Lucene search
K

22 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/26 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2021-23926

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The XML parsers used by XMLBeans up to version 2.6.0 did not set the properties needed to protect the user from malicious XML input. Vulnerabilities include...

9.1CVSS6.6AI score0.06215EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/03/03 4:41 p.m.20 views

Security Bulletin: There is a vulnerability in xmlbeans-2.6.0.jar used by IBM SPSS Collaboration and Deployment Service (CVE-2021-23926)

Summary There is a vulnerability in xmlbeans-2.6.0.jar used by IBM SPSS Collaboration and Deployment Service CVE-2021-23926 Vulnerability Details CVEID:CVE-2021-23926 DESCRIPTION: Apache XMLBeans is vulnerable to a denial of service, caused by an XML external entity XXE error when processing XML...

9.1CVSS6.7AI score0.06215EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/07/22 12:0 a.m.51 views

Oracle Business Intelligence Enterprise Edition (July 2024 CPU)

The version of Oracle Business Intelligence Enterprise Edition 12.2.1.4 installed on the remote host is affected by multiple vulnerabilities as referenced in the July 2024 CPU advisory, including the following: - Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Orac...

9.1CVSS6.5AI score0.06215EPSS
Exploits2References7
IBM Security Bulletins
IBM Security Bulletins
added 2024/01/17 1:27 p.m.37 views

Security Bulletin: There is a vulnerability in xmlbeans-2.6.0.jar used by IBM Maximo Asset Management application (CVE-2021-23926)

Summary There is a vulnerability in xmlbeans-2.6.0.jar used by IBM Maximo Asset Management application CVE-2021-23926 Vulnerability Details CVEID:CVE-2021-23926 DESCRIPTION: Apache XMLBeans is vulnerable to a denial of service, caused by an XML external entity XXE error when processing XML data. ...

9.1CVSS9AI score0.06215EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/01/11 1:32 p.m.40 views

Security Bulletin: Multiple vulnerabilities affect embedded rules in IBM Business Automation Workflow

Summary Embedded rules in IBM Business Automation Workflow are affected by multiple vulnerabilities. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2018-1000632 DESCRIPTION: dom4j could allow a remote attacker to execute arbitrary code o...

9.8CVSS9.3AI score0.3038EPSS
Exploits7Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/06/16 8:18 a.m.29 views

Security Bulletin: Vulnerability of xmlbeans-2.6.0.jar has affected APM DataPower agent.

Summary APM DataPower Agent is vulnerable to xmlbeans-2.6.0.jar vulnerability described in CVE 2021-23926. The fix includes xmlbeans-2.6.0.jar upgraded to xmlbeans-3.1.0.jar Vulnerability Details CVEID:CVE-2021-23926 DESCRIPTION: Apache XMLBeans is vulnerable to a denial of service, caused by an...

9.1CVSS9AI score0.06215EPSS
Exploits0Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 3:45 a.m.5 views

SUSE CVE-2021-23926

The XML parsers used by XMLBeans up to version 2.6.0 did not set the properties needed to protect the user from malicious XML input. Vulnerabilities include possibilities for XML Entity Expansion attacks. Affects XMLBeans up to and including v2.6.0...

7.4CVSS7.6AI score0.06215EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2022/11/07 12:0 a.m.34 views

SUSE: Security Advisory (SUSE-SU-2022:3875-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS6.6AI score0.06215EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/11/05 12:0 a.m.37 views

SUSE SLED12 / SLES12 Security Update : xmlbeans (SUSE-SU-2022:3876-1)

The remote SUSE Linux SLED12 / SLEDSAP12 / SLES12 / SLESSAP12 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2022:3876-1 advisory. - CVE-2021-23926: Fixed XML parsers not protecting from malicious XML input bsc1180915. Tenable has extracted the...

9.1CVSS6.8AI score0.06215EPSS
Exploits0References4
OSV
OSV
added 2022/11/04 2:12 p.m.9 views

SUSE-SU-2022:3875-1 Security update for xmlbeans

This update for xmlbeans fixes the following issues: - CVE-2021-23926: Fixed XML parsers not protecting from malicious XML input bsc1180915...

9.1CVSS9.3AI score0.06215EPSS
Exploits0References3
NCSC
NCSC
added 2022/10/19 12:0 a.m.11 views

Vulnerabilities fixed in Oracle Siebel CRM

Vulnerabilities have been fixed in Oracle Siebel CRM. The vulnerabilities allow a malicious party to conduct attacks execute attacks that result in the following categories of damage: Denial-of-Service DoS Manipulation of data Access to sensitive data Oracle has fixed vulnerabilities in the...

