Lucene search
K

67 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/03/24 1:54 p.m.15 views

Security Bulletin: Security vulnerabilities may affect IBM WebSphere Liberty and Expat that are shipped with IBM CICS TX Standard.

Summary Security vulnerabilities may affect IBM WebSphere Liberty and Expat that are shipped with IBM CICS TX Standard CVE-2025-14914, CVE-2022-23990, CVE-2024-28757, CVE-2025-59375 and CVE-2025-12635. IBM WebSphere Liberty and Expat have been updated within IBM CICS TX Standard to address these...

7.6CVSS5.9AI score0.03992EPSS
Exploits2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/17 5:38 p.m.9 views

Security Bulletin: Multiple security vulnerabilities are addressed with Cloud Pak foundational services before 4.6.20 shipped with IBM Cloud Pak for Business Automation iFixes for January 2026.

Summary IBM Cloud Pak for Business Automation includes IBM Cloud Pak foundational services. IBM Cloud Pak for Business Automation January 2026 security fixes update this dependency to 4.6.20 to address security vulnerabilities. Vulnerability Details CVEID:CVE-2022-23990 DESCRIPTION: Expat aka...

9.1CVSS7.1AI score0.03992EPSS
Exploits5Affected Software2
Tenable Nessus
Tenable Nessus
added 2025/12/03 12:0 a.m.4 views

RHEL 8 : expat (RHSA-2025:22607)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:22607 advisory. Expat is a C library for parsing XML documents. Security Fixes: expat: internal entity expansion CVE-2013-0340 expat: integer overflow in t...

7.5CVSS7.6AI score0.19433EPSS
Exploits2References10
RedHat Linux
RedHat Linux
added 2025/12/02 2:22 p.m.6 views

Important: Red Hat Security Advisory: expat security update

An update for expat is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring Syste...

7.5CVSS7.1AI score0.19433EPSS
Exploits2References5
Oracle linux
Oracle linux
added 2025/04/15 12:0 a.m.89 views

expat security update

2.2.5-17.0.1 - lib: Prevent integer overflow in doProlog CVE-2022-23990Orabug: 33910314 2.2.5-17 - Fix CVE-2024-8176 - Resolves: RHEL-57477...

7.5CVSS7.6AI score0.03992EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2022-23990

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Expat aka libexpat before 2.4.4 has an integer overflow in the doProlog function. CVE-2022-23990 Note that Nessus relies on the presence of the package as...

7.5CVSS6.9AI score0.03992EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/11/13 12:0 a.m.14 views

Oracle Linux 8 : expat (ELSA-2024-9502)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-9502 advisory. - lib: Prevent integer overflow in doProlog CVE-2022-23990Orabug: 33910314 - Fix CVE-2024-50602 Tenable has extracted the preceding description block directly...

7.5CVSS7.1AI score0.03992EPSS
Exploits0References2
Broadcom
Broadcom
added 2024/07/30 12:0 a.m.9 views

Multiple Vulnerabilities within libexpat (CVE-2018-20843, CVE-2019-15903, CVE-2021-46143, CVE-2022-22825, CVE-2022-23990)

Summary CVE-2018-20843 In libexpat in Expat before 2.2.7, XML input including XML names that contain a large number of colons could make the XML parser consume a high amount of RAM and CPU resources while processing enough to be usable for denial-of-service attacks. Base CVSS score: 7.5...

8.8CVSS7.3AI score0.07107EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.13 views

RHEL 6 : expat (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - expat: Large number of prefixed XML attributes on a single tag can crash libexpat CVE-2021-45960 - expat:...

9.6AI score0.19069EPSS
Exploits7References19
Amazon
Amazon
added 2023/11/03 12:0 a.m.36 views

Medium: expat

Issue Overview: Expat aka libexpat before 2.4.4 has an integer overflow in the doProlog function. CVE-2022-23990 Affected Packages: expat Issue Correction: Run yum update expat or yum update --advisory ALAS-2023-1882 to update your system. New Packages: i686: expat-devel-2.1.0-15.34.amzn1.i686...

