at":229,"modified_at":230,"state":231,"summary":232,"references_raw":241,"kevs":268,"epss":269,"epss_history":272,"metrics":536,"affected":548},"CVE-2023-31147","c-ares is an asynchronous resolver library. When /dev/urandom or RtlGenRandom() are unavailable, c-ares uses rand() to generate random numbers used for DNS query ids. This is not a CSPRNG, and it is also not seeded by srand() so will generate predictable output. Input from the random number generator is fed into a non-compilant RC4 implementation and may not be as strong as the original RC4 implementation. No attempt is made to look for modern OS-provided CSPRNGs like arc4random() that is widely available. This issue has been fixed in version 1.19.1.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-330","Use of Insufficiently Random Values","The product uses insufficiently random numbers or values in a security context that depends on unpredictable numbers.","weakness","Stable","Class","High",[20,145,173],{"id":21,"name":22,"techniques":23},"CAPEC-112","Brute Force",[24],{"id":25,"name":22,"tactics":26,"countermeasures":30},"T1110",[27],{"id":28,"name":29},"TA0031","Credential Access",[31,36,40,44,48,52,56,60,64,68,72,76,80,84,89,93,98,103,107,111,115,119,123,127,131,136,141],{"id":32,"name":33,"tactic":34},"D3-CCSA","Credential Compromise Scope Analysis",{"name":35},"Detect",{"id":37,"name":38,"tactic":39},"D3-AEM","Application Exception Monitoring",{"name":35},{"id":41,"name":42,"tactic":43},"D3-OPM","Operational Process Monitoring",{"name":35},{"id":45,"name":46,"tactic":47},"D3-UGLPA","User Geolocation Logon Pattern Analysis",{"name":35},{"id":49,"name":50,"tactic":51},"D3-PMAD","Protocol Metadata Anomaly Detection",{"name":35},{"id":53,"name":54,"tactic":55},"D3-CSPP","Client-server Payload Profiling",{"name":35},{"id":57,"name":58,"tactic":59},"D3-PHDURA","Per Host Download-Upload Ratio Analysis",{"name":35},{"id":61,"name":62,"tactic":63},"D3-NTSA","Network Traffic Signature Analysis",{"name":35},{"id":65,"name":66,"tactic":67},"D3-APCA","Application Protocol Command Analysis",{"name":35},{"id":69,"name":70,"tactic":71},"D3-NTCD","Network Traffic Community Deviation",{"name":35},{"id":73,"name":74,"tactic":75},"D3-RTSD","Remote Terminal Session Detection",{"name":35},{"id":77,"name":78,"tactic":79},"D3-CAA","Connection Attempt Analysis",{"name":35},{"id":81,"name":82,"tactic":83},"D3-ANAA","Administrative Network Activity Analysis",{"name":35},{"id":85,"name":86,"tactic":87},"D3-CR","Credential Revocation",{"name":88},"Evict",{"id":90,"name":91,"tactic":92},"D3-ANCI","Authentication Cache Invalidation",{"name":88},{"id":94,"name":95,"tactic":96},"D3-DUC","Decoy User Credential",{"name":97},"Deceive",{"id":99,"name":100,"tactic":101},"D3-CH","Credential Hardening",{"name":102},"Harden",{"id":104,"name":105,"tactic":106},"D3-MFA","Multi-factor Authentication",{"name":102},{"id":108,"name":109,"tactic":110},"D3-CRO","Credential Rotation",{"name":102},{"id":112,"name":113,"tactic":114},"D3-PR","Password Rotation",{"name":102},{"id":116,"name":117,"tactic":118},"D3-PWA","Password Authentication",{"name":102},{"id":120,"name":121,"tactic":122},"D3-CDP","Change Default Password",{"name":102},{"id":124,"name":125,"tactic":126},"D3-SPP","Strong Password Policy",{"name":102},{"id":128,"name":129,"tactic":130},"D3-OTP","One-time Password",{"name":102},{"id":132,"name":133,"tactic":134},"D3-RIC","Reissue Credential",{"name":135},"Restore",{"id":137,"name":138,"tactic":139},"D3-CTS","Credential