Lucene search
K

34 matches found

Wolfi
Wolfi
added 3 days ago3 views

CVE-2026-24515 vulnerabilities

Vulnerabilities for packages: expat...

2.9CVSS6.7AI score0.0017EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/06/18 12:0 a.m.10 views

Siemens RUGGEDCOM RST2428P NULL Pointer Dereference (CVE-2026-24515)

In libexpat before 2.7.4, XMLExternalEntityParserCreate does not copy unknown encoding handler user data. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description...

2.9CVSS6.7AI score0.0017EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/17 12:0 a.m.4 views

Hitachi Energy RTU500 NULL Pointer Dereference (CVE-2026-24515)

In libexpat before 2.7.4, XMLExternalEntityParserCreate does not copy unknown encoding handler user data, causing Denial of Service impact. Product is only affected if IEC 61850 functionality is configured. This plugin only works with Tenable.ot. Please visit...

2.9CVSS6.7AI score0.0017EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/06 12:0 a.m.7 views

EulerOS Virtualization 2.12.0 : expat (EulerOS-SA-2026-2098)

According to the versions of the expat package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : In libexpat before 2.7.4, XMLExternalEntityParserCreate does not copy unknown encoding handler user data.CVE-2026-24515 In libexpat...

7.8CVSS7.8AI score0.00193EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/06 12:0 a.m.8 views

EulerOS Virtualization 2.13.1 : expat (EulerOS-SA-2026-2124)

According to the versions of the expat package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : In libexpat before 2.7.4, XMLExternalEntityParserCreate does not copy unknown encoding handler user data.CVE-2026-24515 In libexpat...

7.8CVSS7.8AI score0.00193EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/06 12:0 a.m.8 views

EulerOS Virtualization 2.10.0 : expat (EulerOS-SA-2026-2045)

According to the versions of the expat package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : In libexpat before 2.7.4, XMLExternalEntityParserCreate does not copy unknown encoding handler user data.CVE-2026-24515 In libexpat...

7.8CVSS7.8AI score0.00193EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/06 12:0 a.m.9 views

EulerOS Virtualization 2.10.1 : expat (EulerOS-SA-2026-2018)

According to the versions of the expat package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : In libexpat before 2.7.4, XMLExternalEntityParserCreate does not copy unknown encoding handler user data.CVE-2026-24515 In libexpat...

7.8CVSS7.8AI score0.00193EPSS
Exploits0References3
OSV
OSV
added 2026/05/18 12:55 p.m.9 views

CLEANSTART-2026-RO34407 Security fixes for CVE-2025-13151, CVE-2026-22695, CVE-2026-22801, CVE-2026-24515, CVE-2026-25210, ghsa-72hv-8253-57qq, ghsa-qqpg-mvqg-649v applied in versions: 3.9.4-r5, 3.9.4-r6, 3.9.5-r0

Multiple security vulnerabilities affect the apache-zookeeper package. These issues are resolved in later releases. See references for individual vulnerability details...

7.8CVSS6.8AI score0.01109EPSS
Exploits1References13
OSV
OSV
added 2026/04/06 2:48 a.m.3 views

CLEANSTART-2026-HL08143 Security fixes for CVE-2025-13151, CVE-2026-22695, CVE-2026-22801, CVE-2026-24515, CVE-2026-25210, ghsa-72hv-8253-57qq, ghsa-qqpg-mvqg-649v applied in versions: 3.9.4-r5, 3.9.4-r6, 3.9.5-r0

Multiple security vulnerabilities affect the apache-zookeeper package. These issues are resolved in later releases. See references for individual vulnerability details...

7.8CVSS6.8AI score0.01109EPSS
Exploits1References13
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/17 10:3 p.m.14 views

Security Bulletin: AIX/VIOS Python is vulnerable to a null pointer dereference (CVE-2026-24515) and an integer overflow (CVE-2026-25210)

Summary Vulnerabilities in Python could cause a null pointer dereference CVE-2026-24515 or an integer overflow CVE-2026-25210. Python is used by AIX as part of Ansible node management automation. Vulnerability Details CVEID:CVE-2026-24515 DESCRIPTION: In libexpat before 2.7.4,...

7.8CVSS6.7AI score0.00193EPSS
Exploits0Affected Software2
IBM AIX
IBM AIX
added 2026/03/17 3:18 p.m.9 views

AIX Python is vulnerable to a null pointer dereference (CVE-2026-24515) and an integer overflow (CVE-2026-25210)

IBM SECURITY ADVISORY First Issued: Tue Mar 17 15:18:12 CDT 2026 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/pythonadvisory18.asc Security Bulletin: AIX Python is vulnerable to a null pointer dereference CVE-2026-24515 and an intege...

7.8CVSS6.6AI score0.00193EPSS
Exploits0
IBM AIX
IBM AIX
added 2026/03/17 3:13 p.m.12 views

AIX Perl is vulnerable to a null pointer dereference (CVE-2026-24515) and an integer overflow (CVE-2026-25210)

IBM SECURITY ADVISORY First Issued: Tue Mar 17 15:13:56 CDT 2026 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/perladvisory13.asc Security Bulletin: AIX Perl is vulnerable to a null pointer dereference CVE-2026-24515 and an integer...

7.8CVSS6.7AI score0.00193EPSS
Exploits0
OpenVAS
OpenVAS
added 2026/03/09 12:0 a.m.2 views

SUSE: Security Advisory (SUSE-SU-2026:20627-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS5.8AI score0.00193EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2026/03/09 12:0 a.m.4 views

openSUSE Security Advisory (SUSE-SU-2026:0826-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS5.8AI score0.00193EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/03/06 12:0 a.m.2 views

openSUSE 16 Security Update : expat (openSUSE-SU-2026:20306-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20306-1 advisory. - CVE-2026-24515: failure to copy the encoding handler data passed to XMLSetUnknownEncodingHandler may cause a NULL dereference bsc1257144. -...

7.8CVSS7AI score0.00193EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2026/02/16 12:0 a.m.3 views

Fedora: Security Advisory (FEDORA-2026-298986b2a3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

2.9CVSS5.5AI score0.0017EPSS
Exploits0References4
OSV
OSV
added 2026/02/13 7:27 p.m.5 views

CLSA-2026-1770735514 expat: Fix of CVE-2026-24515

CVE-2026-24515: Fix a null pointer dereference in the XML parser caused by the failure to copy user data for unknown encoding handlers...

2.9CVSS7.2AI score0.0017EPSS
Exploits0References1
OSV
OSV
added 2026/02/12 12:36 p.m.6 views

CLSA-2026-1770899757 Fix CVE(s): CVE-2026-24515

SECURITY UPDATE: XMLExternalEntityParserCreate failure to copy the encoding handler data can cause a NULL dereference CWE-476 from external entities that declare use of an unknown encoding. The expected impact is denial of service. - debian/patches/CVE-2026-24515.patch: Make...

2.9CVSS6.7AI score0.0017EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2026/02/12 12:0 a.m.3 views

Ubuntu: Security Advisory (USN-8023-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.6AI score0.00193EPSS
Exploits0References2
OSV
OSV
added 2026/02/10 4:39 p.m.6 views

CLSA-2026-1770741587 expat: Fix of CVE-2026-24515

CVE-2026-24515: fix NULL pointer dereference in XMLExternalEntityParserCreate...

2.9CVSS7.3AI score0.0017EPSS
Exploits0References1
Rows per page
Query Builder