Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2015-8241
HistoryDec 15, 2015 - 9:59 p.m.

CVE-2015-8241

2015-12-1521:59:00
CWE-119
[email protected]
web.nvd.nist.gov
61
cve-2015-8241
xmlnextchar
libxml2
denial of service
sensitive information
crafted xml data

7.1 High

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:N/A:P

0.011 Low

EPSS

Percentile

84.5%

JSON

The xmlNextChar function in libxml2 2.9.2 does not properly check the state, which allows context-dependent attackers to cause a denial of service (heap-based buffer over-read and application crash) or obtain sensitive information via crafted XML data.

References

Related

prion 1
ubuntucve 1
veracode 4
debiancve 1
nessus 27
openvas 15
ibm 12
osv 1
aix 1
debian 3
ubuntu 1
cloudfoundry 1
mageia 1
oraclelinux 2
centos 2
redhat 2
rubygems 1
freebsd 1
f5 1
amazon 2
rosalinux 1
suse 1
tenable 1
prion
prion
Heap overflow
2015-12-15 21:59:00
ubuntucve
ubuntucve
CVE-2015-8241
2015-11-18 00:00:00
veracode
veracode
Denial Of Service (DoS)
2018-08-01 07:37:06
Denial Of Service (DoS)
2019-05-02 05:51:46
Information Disclosure
2019-05-02 05:51:46
debiancve
debiancve
CVE-2015-8241
2015-12-15 21:59:00
nessus
nessus
AIX 7.2 TL 0 : libxml2 (IV80616)
2016-02-23 00:00:00
AIX 7.1 TL 4 : bos.rte.control (U868931)
2016-05-19 00:00:00
AIX 5.3 TL 12 : libxml2 (IV80617)
2016-02-23 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-355-1)
2023-03-08 00:00:00
Ubuntu: Security Advisory (USN-2834-1)
2015-12-15 00:00:00
Oracle: Security Advisory (ELSA-2015-2549)
2015-12-08 00:00:00
ibm
ibm
Security Bulletin: IBM Security Guardium Database Activity Monitor is affected by OpenSource LibXML2 and LibXML Vulnerability (CVE-2015-7942 CVE-2015-8241 CVE-2015-8242)
2018-06-16 21:40:08
Security Bulletin: Vulnerabilities in XML processing affect IBM DataPower Gateways
2021-06-08 22:18:27
Security Bulletin: Multiple vulnerabilities in libxml2 affect IBM Cognos Metrics Manager (CVE-2015-1819, CVE-2015-5312, CVE-2015-7497, CVE-2015-7498, CVE-2015-7499, CVE-2015-7500, CVE-2015-7941, CVE-2015-7942, CVE-2015-8035, CVE-2015-8241, CVE-2015-8317)
2018-06-15 23:15:11
osv
osv
libxml2 - security update
2015-11-29 00:00:00
aix
aix
Vulnerabilities in LibXML2 affect AIX,Vulnerabilities in LibXML2 affect VIOS
2016-02-22 08:06:13
debian
debian
[SECURITY] [DLA 355-1] libxml2 security update
2015-11-29 22:45:43
[SECURITY] [DSA 3430-1] libxml2 security update
2015-12-23 13:19:18
[SECURITY] [DSA 3430-1] libxml2 security update
2015-12-23 13:19:18
ubuntu
ubuntu
libxml2 vulnerabilities
2015-12-14 00:00:00
cloudfoundry
cloudfoundry
USN-2834-1 libxml2 vulnerability | Cloud Foundry
2016-01-07 00:00:00
mageia
mageia
Updated libxml2 packages fix security vulnerabilities
2015-11-26 23:47:39
oraclelinux
oraclelinux
libxml2 security update
2015-12-07 00:00:00
libxml2 security update
2015-12-07 00:00:00
centos
centos
libxml2 security update
2015-12-07 13:26:33
libxml2 security update
2015-12-07 20:38:05
redhat
redhat
(RHSA-2015:2549) Moderate: libxml2 security update
2015-12-07 00:00:00
(RHSA-2015:2550) Moderate: libxml2 security update
2015-12-07 10:04:33
rubygems
rubygems
Nokogiri gem contains several vulnerabilities in libxml2
2015-12-14 21:00:00
freebsd
freebsd
libxml2 -- multiple vulnerabilities
2015-11-20 00:00:00
f5
f5
K61570943 : Multiple libXML2 vulnerabilities
2016-02-15 00:00:00
amazon
amazon
Medium: libxml2
2015-12-14 10:00:00
Medium: libxml2
2019-05-29 19:14:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1905
2021-07-02 17:25:35
suse
suse
Security update for sles12-docker-image (important)
2016-03-16 15:28:52
tenable
tenable
[R1] Nessus Network Monitor 6.2.2 Fixes Multiple Vulnerabilities
2023-06-29 10:45:47

7.1 High

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:N/A:P

0.011 Low

EPSS

Percentile

84.5%

JSON
Related for CVE-2015-8241
prion1ubuntucve1veracode4debiancve1nessus27openvas15ibm12osv1aix1debian3ubuntu1cloudfoundry1mageia1oraclelinux2centos2redhat2rubygems1freebsd1f51amazon2rosalinux1suse1tenable1