Transmission Scoping",{"name":140},"Isolate",{"id":142,"name":143,"tactic":144},"D3-NTF","Network Traffic Filtering",{"name":140},{"id":146,"name":147,"techniques":148},"CAPEC-485","Signature Spoofing by Key Recreation",[149],{"id":150,"name":151,"tactics":152,"countermeasures":154},"T1552.004","Private Keys",[153],{"id":28,"name":29},[155,157,159,161,163,165,167,169,171],{"id":32,"name":33,"tactic":156},{"name":35},{"id":85,"name":86,"tactic":158},{"name":88},{"id":90,"name":91,"tactic":160},{"name":88},{"id":94,"name":95,"tactic":162},{"name":97},{"id":99,"name":100,"tactic":164},{"name":102},{"id":104,"name":105,"tactic":166},{"name":102},{"id":108,"name":109,"tactic":168},{"name":102},{"id":132,"name":133,"tactic":170},{"name":135},{"id":137,"name":138,"tactic":172},{"name":140},{"id":174,"name":175,"techniques":176},"CAPEC-59","Session Credential Falsification through Prediction",[],[],[],[],[181,183,185,187,189,191,193,195,197,199,201,203,205,207,209,211,213],{"_key":182},"SUSE-SU-2023:2655-1",{"_key":184},"SUSE-SU-2023:2662-1",{"_key":186},"RHSA-2023:3577",{"_key":188},"RHSA-2023:3586",{"_key":190},"RHSA-2023:4033",{"_key":192},"RHSA-2023:4034",{"_key":194},"RHSA-2023:4035",{"_key":196},"RHSA-2023:4036",{"_key":198},"RHSA-2023:4039",{"_key":200},"RHSA-2023:6635",{"_key":202},"SUSE-SU-2023:2477-1",{"_key":204},"SUSE-SU-2023:2861-1",{"_key":206},"SUSE-SU-2023:2313-1",{"_key":208},"SUSE-SU-2023:2663-1",{"_key":210},"SUSE-SU-2023:2669-1",{"_key":212},"OPENSUSE-SU-2024:12951-1",{"_key":214},"DEBIAN-CVE-2023-31147",[],[217,218,219,220,221,222,223,224,225,227],{"_key":182},{"_key":184},{"_key":202},{"_key":204},{"_key":206},{"_key":208},{"_key":210},{"_key":212},{"_key":226},"CGA-XJRJ-J9VJ-R4G9",{"_key":228},"CGA-PJC3-688R-5FC9","2023-05-25T21:55:47.585Z","2025-02-13T16:49:46.904Z","Modified",{"cisa_kev":233,"cisa_ransomware":233,"cisa_vendor":9,"epss_severity":234,"epss_score":235,"severity":236,"severity_score":237,"severity_version":238,"severity_source":239,"severity_vector":240,"severity_status":231},false,"low",0.00103,"medium",6.5,"v3.1","nvd","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",[242,249,255,260,264],{"url":243,"sources":244,"tags":246},"https://github.com/c-ares/c-ares/security/advisories/GHSA-8r8p-23f3-64c2",[245,239],"cve.org",[247,248],"X Refsource CONFIRM","Third Party Advisory",{"url":250,"sources":251,"tags":252},"https://github.com/c-ares/c-ares/releases/tag/cares-1_19_1",[245,239],[253,254],"X Refsource MISC","Release Notes",{"url":256,"sources":257,"tags":258},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/B5Z5XFNXTNPTCBBVXFDNZQVLLIE6VRBY/",[245,239],[259,248],"Mailing List",{"url":261,"sources":262,"tags":263},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UBFWILTA33LOSV23P44FGTQQIDRJHIY7/",[245,239],[259,248],{"url":265,"sources":266,"tags":267},"https://security.gentoo.org/glsa/202310-09",[245,239],[248],[],{"date":270,"score":235,"percentile":271},"2026-06-04",0.27671,[273,277,280,283,286,289,292,295,298,301,304,306,309,312,315,319,322,324,327,330,333,336,339,342,345,348,351,354,357,360,363,366,369,372,375,378,381,384,387,390,393,396,399,402,405,408,411,414,417,419,422,425,428,431,434,437,439,442,445,448,451,454,457,459,461,464,467,470,473,475,478,481,483,486,489,492,495,498,501,504,507,510,513,515,518,521,524,527,530,533],{"date":274,"score":275,"percentile":276},"2025-11-04",0.00087,0.25768,{"date":278,"score":275,"percentile":279},"2025-11-05",