Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
added 2026/06/22 7:32 p.m.6 views

CVE-2026-56411

A flaw was found in libexpat, a software library used for parsing XML Extensible Markup Language documents. An attacker could exploit an integer overflow vulnerability in the xmlwf utility by crafting malicious NOTATION declarations. This could lead to the disclosure of sensitive information or...

6.9CVSS5.9AI score0.0011EPSS
Exploits0References4
NVD
NVD
added 2026/06/21 5:16 p.m.12 views

CVE-2026-56411

xmlwf in libexpat before 2.8.2 has an integer overflow in endDoctypeDecl via NOTATION declarations...

6.9CVSS0.0011EPSS
Exploits0References1
OSV
OSV
added 2026/06/21 5:16 p.m.3 views

ALPINE-CVE-2026-56411

xmlwf in libexpat before 2.8.2 has an integer overflow in endDoctypeDecl via NOTATION declarations...

6.9CVSS5.8AI score0.0011EPSS
Exploits0References1
Snyk
Snyk
added 2026/06/21 5:9 p.m.5 views

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound via the endDoctypeDecl process when handling NOTATION declarations. An attacker can cause memory corruption or potentially execute arbitrary code by providing specially crafted XML input. Remediation A fix...

7.5CVSS6.2AI score0.0011EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/21 3:56 p.m.7 views

EUVD-2026-38188

xmlwf in libexpat before 2.8.2 has an integer overflow in endDoctypeDecl via NOTATION declarations...

6.9CVSS5.9AI score0.0011EPSS
Exploits0References1
CVE
CVE
added 2026/06/21 3:56 p.m.27 views

CVE-2026-56411

CVE-2026-56411 affects libexpat’s xmlwf binary, with an integer overflow in endDoctypeDecl triggered by NOTATION declarations prior to version 2.8.2. The CVSS metrics indicate a Local attack vector, high confidentiality and integrity impact, and low availability impact, with no user interaction r...

6.9CVSS5.9AI score0.0011EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/21 3:56 p.m.4 views

CVE-2026-56411

xmlwf in libexpat before 2.8.2 has an integer overflow in endDoctypeDecl via NOTATION declarations...

6.9CVSS5.9AI score0.0011EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2026/06/21 3:56 p.m.5 views

CVE-2026-56411

xmlwf in libexpat before 2.8.2 has an integer overflow in endDoctypeDecl via NOTATION declarations...

6.9CVSS5.8AI score0.0011EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/21 3:56 p.m.31 views

CVE-2026-56411

xmlwf in libexpat before 2.8.2 has an integer overflow in endDoctypeDecl via NOTATION declarations...

6.9CVSS0.0011EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/21 12:0 a.m.11 views

PT-2026-51247

Name of the Vulnerable Software and Affected Versions libexpat versions prior to 2.8.2 Description The xmlwf component contains an integer overflow in the endDoctypeDecl function. This issue is triggered via NOTATION declarations, which are used in XML to define the format of non-XML data...

6.9CVSS5.8AI score0.0011EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/06/21 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-56411

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xmlwf in libexpat before 2.8.2 has an integer overflow in endDoctypeDecl via NOTATION declarations. CVE-2026-56411 Note that Nessus relies on the presence of th...

6.9CVSS5.9AI score0.0011EPSS
Exploits0References3
Rows per page
Query Builder