Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

19 matches found

Tenable Nessus
Tenable Nessusadded 2026/06/17 12:0 a.m.12 views

Hitachi Energy RTU500 NULL Pointer Dereference (CVE-2026-32776)

libexpat before 2.7.5 allows a NULL pointer dereference with empty external parameter entity content, causing Denial of Service impact. Product is only affected if IEC 61850 functionality is configured. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-...

5.5CVSS7.2AI score0.00144EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/05/16 12:0 a.m.9 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : mozjs115 (SUSE-SU-2026:1870-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1870-1 advisory. This update for mozjs115 fixes the following issues - CVE-2026-32776: libexpat: NULL pointer...

5.5CVSS7.1AI score0.00216EPSS
Exploits1References10
OPENSUSE Linux
OPENSUSE Linuxadded 2026/04/30 12:0 a.m.13 views

libmozjs-140-0-140.10.0-1.1 on GA media (moderate)

libmozjs-140-0-140.10.0-1.1 on GA media Announcement ID: openSUSE-SU-2026:10642-1 Rating: moderate Cross-References: CVE-2026-32776 CVE-2026-32777 CVE-2026-32778 CVSS scores: CVE-2026-32776 SUSE : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2026-32776 SUSE : 8.7...

8.7CVSS5.2AI score0.00216EPSS
Exploits1
Tenable Nessus
Tenable Nessusadded 2026/04/24 12:0 a.m.7 views

Photon OS 5.0: Expat PHSA-2026-5.0-0830

An update of the expat package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-5.0-0830. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

5.5CVSS5.2AI score0.00216EPSS
Exploits1References4
IBM AIX
IBM AIXadded 2026/04/15 3:19 p.m.9 views

Multiple vulnerabilities in Python affect AIX

IBM SECURITY ADVISORY First Issued: Wed Apr 15 15:19:52 CDT 2026 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/pythonadvisory19.asc Security Bulletin: Multiple vulnerabilities in Python affect AIX...

6.3CVSS5.8AI score0.00696EPSS
Exploits1
OpenVAS
OpenVASadded 2026/04/06 12:0 a.m.8 views

SUSE: Security Advisory (SUSE-SU-2026:1166-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.9AI score0.00216EPSS
Exploits1References6
OpenVAS
OpenVASadded 2026/04/06 12:0 a.m.8 views

openSUSE Security Advisory (SUSE-SU-2026:1166-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.9AI score0.00216EPSS
Exploits1References6
IBM Security Bulletins
IBM Security Bulletinsadded 2026/04/01 6:8 p.m.6 views

Security Bulletin: IBM HTTP Server is affected by multiple vulnerabilities due to libexpat (CVE-2026-32776, CVE-2026-32777, CVE-2026-32778)

Summary IBM HTTP Server used by IBM WebSphere Application Server is affected by multiple vulnerabilities due to libexpat. Vulnerability Details CVEID:CVE-2026-32776 DESCRIPTION: libexpat before 2.7.5 allows a NULL pointer dereference with empty external parameter entity content. CWE:CWE-476: NULL...

5.5CVSS5.9AI score0.00216EPSS
Exploits1Affected Software1
Amazon
Amazonadded 2026/04/01 12:0 a.m.12 views

Medium: thunderbird

Issue Overview: A flaw was found in libexpat. A remote attacker could exploit this vulnerability by providing specially crafted XML content with empty external parameter entities. This could lead to a NULL pointer dereference, causing the application to crash and resulting in a Denial of Service...

5.5CVSS5.9AI score0.00216EPSS
Exploits1
Amazon
Amazonadded 2026/04/01 12:0 a.m.7 views

Medium: firefox

Issue Overview: A flaw was found in libexpat. A remote attacker could exploit this vulnerability by providing specially crafted XML content with empty external parameter entities. This could lead to a NULL pointer dereference, causing the application to crash and resulting in a Denial of Service...

5.5CVSS5.9AI score0.00216EPSS
Exploits1
Amazon
Amazonadded 2026/04/01 12:0 a.m.6 views

Medium: firefox

Issue Overview: A flaw was found in libexpat. A remote attacker could exploit this vulnerability by providing specially crafted XML content with empty external parameter entities. This could lead to a NULL pointer dereference, causing the application to crash and resulting in a Denial of Service...

5.5CVSS5.9AI score0.00216EPSS
Exploits1
Tenable Nessus
Tenable Nessusadded 2026/04/01 12:0 a.m.4 views

Amazon Linux 2 : firefox, --advisory ALAS2FIREFOX-2026-055 (ALASFIREFOX-2026-055)

The version of firefox installed on the remote host is prior to 140.8.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2FIREFOX-2026-055 advisory. A flaw was found in libexpat. A remote attacker could exploit this vulnerability by providing specially crafted XM...

5.5CVSS5.9AI score0.00216EPSS
Exploits1References8
OpenVAS
OpenVASadded 2026/03/23 12:0 a.m.3 views

Mageia: Security Advisory (MGASA-2026-0061)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.8AI score0.00216EPSS
Exploits1References4
Circl
Circladded 2026/03/19 2:1 a.m.1 views

CVE-2026-32776

creationtimestamp| type| source ---|---|--- 2026-03-19 02:01:17+00:00| seen| https://bsky.app/profile/slackers.it/post/3mhevsumzjw2d 2026-04-01 18:20:07+00:00| seen| https://bsky.app/profile/knaepp.bsky.social/post/3mihcl3smmw26 2026-05-13 20:31:22+00:00| seen|...

5.5CVSS7.1AI score0.00144EPSS
Exploits0References4
Slackware Linux
Slackware Linuxadded 2026/03/18 11:33 p.m.6 views

[slackware-security] expat

New expat packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/expat-2.7.5-i586-1slack15.0.txz: Upgraded. This update fixes security issues: Fix NULL function pointer dereference for empty external...

5.5CVSS5.8AI score0.00216EPSS
Exploits1
Microsoft CVE
Microsoft CVEadded 2026/03/17 8:1 a.m.6 views

libexpat before 2.7.5 allows a NULL pointer dereference with empty external parameter entity content.

...

5.5CVSS7.1AI score0.00144EPSS
Exploits0
UbuntuCve
UbuntuCveadded 2026/03/16 2:19 p.m.3 views

CVE-2026-32776

libexpat before 2.7.5 allows a NULL pointer dereference with empty external parameter entity content...

5.5CVSS5.8AI score0.00144EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/03/16 6:54 a.m.5 views

CVE-2026-32776

libexpat before 2.7.5 allows a NULL pointer dereference with empty external parameter entity content...

4CVSS5.8AI score0.00144EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/03/16 6:54 a.m.4 views

CVE-2026-32776

libexpat before 2.7.5 allows a NULL pointer dereference with empty external parameter entity content...

4CVSS5.8AI score0.00144EPSS
Exploits0References3
Rows per page
Query Builder