0.25747,{"date":281,"score":275,"percentile":282},"2025-11-06",0.25754,{"date":284,"score":275,"percentile":285},"2025-11-07",0.25755,{"date":287,"score":275,"percentile":288},"2025-11-08",0.2575,{"date":290,"score":275,"percentile":291},"2025-11-09",0.25708,{"date":293,"score":275,"percentile":294},"2025-11-10",0.2567,{"date":296,"score":275,"percentile":297},"2025-11-11",0.25681,{"date":299,"score":275,"percentile":300},"2025-11-12",0.2571,{"date":302,"score":275,"percentile":303},"2025-11-13",0.25711,{"date":305,"score":275,"percentile":291},"2025-11-14",{"date":307,"score":275,"percentile":308},"2025-11-15",0.25701,{"date":310,"score":275,"percentile":311},"2025-11-16",0.25653,{"date":313,"score":275,"percentile":314},"2025-11-17",0.25609,{"date":316,"score":317,"percentile":318},"2025-11-18",0.0033,0.5289,{"date":320,"score":317,"percentile":321},"2025-11-19",0.52904,{"date":323,"score":317,"percentile":318},"2025-11-20",{"date":325,"score":275,"percentile":326},"2025-11-21",0.25537,{"date":328,"score":275,"percentile":329},"2025-11-22",0.25535,{"date":331,"score":275,"percentile":332},"2025-11-23",0.25483,{"date":334,"score":275,"percentile":335},"2025-11-24",0.25461,{"date":337,"score":275,"percentile":338},"2025-11-25",0.25447,{"date":340,"score":275,"percentile":341},"2025-11-26",0.25433,{"date":343,"score":275,"percentile":344},"2025-11-27",0.25437,{"date":346,"score":275,"percentile":347},"2025-11-28",0.25412,{"date":349,"score":275,"percentile":350},"2025-11-29",0.25401,{"date":352,"score":275,"percentile":353},"2025-11-30",0.25374,{"date":355,"score":275,"percentile":356},"2025-12-01",0.2541,{"date":358,"score":275,"percentile":359},"2025-12-02",0.25435,{"date":361,"score":275,"percentile":362},"2025-12-03",0.25443,{"date":364,"score":275,"percentile":365},"2025-12-04",0.25375,{"date":367,"score":275,"percentile":368},"2025-12-05",0.25429,{"date":370,"score":275,"percentile":371},"2025-12-06",0.25431,{"date":373,"score":275,"percentile":374},"2025-12-07",0.25394,{"date":376,"score":275,"percentile":377},"2025-12-08",0.25397,{"date":379,"score":275,"percentile":380},"2025-12-09",0.25444,{"date":382,"score":275,"percentile":383},"2025-12-10",0.2551,{"date":385,"score":275,"percentile":386},"2025-12-11",0.25526,{"date":388,"score":275,"percentile":389},"2025-12-12",0.25541,{"date":391,"score":275,"percentile":392},"2025-12-13",0.25546,{"date":394,"score":275,"percentile":395},"2025-12-14",0.25516,{"date":397,"score":275,"percentile":398},"2025-12-15",0.25486,{"date":400,"score":275,"percentile":401},"2025-12-16",0.25501,{"date":403,"score":275,"percentile":404},"2025-12-17",0.25575,{"date":406,"score":275,"percentile":407},"2025-12-18",0.25634,{"date":409,"score":275,"percentile":410},"2025-12-19",0.2565,{"date":412,"score":275,"percentile":413},"2025-12-20",0.25619,{"date":415,"score":275,"percentile":416},"2025-12-21",0.25566,{"date":418,"score":275,"percentile":386},"2025-12-22",{"date":420,"score":275,"percentile":421},"2025-12-23",0.25495,{"date":423,"score":275,"percentile":424},"2025-12-24",0.25505,{"date":426,"score":275,"percentile":427},"2025-12-25",0.25579,{"date":429,"score":275,"percentile":430},"2025-12-26",0.25568,{"date":432,"score":275,"percentile":433},"2025-12-27",0.25567,{"date":435,"score":275,"percentile":436},"2025-12-28",0.25439,{"date":438,"score":275,"percentile":347},"2025-12-29",{"date":440,"score":275,"percentile":441},"2025-12-30",0.25409,{"date":443,"score":275,"percentile":444},"2025-