CVE-2026-34394

creationtimestamp| type| source ---|---|--- 2026-03-27 18:37:45+00:00| published-proof-of-concept| https://github.com/WWBN/AVideo/security/advisories/GHSA-4wwr-7h7c-chqr 2026-03-31 23:20:06+00:00| published-proof-of-concept| Telegram/nmybyhyW9j--U7tziXdh4Y31RLU4faF2Hhhi6Dlcxk1tj2s 2026-04-01...

CVE-2025-34394

creationtimestamp| type| source ---|---|--- 2025-12-10 15:52:06+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115696069836441774 2025-12-10 17:15:39+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m7nkqpx3vc2e...

CVE-2024-34394

libxmljs2 is vulnerable to a type confusion vulnerability when parsing a specially crafted XML while invoking the namespaces function which invokes XmlNode::getlocalnamespaces on a grand-child of a node that refers to an entity. This vulnerability can lead to denial of service and remote code...

CVE-2024-34394 libxmljs2 namespaces type confusion RCE

libxmljs2 is vulnerable to a type confusion vulnerability when parsing a specially crafted XML while invoking the namespaces function which invokes XmlNode::getlocalnamespaces on a grand-child of a node that refers to an entity. This vulnerability can lead to denial of service and remote code...

CVE-2024-34394

CVE-2024-34394 affects libxmljs2. A type confusion occurs when parsing a specially crafted XML while invoking namespaces() on a grand-child node that refers to an entity (XmlNode::get_local_namespaces). Reported impact includes denial of service and remote code execution. Connected sources confir...

CVE-2024-34394 libxmljs2 namespaces type confusion RCE

libxmljs2 is vulnerable to a type confusion vulnerability when parsing a specially crafted XML while invoking the namespaces function which invokes XmlNode::getlocalnamespaces on a grand-child of a node that refers to an entity. This vulnerability can lead to denial of service and remote code...

CVE-2023-34394

creationtimestamp| type| source ---|---|--- 2023-07-20 12:17:49+00:00| seen| https://t.me/cibsecurity/67027...

CVE-2023-34394

In CVE-2023-34394, Keysight Geolocation Server versions up to v2.4.2 are affected by a path validation issue that allows an attacker to upload a crafted malicious file or delete files/directories with SYSTEM privileges. The underlying root cause is improper path validation, enabling local privile...

Keysight N6845A Geolocation Server

1. EXECUTIVE SUMMARY ​CVSS v3 7.8 ​ATTENTION: Low attack complexity ​Vendor: Keysight Technologies ​Equipment: N6854A Geolocation Server ​Vulnerabilities: Exposed Dangerous Method or Function, Relative Path Traversal 2. RISK EVALUATION ​Successful exploitation of these vulnerabilities could allow...

CVE-2022-34394

creationtimestamp| type| source ---|---|--- 2022-09-29 00:34:34+00:00| seen| https://t.me/cibsecurity/50629 2025-05-20 20:41:09+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/17076...

CVE-2022-34394

Dell OS10 (version 10.5.3.4) contains an Improper Certificate Validation vulnerability in the Support Assist component. A remote unauthenticated attacker could perform a man‑in‑the‑middle to access limited switch configuration data. The root cause is TLS certificate validation failure within Supp...

CVE-2021-34394

CVE-2021-34394 affects NVIDIA Trusty (NVIDIA OTE protocol) used in Jetson devices. The issue is an incorrect message stream deserialization in the OTE protocol that can allow a local attacker to trigger a buffer overflow, potentially leading to information disclosure and data modification. NVIDIA...