Lucene search
K

56 matches found

Wolfi
Wolfi
added 2026/07/01 2:16 p.m.4 views

CVE-2024-28757 vulnerabilities

Vulnerabilities for packages: expat...

7.5CVSS6.7AI score0.02006EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/24 1:54 p.m.19 views

Security Bulletin: Security vulnerabilities may affect IBM WebSphere Liberty and Expat that are shipped with IBM CICS TX Standard.

Summary Security vulnerabilities may affect IBM WebSphere Liberty and Expat that are shipped with IBM CICS TX Standard CVE-2025-14914, CVE-2022-23990, CVE-2024-28757, CVE-2025-59375 and CVE-2025-12635. IBM WebSphere Liberty and Expat have been updated within IBM CICS TX Standard to address these...

7.6CVSS5.9AI score0.03992EPSS
Exploits2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/17 5:38 p.m.10 views

Security Bulletin: Multiple security vulnerabilities are addressed with Cloud Pak foundational services before 4.6.20 shipped with IBM Cloud Pak for Business Automation iFixes for January 2026.

Summary IBM Cloud Pak for Business Automation includes IBM Cloud Pak foundational services. IBM Cloud Pak for Business Automation January 2026 security fixes update this dependency to 4.6.20 to address security vulnerabilities. Vulnerability Details CVEID:CVE-2022-23990 DESCRIPTION: Expat aka...

9.1CVSS7.1AI score0.03992EPSS
Exploits5Affected Software2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 9 : expat-2.5.0-1.el9_3.1 (AXSA:2024-7643:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7643:01 advisory. expat: parsing large tokens can trigger a denial of service CVE-2023-52425 expat: XML Entity Expansion CVE-2024-28757 CVE-2023-52425 libexpat throug...

7.5CVSS7.4AI score0.02006EPSS
Exploits2References3
Amazon
Amazon
added 2025/10/27 12:0 a.m.5 views

Important: xmlrpc-c

Issue Overview: libexpat through 2.5.0 allows a denial of service resource consumption because many full reparsings are required in the case of a large token for which multiple buffer fills are needed. Considering the tradeoff between the stability of Amazon Linux and the impact of CVE-2023-52425...

7.5CVSS7.4AI score0.02006EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2025/07/25 12:0 a.m.5 views

NewStart CGSL MAIN 7.02 : expat Vulnerability (NS-SA-2025-0123)

The remote NewStart CGSL host, running version MAIN 7.02, has expat packages installed that are affected by a vulnerability: - libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external parsers created via XMLExternalEntityParserCreate. CVE-2024-28757 Note...

7.5CVSS6.5AI score0.02006EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2024-28757

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external parsers created via XMLExternalEntityParserCreate...

7.5CVSS6.7AI score0.02006EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/02/27 12:0 a.m.11 views

Azure Linux 3.0 Security Update: expat / python3 (CVE-2024-28757)

The version of expat / python3 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-28757 advisory. - libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external...

7.5CVSS6.4AI score0.02006EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2024/10/28 12:0 a.m.9 views

Huawei EulerOS: Security Advisory for expat (EulerOS-SA-2024-2630)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8AI score0.02006EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2024/09/20 12:0 a.m.20 views

Fedora: Security Advisory (FEDORA-2024-7db9258d37)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.4AI score0.02527EPSS
Exploits5References40
OpenVAS
OpenVAS
added 2024/09/20 12:0 a.m.16 views

Fedora: Security Advisory (FEDORA-2024-1e6d6f8452)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.4AI score0.02527EPSS
Exploits5References40
OpenVAS
OpenVAS
added 2024/09/20 12:0 a.m.26 views

Fedora: Security Advisory (FEDORA-2024-6dedbc5cf9)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.3AI score0.02527EPSS
Exploits5References38
OpenVAS
OpenVAS
added 2024/09/20 12:0 a.m.15 views

Fedora: Security Advisory (FEDORA-2024-f652468298)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.3AI score0.02527EPSS
Exploits5References38
Slackware Linux
Slackware Linux
added 2024/09/09 1:6 a.m.30 views

[slackware-security] python3

New python3 packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/python3-3.9.20-i586-1slack15.0.txz: Upgraded. This update fixes security issues: Bundled libexpat was updated to 2.6.3. Fix quadratic...

9.8CVSS7.2AI score0.02527EPSS
Exploits5
OpenVAS
OpenVAS
added 2024/09/09 12:0 a.m.20 views

Slackware: Security Advisory (SSA:2024-252-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.5AI score0.02527EPSS
Exploits5References14
Tenable Nessus
Tenable Nessus
added 2024/09/03 12:0 a.m.31 views

EulerOS Virtualization 2.12.0 : expat (EulerOS-SA-2024-2324)

According to the versions of the expat package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external parsers created via...

7.5CVSS6.9AI score0.02006EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2024/08/20 12:0 a.m.29 views

EulerOS 2.0 SP12 : expat (EulerOS-SA-2024-2235)

According to the versions of the expat package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external parsers created via...

7.5CVSS7AI score0.02006EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2024/08/20 12:0 a.m.32 views

EulerOS Virtualization 2.11.0 : expat (EulerOS-SA-2024-2191)

According to the versions of the expat package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external parsers created via...

7.5CVSS6.5AI score0.02006EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/08/20 12:0 a.m.20 views

EulerOS 2.0 SP12 : expat (EulerOS-SA-2024-2211)

According to the versions of the expat package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external parsers created via...

7.5CVSS7AI score0.02006EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2024/08/20 12:0 a.m.12 views

Huawei EulerOS: Security Advisory for expat (EulerOS-SA-2024-2166)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.1AI score0.02006EPSS
Exploits1References2
Rows per page
Query Builder