Lucene search
K

63 matches found

Vulnrichment
Vulnrichment
added 2026/03/16 5:52 p.m.3 views

CVE-2026-4224 Stack overflow parsing XML with deeply nested DTD content models

When an Expat parser with a registered ElementDeclHandler parses an inline document type definition containing a deeply nested content model a C stack overflow occurs...

6CVSS5.8AI score0.00621EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/03/16 5:52 p.m.9 views

CVE-2026-4224

When an Expat parser with a registered ElementDeclHandler parses an inline document type definition containing a deeply nested content model a C stack overflow occurs...

6CVSS5.8AI score0.00621EPSS
Exploits0References7Affected Software1
CVE
CVE
added 2026/03/16 5:52 p.m.39 views

CVE-2026-4224

CVE-2026-4224 is a CPython vulnerability: when an Expat parser with a registered ElementDeclHandler parses an inline DTD containing a deeply nested content model, a C stack overflow can occur. The connected advisories confirm this affects multiple Python3 series (3.9, 3.11, 3.12, 3.13, 3.14) and ...

7.5CVSS5.8AI score0.00621EPSS
Exploits0References9Affected Software1
Debian CVE
Debian CVE
added 2026/03/16 5:52 p.m.3 views

CVE-2026-4224

When an Expat parser with a registered ElementDeclHandler parses an inline document type definition containing a deeply nested content model a C stack overflow occurs...

7.5CVSS5.3AI score0.00621EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/03/16 5:52 p.m.7 views

CVE-2026-4224

When an Expat parser with a registered ElementDeclHandler parses an inline document type definition containing a deeply nested content model a C stack overflow occurs...

7.5CVSS5.4AI score0.00621EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/02/10 12:0 a.m.5 views

Siemens S7-1500 and SCALANCE Allocation of Resources Without Limits or Throttling (CVE-2025-59375)

libexpat in Expat before 2.7.2 allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...

7.5CVSS6.4AI score0.01279EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2026/01/05 5:40 p.m.7 views

Important: Red Hat Security Advisory: spice-client-win security update

An update for spice-client-win is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8.8CVSS6.7AI score0.73495EPSS
Exploits5References5
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.4 views

PT-2026-25791

Name of the Vulnerable Software and Affected Versions Expat affected versions not specified Description The Expat parser, when used with a registered ElementDeclHandler, is susceptible to a C stack overflow when processing an inline document type definition with a deeply nested content model. Thi...

7.5CVSS5.9AI score0.00621EPSS
Exploits0References189
RedHat Linux
RedHat Linux
added 2025/12/02 2:22 p.m.3 views

expat: internal entity expansion

expat before version 2.4.0 does not properly handle entities expansion unless an application developer uses the XMLSetEntityDeclHandler function, which allows remote attackers to cause a denial of service resource consumption, send HTTP requests to intranet servers, or read arbitrary files via a...

6.8CVSS7.5AI score0.19433EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.7 views

Siemens SIMATIC S7-1500 Improper Restriction of XML External Entity Reference (CVE-2018-20843)

In libexpat in Expat before 2.2.7, XML input including XML names that contain a large number of colons could make the XML parser consume a high amount of RAM and CPU resources while processing enough to be usable for denial-of-service attacks. This plugin only works with Tenable.ot. Please visit...

7.8CVSS6.6AI score0.07107EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.6 views

Siemens SIMATIC S7-1500 Improper Restriction of XML External Entity Reference (CVE-2013-0340)

expat 2.1.0 and earlier does not properly handle entities expansion unless an application developer uses the XMLSetEntityDeclHandler function, which allows remote attackers to cause a denial of service resource consumption, send HTTP requests to intranet servers, or read arbitrary files via a...

6.8CVSS6.9AI score0.19433EPSS
Exploits1References4
OSV
OSV
added 2025/10/31 2:13 p.m.5 views

OESA-2025-2565 expat security update

expat is a stream-oriented XML parser library written in C. expat excels with files too large to fit RAM, and where performance and flexibility are crucial. Security Fixes: A stack overflow vulnerability exists in the libexpat library due to the way it handles recursive entity expansion in XML...

7.5CVSS7AI score0.01569EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/09/15 12:0 a.m.2 views

Expat 安全漏洞

Expat is a fast streaming XML parser from Expat open source. A security vulnerability exists in Expat versions prior to 2.7.2, which stems from a small document parsing that may trigger a large dynamic memory allocation...

7.5CVSS6.1AI score0.01279EPSS
Exploits1References7
Rockylinux
Rockylinux
added 2024/09/30 2:30 p.m.19 views

expat security update

An update is available for expat. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Expat is a C library for parsing XML documents. Security Fixes: libexpat:...

9.8CVSS9.7AI score0.01686EPSS
Exploits0
Ubuntu
Ubuntu
added 2024/09/17 11:54 a.m.18 views

USN-7001-2: xmltok library vulnerabilities

USN-7001-1 fixed vulnerabilities in xmltol library. This update provides the corresponding updates for Ubuntu 24.04 LTS. Original advisory details: Shang-Hung Wan discovered that Expat, contained within the xmltok library, did not properly handle certain function calls when a negative input lengt...

9.8CVSS7.5AI score0.01686EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/02/04 12:0 a.m.5 views

PT-2024-3924

Name of the Vulnerable Software and Affected Versions: libexpat versions through 2.5.0 Description: The issue is related to the incorrect limitation of recursive references to objects in DTD, which can lead to a denial of service. This is caused by recursive XML Entity Expansion if XML DTD is...

9.8CVSS7.7AI score0.02006EPSS
Exploits2References85
SUSE CVE
SUSE CVE
added 2023/02/15 6:3 a.m.5 views

SUSE CVE-2009-1955

The expat XML parser in the aprxml interface in xml/aprxml.c in Apache APR-util before 1.3.7, as used in the moddav and moddavsvn modules in the Apache HTTP Server, allows remote attackers to cause a denial of service memory consumption via a crafted XML document containing a large number of nest...

7.5CVSS8.7AI score0.52988EPSS
Exploits2References8
SUSE CVE
SUSE CVE
added 2023/02/15 5:0 a.m.4 views

SUSE CVE-2016-5300

The XML parser in Expat does not use sufficient entropy for hash initialization, which allows context-dependent attackers to cause a denial of service CPU consumption via crafted identifiers in an XML document. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-0876...

6.5CVSS6.8AI score0.06539EPSS
Exploits0References24
OSV
OSV
added 2022/08/26 6:15 p.m.7 views

UBUNTU-CVE-2022-0217

It was discovered that an internal Prosody library to load XML based on libexpat does not properly restrict the XML features allowed in parsed XML data. Given suitable attacker input, this results in expansion of recursive entity references from DTDs CWE-776. In addition, depending on the libexpa...

7.5CVSS5.8AI score0.04563EPSS
Exploits1References4
CNNVD
CNNVD
added 2022/02/18 12:0 a.m.5 views

Expat 输入验证错误漏洞

Expat is a fast streaming XML parser written in C. An integer overflow vulnerability exists prior to Expat 2.4.5, which stems from the presence of an integer overflow in storeRawNames. No detailed vulnerability details are currently available...

9.8CVSS8.6AI score0.04781EPSS
Exploits1References73
Rows per page
Query Builder