12-31",0.2547,{"date":446,"score":275,"percentile":447},"2026-01-01",0.2557,{"date":449,"score":275,"percentile":450},"2026-01-02",0.25564,{"date":452,"score":275,"percentile":453},"2026-01-03",0.2555,{"date":455,"score":275,"percentile":456},"2026-01-04",0.25452,{"date":458,"score":275,"percentile":359},"2026-01-05",{"date":460,"score":275,"percentile":362},"2026-01-06",{"date":462,"score":275,"percentile":463},"2026-01-07",0.25469,{"date":465,"score":275,"percentile":466},"2026-01-08",0.25515,{"date":468,"score":275,"percentile":469},"2026-01-09",0.25493,{"date":471,"score":275,"percentile":472},"2026-01-10",0.25473,{"date":474,"score":275,"percentile":456},"2026-01-11",{"date":476,"score":275,"percentile":477},"2026-01-12",0.25408,{"date":479,"score":275,"percentile":480},"2026-01-13",0.25384,{"date":482,"score":275,"percentile":341},"2026-01-14",{"date":484,"score":275,"percentile":485},"2026-01-15",0.25423,{"date":487,"score":275,"percentile":488},"2026-01-16",0.25456,{"date":490,"score":275,"percentile":491},"2026-01-17",0.25463,{"date":493,"score":275,"percentile":494},"2026-01-18",0.25415,{"date":496,"score":275,"percentile":497},"2026-01-19",0.25366,{"date":499,"score":275,"percentile":500},"2026-01-20",0.25345,{"date":502,"score":275,"percentile":503},"2026-01-21",0.25291,{"date":505,"score":275,"percentile":506},"2026-01-22",0.2527,{"date":508,"score":275,"percentile":509},"2026-01-23",0.25349,{"date":511,"score":275,"percentile":512},"2026-01-24",0.25356,{"date":514,"score":275,"percentile":506},"2026-01-25",{"date":516,"score":275,"percentile":517},"2026-01-26",0.25177,{"date":519,"score":275,"percentile":520},"2026-01-27",0.2516,{"date":522,"score":275,"percentile":523},"2026-01-28",0.25156,{"date":525,"score":275,"percentile":526},"2026-01-29",0.25119,{"date":528,"score":275,"percentile":529},"2026-01-30",0.25101,{"date":531,"score":275,"percentile":532},"2026-01-31",0.25094,{"date":534,"score":275,"percentile":535},"2026-02-01",0.25145,[537,544],{"source":245,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":538,"cvss_v4_0":9},{"baseScore":539,"baseSeverity":540,"vectorString":541,"impactScore":542,"exploitabilityScore":543},5.9,"MEDIUM","CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",6,5.6,{"source":239,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":545,"cvss_v4_0":9},{"baseScore":237,"baseSeverity":540,"vectorString":240,"impactScore":546,"exploitabilityScore":547},4.2,10,[549,560,564],{"ecosystem":9,"name":550,"vendor":551,"product":550,"cpe_part":552,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":553},"c-ares","c-ares_project","a",[554],{"version":555,"is_range":556,"range_type":557,"version_start":9,"version_start_type":9,"version_end":558,"version_end_type":559,"fixed_in":9},"lt1.19.1",true,"cpe","1.19.1","excluding",{"ecosystem":9,"name":550,"vendor":550,"product":550,"cpe_part":552,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":561},[562],{"version":563,"is_range":556,"range_type":245,"version_start":9,"version_start_type":9,"version_end":558,"version_end_type":559,"fixed_in":9},"\u003C 1.19.1",{"ecosystem":9,"name":565,"vendor":566,"product":565,"cpe_part":567,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":568},"fedora","fedoraproject","o",[569,571],{"version":570,"is_range":233,"range_type":557,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"37",{"version":572,"is_range":233,"range_type":557,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"38"]