[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2023-52426":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":24,"aliases":25,"duplicate_of":9,"upstream":26,"downstream":27,"duplicates":40,"related":41,"reserved_at":9,"published_at":45,"modified_at":46,"state":47,"summary":48,"references_raw":57,"kevs":90,"epss":91,"epss_history":94,"metrics":358,"affected":366},"CVE-2023-52426","libexpat through 2.5.0 allows recursive XML Entity Expansion if XML_DTD is undefined at compile time.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-776","Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion')","The product uses XML documents and allows their structure to be defined with a Document Type Definition (DTD), but it does not properly control the number of recursive definitions of entities.","weakness","Draft","Base","Medium",[20],{"id":21,"name":22,"techniques":23},"CAPEC-197","Exponential Data Expansion",[],[],[],[],[28,30,32,34,36,38],{"_key":29},"ALPINE-CVE-2023-52426",{"_key":31},"OPENSUSE-SU-2024:13695-1",{"_key":33},"SUSE-SU-2025:20207-1",{"_key":35},"SUSE-SU-2025:20311-1",{"_key":37},"DEBIAN-CVE-2023-52426",{"_key":39},"UBUNTU-CVE-2023-52426",[],[42,43,44],{"_key":31},{"_key":33},{"_key":35},"2024-02-04T00:00:00.000Z","2025-11-04T18:21:47.008Z","Modified",{"cisa_kev":49,"cisa_ransomware":49,"cisa_vendor":9,"epss_severity":50,"epss_score":51,"severity":52,"severity_score":53,"severity_version":54,"severity_source":55,"severity_vector":56,"severity_status":47},false,"low",0.00022,"medium",5.5,"v3.1","cve.org","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",[58,64,69,74,78,82,86],{"url":59,"sources":60,"tags":62},"https://github.com/libexpat/libexpat/pull/777",[55,61],"nvd",[63],"Vendor Advisory",{"url":65,"sources":66,"tags":67},"https://github.com/libexpat/libexpat/commit/0f075ec8ecb5e43f8fdca5182f8cca4703da0404",[55,61],[68,63],"Patch",{"url":70,"sources":71,"tags":72},"https://cwe.mitre.org/data/definitions/776.html",[55,61],[73],"Technical Description",{"url":75,"sources":76,"tags":77},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PNRIHC7DVVRAIWFRGV23Y6UZXFBXSQDB/",[55,61],[63],{"url":79,"sources":80,"tags":81},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WNUBSGZFEZOBHJFTAD42SAN4ATW2VEMV/",[55,61],[63],{"url":83,"sources":84,"tags":85},"https://security.netapp.com/advisory/ntap-20240307-0005/",[55,61],[],{"url":87,"sources":88,"tags":89},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PNRIHC7DVVRAIWFRGV23Y6UZXFBXSQDB/",[55,61],[],[],{"date":92,"score":51,"percentile":93},"2026-06-04",0.06364,[95,99,103,106,109,112,115,118,121,124,127,130,133,136,139,143,146,149,152,155,157,160,163,165,168,170,173,176,179,182,185,188,191,194,197,200,203,206,209,212,215,218,221,224,227,230,233,236,239,242,244,247,250,253,256,259,262,265,268,271,274,277,280,283,286,289,292,295,297,299,302,305,308,311,314,316,319,322,325,328,331,334,336,339,342,345,348,350,352,355],{"date":96,"score":97,"percentile":98},"2025-11-04",0.00019,0.03573,{"date":100,"score":101,"percentile":102},"2025-11-05",0.00018,0.03419,{"date":104,"score":101,"percentile":105},"2025-11-06",0.03452,{"date":107,"score":101,"percentile":108},"2025-11-07",0.03454,{"date":110,"score":101,"percentile":111},"2025-11-08",0.03456,{"date":113,"score":101,"percentile":114},"2025-11-09",0.03462,{"date":116,"score":101,"percentile":117},"2025-11-10",0.03445,{"date":119,"score":101,"percentile":120},"2025-11-11",0.03475,{"date":122,"score":101,"percentile":123},"2025-11-12",0.03484,{"date":125,"score":101,"percentile":126},"2025-11-13",0.03518,{"date":128,"score":101,"percentile":129},"2025-11-14",0.0353,{"date":131,"score":101,"percentile":132},"2025-11-15",0.0356,{"date":134,"score":101,"percentile":135},"2025-11-16",0.03558,{"date":137,"score":101,"percentile":138},"2025-11-17",0.03542,{"date":140,"score":141,"percentile":142},"2025-11-18",0.00089,0.21579,{"date":144,"score":141,"percentile":145},"2025-11-19",0.21591,{"date":147,"score":141,"percentile":148},"2025-11-20",0.2157,{"date":150,"score":101,"percentile":151},"2025-11-21",0.03644,{"date":153,"score":101,"percentile":154},"2025-11-22",0.03648,{"date":156,"score":101,"percentile":151},"2025-11-23",{"date":158,"score":101,"percentile":159},"2025-11-24",0.03624,{"date":161,"score":101,"percentile":162},"2025-11-25",0.03628,{"date":164,"score":101,"percentile":151},"2025-11-26",{"date":166,"score":101,"percentile":167},"2025-11-27",0.03659,{"date":169,"score":101,"percentile":167},"2025-11-28",{"date":171,"score":101,"percentile":172},"2025-11-29",0.03702,{"date":174,"score":101,"percentile":175},"2025-11-30",0.03714,{"date":177,"