Redhat.comRH:CVE-2020-7595

HistoryFeb 06, 2020 - 7:14 p.m.

CVE-2020-7595

2020-02-0619:14:18

redhat.com

access.redhat.com

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.006 Low

EPSS

Percentile

78.2%

JSON

xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation.

References

bugzilla.redhat.com/show_bug.cgi?id=1799786

nvd.nist.gov/vuln/detail/CVE-2020-7595

www.cve.org/CVERecord?id=CVE-2020-7595

ubuntucve 1

nessus 39

cbl_mariner 1

f5 1

openvas 20

debiancve 1

prion 1

veracode 1

osv 4

cve 1

github 2

alpinelinux 1

rubygems 1

ics 2

cloudfoundry 1

ubuntu 1

gentoo 1

fedora 5

mageia 1

ibm 10

amazon 2

redhat 22

almalinux 1

oraclelinux 2

suse 1

altlinux 2

archlinux 1

photon 5

centos 1

freebsd 2

debian 1

tenable 1

oracle 5

ubuntucve

CVE-2020-7595

2020-01-21 00:00:00

nessus

EulerOS 2.0 SP5 : libxml2 (EulerOS-SA-2020-1310)

2020-03-23 00:00:00

EulerOS Virtualization 3.0.2.2 : libxml2 (EulerOS-SA-2020-2228)

2020-10-21 00:00:00

EulerOS Virtualization 3.0.6.0 : libxml2 (EulerOS-SA-2020-1768)

2020-07-01 00:00:00

cbl_mariner

CVE-2020-7595 affecting package libxml2 2.9.10-4

2020-10-08 18:09:52

K04460334 : libxml2 2.9.10 vulnerability CVE-2020-7595

2021-04-16 00:00:00

openvas

Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2020-1310)

2020-03-24 00:00:00

Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2020-1768)

2020-07-03 00:00:00

Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2020-2228)

2020-10-21 00:00:00

debiancve

CVE-2020-7595

2020-01-21 23:15:00

prion

Design/Logic Flaw

2020-01-21 23:15:00

veracode

Denial Of Service (DoS)

2020-01-22 13:00:16

osv

libxml as used in Nokogiri has an infinite loop in a certain end-of-file situation

2020-02-24 19:12:36

Nokogiri updates packaged dependency on libxml2 from 2.9.10 to 2.9.12

2021-05-17 20:52:05

libxml2 - security update

2020-09-09 00:00:00

cve

CVE-2020-7595

2020-01-21 23:15:00

github

libxml as used in Nokogiri has an infinite loop in a certain end-of-file situation

2020-02-24 19:12:36

Nokogiri updates packaged dependency on libxml2 from 2.9.10 to 2.9.12

2021-05-17 20:52:05

alpinelinux

CVE-2020-7595

2020-01-21 23:15:00

rubygems

libxml2 2.9.10 has an infinite loop in a certain end-of-file situation

2020-02-11 21:00:00

ics

Siemens SINEMA Remote Connect Server

2021-04-13 12:00:00

Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1

2023-12-14 12:00:00

cloudfoundry

USN-4274-1: libxml2 vulnerabilities | Cloud Foundry

2020-02-20 00:00:00

ubuntu

libxml2 vulnerabilities

2020-02-10 00:00:00

gentoo

libxml2: Multiple vulnerabilities

2020-10-20 00:00:00

fedora

[SECURITY] Fedora 31 Update: libxml2-2.9.10-3.fc31

2020-02-15 02:18:36

[SECURITY] Fedora 32 Update: mingw-libxml2-2.9.10-1.fc32

2020-05-01 04:08:08

[SECURITY] Fedora 30 Update: libxml2-2.9.10-3.fc30

2020-04-30 02:51:35

mageia

Updated libxml2_2 packages fix security vulnerabilities

2020-02-25 00:44:46

ibm

Security Bulletin: IBM Bootable Media Creator (BoMC) is affected by vulnerabilities in libxml2

2021-06-21 20:35:29

Security Bulletin: IBM BladeCenter Advanced Management Module (AMM) is affected by vulnerabilities in Libxml2

2021-03-11 19:45:15

Security Bulletin: IBM MQ Appliance is affected by libxml2 vulnerabilities (CVE-2019-19956, CVE-2019-20388, CVE-2020-7595)

2021-01-20 12:25:59

amazon

Medium: libxml2

2020-10-26 18:09:00

Medium: libxml2

2020-10-22 18:25:00

redhat

(RHSA-2020:4479) Moderate: libxml2 security update

2020-11-03 12:08:23

(RHSA-2020:3996) Moderate: libxml2 security and bug fix update

2020-09-29 07:49:53

(RHSA-2020:2646) Important: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 SP3 security update

2020-06-22 13:04:38

almalinux

Moderate: libxml2 security update

2020-11-03 12:08:23

oraclelinux

libxml2 security update

2020-11-10 00:00:00

libxml2 security and bug fix update

2020-10-06 00:00:00

suse

Security update for libxml2 (moderate)

2020-05-23 00:00:00

altlinux

Security fix for the ALT Linux 10 package libxml2 version 1:2.9.10-alt4

2020-11-06 00:00:00

Security fix for the ALT Linux 9 package libxml2 version 1:2.9.10-alt4

2020-11-09 00:00:00

archlinux

[ASA-202011-15] libxml2: multiple issues

2020-11-17 00:00:00

photon

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-1.0-0271

2020-02-05 00:00:00

Important Photon OS Security Update - PHSA-2020-0203

2020-01-30 00:00:00

Important Photon OS Security Update - PHSA-2020-0271

2020-02-05 00:00:00

centos

libxml2 security update

2020-10-20 18:27:26

freebsd

libxml -- multiple vulnerabilities

2020-01-21 00:00:00

Gitlab -- Multiple Vulnerabilities

2020-04-30 00:00:00

debian

[SECURITY] [DLA 2369-1] libxml2 security update

2020-09-09 22:41:50

tenable

[R1] Nessus Network Monitor 6.2.2 Fixes Multiple Vulnerabilities

2023-06-29 10:45:47

oracle

Oracle Critical Patch Update Advisory - October 2022

2022-10-18 00:00:00

Oracle Critical Patch Update Advisory - October 2021

2021-10-19 00:00:00

Oracle Critical Patch Update Advisory - April 2023

2023-04-18 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.006 Low

EPSS

Percentile

78.2%

JSON

Related for RH:CVE-2020-7595