CVE-2026-9375

creationtimestamp| type| source ---|---|--- 2026-06-20 23:11:09+00:00| seen| https://bsky.app/profile/hugovalters.bsky.social/post/3moqy56mrki2s...

DEBIAN-CVE-2026-9375

urllib3 version 2.6.3 is vulnerable to a decompression bomb bypass in its streaming API preloadcontent=False when using Brotli support. The issue arises due to three independent code paths in response.py that bypass the maxlength protection introduced in version 2.6.0 to mitigate CVE-2025-66471...

CVE-2026-9375

urllib3 version 2.6.3 is vulnerable to a decompression bomb bypass in its streaming API preloadcontent=False when using Brotli support. The issue arises due to three independent code paths in response.py that bypass the maxlength protection introduced in version 2.6.0 to mitigate CVE-2025-66471...

MINI-6JH3-4QGH-9375

Bulletin has no description...

MINI-33RC-9375-9H4X

Bulletin has no description...

CGA-9375-H7WM-JWMW

Bulletin has no description...

TencentOS Server 4: python-xmltodict (TSSA-2025:0945)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0945 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

SUSE SLES15 / openSUSE 15 Security Update : python-xmltodict (SUSE-SU-2025:03511-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2025:03511-1 advisory. - CVE-2025-9375: XML injection vulnerability in xmltodict allows input data manipulation bsc1249036. Tenable has extracted th...

SUSE SLES15 Security Update : python-xmltodict (SUSE-SU-2025:03457-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2025:03457-1 advisory. - CVE-2025-9375: XML injection vulnerability in xmltodict allows input data manipulation bsc1249036. Tenable has extracted the preceding...

Security update for python-xmltodict

This update for python-xmltodict fixes the following issues: CVE-2025-9375: XML injection vulnerability in xmltodict allows input data manipulation bsc1249036. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

SUSE-SU-2025:03457-1 Security update for python-xmltodict

This update for python-xmltodict fixes the following issues: - CVE-2025-9375: XML injection vulnerability in xmltodict allows input data manipulation bsc1249036...

Security update for python-xmltodict

This update for python-xmltodict fixes the following issues: CVE-2025-9375: Fixed XML Injection vulnerability in xmltodict bsc1249036 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run t...

Ubuntu: Security Advisory (USN-7753-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Linux Distros Unpatched Vulnerability : CVE-2025-9375

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - XML Injection vulnerability in xmltodict allows Input Data Manipulation. This issue affects xmltodict: from 0.14.2 before 0.15.1. NOTE: the scope of this CVE is...

aaz-dev (>=1.0.2 <=2.10.1), acdc-aws-etl-pipeline (>=0.1.7 <=0.5.9) +1162 more potentially affected by CVE-2025-9375 via xmltodict (>=0.10.1 <=0.14.2)

xmltodict PYPI version =0.10.1, =1.0.2, =0.1.7, =0.0.7, =0.2.5a4, =0.0.1, =0.1.0, =0.17.9, =0.0.0.dev0, =0.1.0, =0.1.6 and more Source cves: CVE-2025-9375 Source advisory: SNYK:PYTHON-XMLTODICT-12427118...

CVE-2025-9375

XML Injection vulnerability in xmltodict allows Input Data Manipulation. This issue affects xmltodict: from 0.14.2 before 0.15.1. NOTE: the scope of this CVE is disputed by the vendor on the grounds that xmltodict.unparse delegates element-name handling to Python's xml.sax.saxutils.XMLGenerator,...

CVE-2019-9375

In hostapd, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-129344244...

CVE-2015-9375

Table Rate Shipping Add-on for iThemes Exchange before 1.1.0 for WordPress has XSS via addqueryarg and removequeryarg...

Linux Distros Unpatched Vulnerability : CVE-2017-9375

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - QEMU aka Quick Emulator, when built with USB xHCI controller emulator support, allows local guest OS privileged users to cause a denial of service infinite...

Linux Distros Unpatched Vulnerability : CVE-2016-9375

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the DTN dissector could go into an infinite loop, triggered by network traffic or a capture file. This was...