score":101,"percentile":178},"2025-12-01",0.0381,{"date":180,"score":101,"percentile":181},"2025-12-02",0.03823,{"date":183,"score":101,"percentile":184},"2025-12-03",0.03836,{"date":186,"score":101,"percentile":187},"2025-12-04",0.03785,{"date":189,"score":101,"percentile":190},"2025-12-05",0.03839,{"date":192,"score":101,"percentile":193},"2025-12-06",0.03857,{"date":195,"score":101,"percentile":196},"2025-12-07",0.0386,{"date":198,"score":101,"percentile":199},"2025-12-08",0.03866,{"date":201,"score":101,"percentile":202},"2025-12-09",0.03912,{"date":204,"score":101,"percentile":205},"2025-12-10",0.03949,{"date":207,"score":101,"percentile":208},"2025-12-11",0.03936,{"date":210,"score":101,"percentile":211},"2025-12-12",0.03952,{"date":213,"score":101,"percentile":214},"2025-12-13",0.03964,{"date":216,"score":101,"percentile":217},"2025-12-14",0.03955,{"date":219,"score":101,"percentile":220},"2025-12-15",0.03914,{"date":222,"score":101,"percentile":223},"2025-12-16",0.03929,{"date":225,"score":101,"percentile":226},"2025-12-17",0.03967,{"date":228,"score":101,"percentile":229},"2025-12-18",0.03989,{"date":231,"score":101,"percentile":232},"2025-12-19",0.03973,{"date":234,"score":101,"percentile":235},"2025-12-20",0.03975,{"date":237,"score":101,"percentile":238},"2025-12-21",0.04003,{"date":240,"score":101,"percentile":241},"2025-12-22",0.03968,{"date":243,"score":101,"percentile":235},"2025-12-23",{"date":245,"score":101,"percentile":246},"2025-12-24",0.03986,{"date":248,"score":101,"percentile":249},"2025-12-25",0.04024,{"date":251,"score":101,"percentile":252},"2025-12-26",0.04025,{"date":254,"score":101,"percentile":255},"2025-12-27",0.04038,{"date":257,"score":101,"percentile":258},"2025-12-28",0.04031,{"date":260,"score":101,"percentile":261},"2025-12-29",0.04022,{"date":263,"score":101,"percentile":264},"2025-12-30",0.03966,{"date":266,"score":101,"percentile":267},"2025-12-31",0.03981,{"date":269,"score":101,"percentile":270},"2026-01-01",0.04067,{"date":272,"score":101,"percentile":273},"2026-01-02",0.04064,{"date":275,"score":101,"percentile":276},"2026-01-03",0.04052,{"date":278,"score":101,"percentile":279},"2026-01-04",0.03943,{"date":281,"score":101,"percentile":282},"2026-01-05",0.03907,{"date":284,"score":101,"percentile":285},"2026-01-06",0.03899,{"date":287,"score":101,"percentile":288},"2026-01-07",0.03923,{"date":290,"score":101,"percentile":291},"2026-01-08",0.03957,{"date":293,"score":101,"percentile":294},"2026-01-09",0.03958,{"date":296,"score":101,"percentile":241},"2026-01-10",{"date":298,"score":101,"percentile":279},"2026-01-11",{"date":300,"score":101,"percentile":301},"2026-01-12",0.03954,{"date":303,"score":101,"percentile":304},"2026-01-13",0.03947,{"date":306,"score":101,"percentile":307},"2026-01-14",0.03983,{"date":309,"score":101,"percentile":310},"2026-01-15",0.03909,{"date":312,"score":101,"percentile":313},"2026-01-16",0.03876,{"date":315,"score":101,"percentile":313},"2026-01-17",{"date":317,"score":101,"percentile":318},"2026-01-18",0.0385,{"date":320,"score":101,"percentile":321},"2026-01-19",0.03805,{"date":323,"score":101,"percentile":324},"2026-01-20",0.03775,{"date":326,"score":101,"percentile":327},"2026-01-21",0.03768,{"date":329,"score":101,"percentile":330},"2026-01-22",0.03774,{"date":332,"score":101,"percentile":333},"2026-01-23",0.03819,{"date":335,"score":101,"percentile":318},"2026-01-24",{"date":337,"score":101,"percentile":338},"2026-01-25",0.03837,{"date":340,"score":101,"percentile":341},"2026-01-26",0.03829,{"date":343,"score":101,"percentile":344},"2026-01-27",0.03817,{"date":346,"score":101,"percentile":347},"2026-01-28",0.03803,{"date":349,"score":101,"percentile":181},"2026-01-29",{"date":351,"score":101,"percentile":181},"2026-01-30",{"date":353,"score":101,"percentile":354},"2026-01-31",0.038,{"date":356,"score":101,"percentile":357},"2026-02-01",0.03905,[359,364],{"source":55,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":360,"cvss_v4_0":9},{"baseScore":53,"baseSeverity":361,"vectorString":56,"impactScore":362,"exploitabilityScore":363},"MEDIUM",6,4.6,{"source":61,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":365,"cvss_v4_0":9},{"baseScore":53,"baseSeverity":361,"vectorString":56,"impactScore":362,"exploitabilityScore":363},[367],{"ecosystem":9,"name":368,"vendor":369,"product":368,"cpe_part":370,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":371},"libexpat","libexpat_project","a",[372],{"version":373,"is_range":374,"range_type":375,"version_start":9,"version_start_type":9,"version_end":376,"version_end_type":377,"fixed_in":9},"lte2.5.0",true,"cpe","2.5.0","including"]