7.5CVSS7.9AI score0.03992EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/10/05 12:0 a.m.68 views

Amazon Linux 2 : expat (ALAS-2023-2280)

The version of expat installed on the remote host is prior to 2.1.0-15. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-2280 advisory. Expat aka libexpat before 2.4.4 has an integer overflow in the doProlog function. CVE-2022-23990 A flaw was found in expat....

7.5CVSS6.6AI score0.03992EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2023/05/12 12:0 a.m.51 views

Nessus Network Monitor < 6.2.1 Multiple Vulnerabilities (TNS-2023-19)

According to its self-reported version, the Nessus Network Monitor running on the remote host is prior to 6.2.1. It is, therefore, affected by multiple vulnerabilities as referenced in the TNS-2023-19 advisory. - Nessus Network Monitor leverages third-party software to help provide underlying...

9.8CVSS8AI score0.33936EPSS
Exploits3References24
Tenable Nessus
Tenable Nessus
added 2023/03/21 12:0 a.m.95 views

Amazon Linux 2023 : expat, expat-devel, expat-static (ALAS2023-2023-058)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-058 advisory. In Expat aka libexpat before 2.4.3, a left shift by 29 or more places in the storeAtts function in xmlparse.c can lead to realloc misbehavior e.g., allocating too few bytes, or only freeing...

9.8CVSS8.5AI score0.33936EPSS
Exploits4References36
Tenable Nessus
Tenable Nessus
added 2023/01/30 12:0 a.m.61 views

Rocky Linux 8 : mingw-expat (RLSA-2022:7811)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:7811 advisory. - Expat aka libexpat before 2.4.4 has an integer overflow in the doProlog function. CVE-2022-23990 Note that Nessus has not tested for this issue but has instead...

7.5CVSS7.1AI score0.03992EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2022/12/09 12:0 a.m.45 views

Amazon Linux 2022 : expat (ALAS2022-2022-232)

The version of expat installed on the remote host is prior to 2.4.7-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-232 advisory. - In Expat aka libexpat before 2.4.3, a left shift by 29 or more places in the storeAtts function in xmlparse.c can lead t...

9.8CVSS7.4AI score0.33936EPSS
Exploits3References31
OpenVAS
OpenVAS
added 2022/11/09 12:0 a.m.24 views

Tenable Nessus < 10.2.0 Multiple Vulnerabilities (TNS-2022-11)

Tenable Nessus is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:tenable:nessus"; ifdescripti...

9.8CVSS8.9AI score0.51733EPSS
Exploits6References1
Tenable Nessus
Tenable Nessus
added 2022/11/09 12:0 a.m.32 views

RHEL 8 : mingw-expat (RHSA-2022:7811)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:7811 advisory. Expat is a C library for parsing XML documents. The mingw-expat packages provide a port of the Expat library for MinGW. The following packag...

9.8CVSS8.2AI score0.33936EPSS
Exploits1References15
AlmaLinux
AlmaLinux
added 2022/11/08 12:0 a.m.51 views

Important: mingw-expat security update

Expat is a C library for parsing XML documents. The mingw-expat packages provide a port of the Expat library for MinGW. The following packages have been upgraded to a later upstream version: mingw-expat 2.4.8. BZ2057023, BZ2057037, BZ2057127 Security Fixes: expat: Malformed 2- and 3-byte UTF-8...

9.8CVSS9.7AI score0.33936EPSS
Exploits1References14
OSV
OSV
added 2022/11/08 12:0 a.m.45 views

ALSA-2022:7811 Important: mingw-expat security update

Expat is a C library for parsing XML documents. The mingw-expat packages provide a port of the Expat library for MinGW. The following packages have been upgraded to a later upstream version: mingw-expat 2.4.8. BZ2057023, BZ2057037, BZ2057127 Security Fixes: expat: Malformed 2- and 3-byte UTF-8...

9.8CVSS9.3AI score0.33936EPSS
Exploits1References14
OpenVAS
OpenVAS
added 2022/11/07 12:0 a.m.29 views

Tenable Nessus < 8.15.3, 10.x < 10.1.1 Multiple Vulnerabilities (TNS-2022-05)

Tenable Nessus is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:tenable:nessus"; ifdescripti...

9.8CVSS9.2AI score0.04829EPSS
Exploits2References1
Rows per page
Query Builder