Lucene search
K

77 matches found

Wolfi
Wolfi
added 6 days ago6 views

CVE-2024-45492 vulnerabilities

Vulnerabilities for packages: expat...

9.8CVSS7.1AI score0.01393EPSS
Exploits0
OpenVAS
OpenVAS
added 2026/01/08 12:0 a.m.5 views

openSUSE Security Advisory (SUSE-SU-2026:0044-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.8AI score0.01686EPSS
Exploits0References7
IBM Security Bulletins
IBM Security Bulletins
added 2025/12/10 7:36 p.m.14 views

Security Bulletin: IBM OmniFind Text Search Server for DB2 for i is affected by multiple vulnerabilities.  [CVE-2017-15691, CVE-2024-47072, CVE-2024-45492, CVE-2024-25269, CVE-2024-36052]

Summary IBM OmniFind Text Search Server for DB2 for i is vulnerable to overflow attacks CVE-2024-47072, CVE-2024-45492, Improper Restriction of XML External Entity Reference attack CVE-2017-15691, Uncontrolled Resource Consumption attack CVE-2024-25269, and Improper Neutralization attack...

9.8CVSS6.9AI score0.09021EPSS
Exploits2Affected Software2
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.6 views

Siemens SIMATIC S7-1500 Integer Overflow or Wraparound (CVE-2024-45492)

An issue was discovered in libexpat before 2.6.3. nextScaffoldPart in xmlparse.c can have an integer overflow for mgroupSize on 32-bit platforms where UINTMAX equals SIZEMAX. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information...

9.8CVSS7.3AI score0.01393EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2025/07/29 4:53 p.m.3 views

Security Bulletin: IBM® Db2® is affected by multiple vulnerabilities in expat library.

Summary IBM® Db2® is affected by vulnerabilities in expat library. Vulnerability Details CVEID:CVE-2024-45490 DESCRIPTION: An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for XMLParseBuffer. CWE:CWE-611: Improper Restriction of XML External Entity...

9.8CVSS7.2AI score0.01686EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/06/25 12:0 a.m.14 views

Nutanix AHV : Multiple Vulnerabilities (NXSA-AHV-10.3)

The version of AHV installed on the remote host is prior to AHV-10.3. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AHV-10.3 advisory. - libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a use-after-free in xmlSchemaIDCFillNodeTables and...

10CVSS7.1AI score0.8383EPSS
Exploits18References35
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.3 views

TencentOS Server 3: expat (TSSA-2024:0520)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0520 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

9.8CVSS7.5AI score0.01686EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.3 views

TencentOS Server 4: expat (TSSA-2024:0471)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0471 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

9.8CVSS7.5AI score0.01686EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2025/05/19 12:0 a.m.7 views

Huawei EulerOS: Security Advisory for expat (EulerOS-SA-2025-1462)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.1AI score0.01815EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.6 views

Alibaba Cloud Linux 3 : 0200: expat (ALINUX3-SA-2024:0200)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2024:0200 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2024-45490: An issue was discovered in...

9.8CVSS7.5AI score0.01686EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/03/20 12:0 a.m.15 views

Azure Linux 3.0 Security Update: expat / python3 (CVE-2024-45492)

The version of expat / python3 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-45492 advisory. - An issue was discovered in libexpat before 2.6.3. nextScaffoldPart in xmlparse.c can have an intege...

9.8CVSS7.3AI score0.01393EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/03/12 5:39 p.m.13 views

Security Bulletin: Vulnerability in libexpat affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component.

Summary Potential vulnerability in libexpat has been identified that affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component. The vulnerability have been addressed. Refer to details for additional information. Vulnerabilit...

9.8CVSS8.1AI score0.01686EPSS
Exploits0Affected Software2
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2024-45492

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in libexpat before 2.6.3. nextScaffoldPart in xmlparse.c can have an integer overflow for mgroupSize on 32-bit platforms where UINTMAX...

9.8CVSS7.2AI score0.01393EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/02/07 12:0 a.m.17 views

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-6.10.1)

The version of AOS installed on the remote host is prior to 6.10.1. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-6.10.1 advisory. - An issue was discovered in libexpat before 2.6.3. nextScaffoldPart in xmlparse.c can have an integer overflow for mgroupSize ...

9.8CVSS7.3AI score0.37618EPSS
Exploits9References65
IBM Security Bulletins
IBM Security Bulletins
added 2025/02/05 8:28 p.m.14 views

Security Bulletin: Vulnerabilities in libexpat affects IBM watsonx Assistant for IBM Cloud Pak for Data

Summary Potential vulnerabilities in libexpat has been identified that affects IBM watsonx Assistant for IBM Cloud Pak for Data. The vulnerabilities have been addressed. Refer to details for additional information. Vulnerability Details CVEID:CVE-2024-45490 DESCRIPTION: libexpat could provide...

9.8CVSS8.2AI score0.01686EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2025/02/05 12:0 a.m.8 views

Huawei EulerOS: Security Advisory for expat (EulerOS-SA-2025-1106)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.8AI score0.01686EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/02/05 12:0 a.m.11 views

Huawei EulerOS: Security Advisory for expat (EulerOS-SA-2025-1093)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.5AI score0.01686EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/01/30 9:29 p.m.10 views

Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to an arbitrary code execution in libexpat [CVE-2024-45492]

Summary IBM Watson Speech Services Cartridge is vulnerable to an arbitrary code execution in libexpat, caused by an integer overflow in the nextScaffoldPart function in xmlparse.c CVE-2024-45492. libexpat is used by our Speech Service runtimes. This vulnerabilitiy has been addressed. Please read...

9.8CVSS7.9AI score0.01393EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/12/12 12:0 a.m.16 views

EulerOS 2.0 SP11 : expat (EulerOS-SA-2024-2966)

According to the versions of the expat package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for XMLParseBuffer.CVE-2024-45490 An issue was...

9.8CVSS7.5AI score0.01686EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/12/12 12:0 a.m.14 views

EulerOS 2.0 SP12 : expat (EulerOS-SA-2024-2935)

According to the versions of the expat package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse.c can have an integer overflow for nDefaultAtts on 32-bit platforms where...

9.8CVSS7.5AI score0.01686EPSS
Exploits0References4
Rows per page
Query Builder