Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:931B842EADF7333E6D5CB763EDB5379A:EB5A6
HistoryJun 26, 2014 - 5:16 p.m.

lxml security update

2014-06-2617:16:35
lists.debian.org
15

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.013 Low

EPSS

Percentile

84.4%

JSON

Package : lxml
Version : 2.2.8-2+deb6u1
CVE ID : CVE-2014-3146
Debian Bug : #746812

It was discovered that clean_html() function of lxml (pythonic bindings
for the libxml2 and libxslt libraries) performed insufficient sanitisation
for some non-printable characters. This could lead to cross-site
scripting.

Related

openvas 17
prion 2
osv 7
debiancve 2
nessus 19
cve 2
mageia 1
ubuntucve 2
debian 3
github 2
ubuntu 1
redhatcve 1
securityvulns 1
openvas
openvas
Debian Security Advisory DSA 2941-1 (lxml - security update)
2014-06-01 00:00:00
Debian: Security Advisory (DSA-2941-1)
2014-05-31 00:00:00
Mageia: Security Advisory (MGASA-2014-0218)
2022-01-28 00:00:00
prion
prion
Cross site scripting
2014-05-14 19:55:00
Design/Logic Flaw
2018-12-02 10:29:00
osv
osv
lxml - security update
2014-06-01 00:00:00
lxml - security update
2014-06-26 00:00:00
lxml Cross-site Scripting Via Control Characters
2022-05-14 04:01:59
debiancve
debiancve
CVE-2014-3146
2014-05-14 19:55:00
CVE-2018-19787
2018-12-02 10:29:00
nessus
nessus
SuSE 11.3 Security Update : python-lxml (SAT Patch Number 9821)
2014-10-11 00:00:00
openSUSE Security Update : python-lxml (openSUSE-SU-2014:0735-1)
2014-06-13 00:00:00
Mandriva Linux Security Advisory : python-lxml (MDVSA-2015:112)
2015-03-30 00:00:00
cve
cve
CVE-2014-3146
2014-05-14 19:55:00
CVE-2018-19787
2018-12-02 10:29:00
mageia
mageia
Updated python-lxml package fix CVE-2014-3146
2014-05-15 02:10:47
ubuntucve
ubuntucve
CVE-2014-3146
2014-05-14 00:00:00
CVE-2018-19787
2018-12-02 00:00:00
debian
debian
[SECURITY] [DSA 2941-1] lxml security update
2014-06-01 08:36:18
lxml security update
2014-06-26 17:10:22
[SECURITY] [DLA 1604-1] lxml security update
2018-12-10 08:47:41
github
github
lxml Cross-site Scripting Via Control Characters
2022-05-14 04:01:59
Improper Neutralization of Input During Web Page Generation in LXML
2022-05-13 01:13:21
ubuntu
ubuntu
lxml vulnerability
2014-05-21 00:00:00
redhatcve
redhatcve
CVE-2018-19787
2018-12-17 23:08:11
securityvulns
securityvulns
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2014-05-10 00:00:00

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.013 Low

EPSS

Percentile

84.4%

JSON
Related for DEBIAN:931B842EADF7333E6D5CB763EDB5379A:EB5A6
openvas17prion2osv7debiancve2nessus19cve2mageia1ubuntucve2debian3github2ubuntu1redhatcve1securityvulns1