Lucene search
K

1014 matches found

Redos
Redos
added 2026/05/26 12:0 a.m.14 views

ROS-20260526-73-0004

A vulnerability in the libexpat XML file parsing library is related to unrestricted resource allocation. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

7.5CVSS6.4AI score0.01279EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2026/05/26 12:0 a.m.18 views

PT-2026-43241

Name of the Vulnerable Software and Affected Versions HiDraw affected versions not specified Description A heap-based buffer overflow occurs in the XML parser functionality. An authenticated malicious user with local access can exploit this by using a specially crafted XML file, leading to memory...

4.4CVSS6.3AI score0.00103EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/21 12:0 a.m.9 views

authentik 安全漏洞

Authentik is an open-source identity provisioning application developed by Authentik. Versions of Authentik prior to 2025.12.4, as well as versions from 2026.2.0-rc1 to 2026.2.2, contain security vulnerabilities. These vulnerabilities stem from XML injection in SAML NameID fields, which could all...

8.7CVSS5.8AI score0.00393EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/20 9:58 a.m.20 views

CVE-2026-44664

A flaw was found in fast-xml-builder. The software, which builds XML from JSON, incorrectly sanitizes XML comment content. This allows a remote attacker to bypass the sanitization by using three consecutive dashes, enabling them to break out of an XML comment and inject arbitrary XML or HTML...

6.1CVSS5.8AI score0.00194EPSS
Exploits1References4
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in netcdf

A issue was discovered in libezxml.a in ezXML 0.8.6. The function ezxmldecode performs incorrect memory handling during the parsing of crafted XML files, resulting in a heap out-of-bounds read...

6.5CVSS6.4AI score0.00917EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.2 views

Astra Linux – Vulnerability in libxml2

A vulnerability was discovered in libxml2. Processing certain sch:name elements from the input XML file can trigger a memory corruption issue. This flaw allows an attacker to create a malicious XML input file that can cause libxml to crash, resulting in a denial of service or other undefined...

9.1CVSS7.1AI score0.01437EPSS
Exploits0References2
OSV
OSV
added 2026/05/19 3:31 p.m.6 views

GHSA-29WV-CV7P-XJC2 GlassFish's gadget handler is vulnerable to RCE

A critical Remote Code Execution RCE vulnerability was identified in the server-side template rendering mechanism used by the Glassfish gadget handler. The application processes .xml files and evaluates user-supplied values within a context where Expression Language EL “expressions” are processed...

9.6CVSS6AI score0.00628EPSS
Exploits2References4
Vulnrichment
Vulnrichment
added 2026/05/19 2:3 p.m.12 views

CVE-2026-2587

A critical Remote Code Execution RCE vulnerability was identified in the server-side template rendering mechanism used by the Glassfish gadget handler. The application processes .xml files and evaluates user-supplied values within a context where Expression Language EL “expressions” are processed...

9.6CVSS6.2AI score0.00628EPSS
Exploits2References1
RedHat Linux
RedHat Linux
added 2026/05/19 1:35 p.m.16 views

firefox: thunderbird: expat: libexpat in Expat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing

A memory amplification vulnerability in libexpat allows attackers to trigger excessive dynamic memory allocations by submitting specially crafted XML input. A small input 250 KiB can cause the parser to allocate hundreds of megabytes, leading to denial-of-service DoS through memory exhaustion...

7.5CVSS6.4AI score0.01279EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2026/05/19 9:19 a.m.13 views

libvirt: Denial of service in XML parsing

A flaw was discovered in libvirt in the XML file processing. More specifically, the parsing of user provided XML files was performed before the ACL checks. A malicious user with limited permissions could exploit this flaw by submitting a specially crafted XML file, causing libvirt to allocate too...

5.5CVSS6.6AI score0.00185EPSS
Exploits0References4
OSV
OSV
added 2026/05/19 1:34 a.m.9 views

JLSEC-2026-512

A directory traversal problem in the URL decoder of librsvg before 2.56.3 could be used by local or remote attackers to disclose files on the local filesystem outside of the expected area, as demonstrated by href=".?../../../../../../../../../../etc/passwd" in an xi:include element...

5.5CVSS5.8AI score0.02132EPSS
Exploits1References24
RedhatCVE
RedhatCVE
added 2026/05/18 7:58 p.m.15 views

CVE-2026-41895

changedetection.io is a free open source web page change detection tool. In 0.54.9 and earlier, xpathfilter switches to XML mode for XML/RSS content and creates etree.XMLParserstripcdata=False without explicitly disabling external entity resolution, external DTD loading, or network-backed entity...

8.2CVSS5.8AI score0.00266EPSS
Exploits0References1
OSV
OSV
added 2026/05/15 2:0 p.m.10 views

OESA-2026-2293 expat security update

expat is a stream-oriented XML parser library written in C. expat excels with files too large to fit RAM, and where performance and flexibility are crucial. Security Fixes: libexpat before 2.8.0 uses insufficient entropy, and thus hash flooding can occur via a crafted XML document.CVE-2026-41080...

7.5CVSS5.8AI score0.00379EPSS
Exploits0References2
Fedora
Fedora
added 2026/05/15 2:34 a.m.14 views

[SECURITY] Fedora 44 Update: expat-2.8.1-1.fc44

This is expat, the C library for parsing XML, written by James Clark. Expat is a stream oriented XML parser. This means that you register handlers with the parser prior to starting the parse. These handlers are called when the parser discovers the associated structures in the document being parse...

5.8AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/05/14 7:52 p.m.15 views

CVE-2026-8532

Integer overflow in XML in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.3AI score0.0028EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/14 12:0 a.m.11 views

PT-2026-41061

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.168 Description An integer overflow in the XML component allows a remote attacker to execute arbitrary code within a sandbox by using a specially crafted HTML page. Recommendations Update to version...

9.6CVSS6.3AI score0.00498EPSS
Exploits0References83
Vulnrichment
Vulnrichment
added 2026/05/13 3:24 p.m.14 views

CVE-2026-44665 fast-xml-builder: Attribute values with unwanted quotes can bypass malicious or unwanted attributes

fast-xml-builder builds XML from JSON. Prior to 1.1.7, when an input data has quotes in attribute values but process entities is not enabled, it breaks the attribute value into multiple attributes. This gives the room for an attacker to insert unwanted attributes to the XML/HTML. This vulnerabili...

6.1CVSS5.8AI score0.00209EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/12 6:37 p.m.30 views

CVE-2026-23822 Unauthenticated XML External Entity Injection in AOS-8 Instant allows Denial of Service

A vulnerability in the XML handling component of AOS-8 DHCP services could allow an unauthenticated remote attacker to trigger a denial-of-service condition. Successful exploitation could allow an attacker to cause excessive resource consumption upon user interaction, leading to service disruptio...

5.3CVSS0.00263EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/12 4:52 p.m.33 views

CVE-2026-41895 changedetection.io: XXE vulnerability in the changedetection.io project

changedetection.io is a free open source web page change detection tool. In 0.54.9 and earlier, xpathfilter switches to XML mode for XML/RSS content and creates etree.XMLParserstripcdata=False without explicitly disabling external entity resolution, external DTD loading, or network-backed entity...

8.2CVSS0.00266EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.10 views

changedetection.io 代码问题漏洞

changedetection.io is a website-based application developed by dgtlmoon, designed for code inspection, monitoring, and notification. Versions of changedetection.io prior to 0.54.9 contained a code vulnerability. This vulnerability stemmed from the xpathfilter function not disabling external entit...

8.2CVSS5.9AI score0.00266EPSS
Exploits0References2
Rows per page
Query Builder