9.3CVSS7AI score0.42229EPSS
Exploits3
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/08 6:54 a.m.36 views

Security Bulletin: A vulnerability found in XMLBeans which hipped with IBM® Intelligent Operations Center (CVE-2021-23926)

Summary A vulnerability related to DOS attach has been found in XMLBeans which hipped with IBM® Intelligent Operations Center. Information about these vulnerabilities affecting IBM® Intelligent Operations Center have been published and addressed the applicable CVEs. Vulnerability Details...

9.1CVSS9.5AI score0.06215EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/08/30 4:52 p.m.42 views

Security Bulletin:IBM TRIRIGA Application Platform discloses CVE-2021-23926

Summary IBM TRIRIGA Application Platform discloses CVE-2021-23926 Vulnerability Details CVEID:CVE-2021-23926 DESCRIPTION: Apache XMLBeans is vulnerable to a denial of service, caused by an XML external entity XXE error when processing XML data. By sending a specially-crafted XML request, a remote...

9.1CVSS9AI score0.06215EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/01/14 11:39 p.m.35 views

Security Bulletin: Apache XMLBeans XML Entity Expansion security vulnerability in IBM FileNet Content Manager

Summary IBM FileNet Content Manager has XML Entity Expansion security vulnerabilties with Apache XMLBeans. Vulnerability Details CVEID: CVE-2021-23926 DESCRIPTION: Apache XMLBeans is vulnerable to a denial of service, caused by an XML external entity XXE error when processing XML data. By sending...

9.1CVSS8.7AI score0.06215EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/10/20 6:39 p.m.32 views

Security Bulletin: Apache XML Beans Vulnerability Affects the B2B API of IBM Sterling B2B Integrator (CVE-2021-23926)

Summary IBM Sterling B2B Integrator has addressed the security vulnerability. Vulnerability Details CVEID: CVE-2021-23926 DESCRIPTION: Apache XMLBeans is vulnerable to a denial of service, caused by an XML external entity XXE error when processing XML data. By sending a specially-crafted XML...

9.1CVSS1.9AI score0.06215EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/07/16 5:54 p.m.67 views

Security Bulletin: Multiple vulnerabilites affect IBM Jazz Foundation and IBM Engineering products.

Summary There are multiple vulnerabilities that are used by IBM Jazz Team Server affecting the following IBM Jazz Team Server based Applications: Engineering Lifecycle Management ELM, IBM Engineering Requirements Management DOORS Next DOORS Next, IBM Engineering Workflow Management EWM, IBM...

9.8CVSS9AI score0.99019EPSS
Exploits15Affected Software5
vulnersOsv
vulnersOsv
added 2021/06/16 5:37 p.m.3 views

ae.teletronics.nlp:entityextraction (>=1.3 <=1.4), ar.com.fdvs:DynamicJasper (=4.0.4) +5791 more potentially affected by CVE-2021-23926 via org.apache.xmlbeans:xmlbeans (>=2.2.0 <=2.6.0)

org.apache.xmlbeans:xmlbeans MAVEN version =2.2.0, =1.3, =1.10.2, =1.13.0, =1.0.1, =0.0.1, =1.1.8, =2.23.5, =2.23.5, =25.11.0 and more Source cves: CVE-2021-23926 Source advisory: OSV:GHSA-MW3R-PFMG-XP92...

9.1CVSS6.7AI score0.06215EPSS
Exploits0
OSV
OSV
added 2021/03/05 11:2 a.m.2 views

OESA-2021-1077 xmlbeans security update

XMLBeans is a tool that allows you to access the full power of XML in a Java friendly way. It is an XML-Java binding tool. The idea is that you can take advantage the richness and features of XML and XML Schema and have these features mapped as naturally as possible to the equivalent Java languag...

9.1CVSS9.1AI score0.06215EPSS
Exploits0References2
NVD
NVD
added 2021/01/14 3:15 p.m.20 views

CVE-2021-23926

The XML parsers used by XMLBeans up to version 2.6.0 did not set the properties needed to protect the user from malicious XML input. Vulnerabilities include possibilities for XML Entity Expansion attacks. Affects XMLBeans up to and including v2.6.0...

9.1CVSS9.3AI score0.06215EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2021/01/14 3:15 p.m.64 views

CVE-2021-23926

The XML parsers used by XMLBeans up to version 2.6.0 did not set the properties needed to protect the user from malicious XML input. Vulnerabilities include possibilities for XML Entity Expansion attacks. Affects XMLBeans up to and including v2.6.0...

9.1CVSS6.8AI score0.06215EPSS
Exploits0References3
Rows per page
Query Builder