Lucene search
K

1651 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 9 : thunderbird-91.13.0-1.el9.ML.1 (AXSA:2022-4103:21)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-4103:21 advisory. Mozilla: Address bar spoofing via XSLT error handling CVE-2022-38472 Mozilla: Cross-origin XSLT Documents would have inherited the parent's...

8.8CVSS8.6AI score0.00905EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 8 : thunderbird-91.13.0-1.el8.ML.1 (AXSA:2022-3794:12)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-3794:12 advisory. Mozilla: Address bar spoofing via XSLT error handling CVE-2022-38472 Mozilla: Cross-origin XSLT Documents would have inherited the parent's...

8.8CVSS8.3AI score0.00905EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.8 views

MiracleLinux 7 : firefox-91.3.0-1.0.1.el7.AXS7 (AXSA:2021-2530:32)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-2530:32 advisory. Mozilla: Use-after-free in HTTP2 Session object Mozilla: Memory safety bugs fixed in Firefox 94 and Firefox ESR 91.3 Mozilla: iframe sandbox rules d...

10CVSS8.6AI score0.0383EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 9 : firefox-91.13.0-1.el9.ML.1 (AXSA:2022-4048:34)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-4048:34 advisory. Mozilla: Address bar spoofing via XSLT error handling CVE-2022-38472 Mozilla: Cross-origin XSLT Documents would have inherited the parent's...

8.8CVSS8.3AI score0.00905EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.6 views

MiracleLinux 7 : libxslt-1.1.28-6.0.3.el7.AXS7 (AXSA:2025-9905:06)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-9905:06 advisory. CVE-2024-55549: fix use-after-free issue related to exclusion of result prefixes CVEs: CVE-2024-55549 xsltGetInheritedNsList in libxslt before 1.1.43 has a...

7.8CVSS7.1AI score0.00324EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.4 views

MiracleLinux 7 : firefox-128.8.0-1.0.1.el7.AXS7 (AXSA:2025-9734:08)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2025-9734:08 advisory. firefox: Use-after-free in WebTransportChild CVE-2025-1931 firefox: AudioIPC StreamData could trigger a use-after-free in the Browser process...

8.8CVSS6.8AI score0.00519EPSS
Exploits1References10
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.6 views

MiracleLinux 7 : libxml2-2.9.1-6.6.0.5.el7.AXS7 (AXSA:2025-10894:16)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10894:16 advisory. CVE-2025-7425: fix heap-use-after-free in xmlFreeID caused by 'atype' corruption CVE-2025-6021: fix integer overflows in buffer size calculations...

7.8CVSS7AI score0.01067EPSS
Exploits2References3
RedhatCVE
RedhatCVE
added 2026/01/09 9:59 a.m.7 views

CVE-2020-7914

In JetBrains IntelliJ IDEA 2019.2, an XSLT debugger plugin misconfiguration allows arbitrary file read operations over the network. This issue was fixed in 2019.3...

7.5CVSS6.9AI score0.01888EPSS
Exploits0References1
Debian
Debian
added 2025/12/30 3:55 p.m.6 views

[SECURITY] [DLA 4428-1] mediawiki security update

Debian LTS Advisory DLA-4428-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin December 30, 2025 https://wiki.debian.org/LTS Package : mediawiki Version : 1:1.35.13-1+deb11u6 CVE ID : CVE-2025-67475 CVE-2025-67478 CVE-2025-67479 CVE-2025-67480 CVE-2025-67481...

9.8CVSS5.9AI score0.00395EPSS
Exploits0
OSV
OSV
added 2025/12/09 1:50 p.m.7 views

CLSA-2025-1765288229 libxslt: Fix of CVE-2025-7424

CVE-2025-7424: fix type confusion in xsltDocumentFunctionLoadDocument...

7.5CVSS7.1AI score0.012EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.7 views

TencentOS Server 4: firefox (TSSA-2025:0582)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0582 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

9.1CVSS7.3AI score0.00824EPSS
Exploits2References18
Tenable Nessus
Tenable Nessus
added 2025/11/18 12:0 a.m.5 views

Mozilla Firefox ESR < 45.7

The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 45.7. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2017-02 advisory. - A use-after-free vulnerability in the Media Decoder when working with media files when some events are...

9.8CVSS7.7AI score0.33199EPSS
Exploits16References10
Amazon
Amazon
added 2025/11/10 12:0 a.m.9 views

Important: xmlunit

Issue Overview: XMLUnit for Java before 2.10.0, in the default configuration, might allow code execution via an untrusted stylesheet used for an XSLT transformation, because XSLT extension functions are enabled. CVE-2024-31573 Affected Packages: xmlunit Issue Correction: Run dnf update xmlunit...

4CVSS7.6AI score0.00221EPSS
Exploits0
Fedora
Fedora
added 2025/11/06 2:24 a.m.11 views

[SECURITY] Fedora 42 Update: qt5-qtxmlpatterns-5.15.18-1.fc42

The Qt XML Patterns module provides support for XPath, XQuery, XSLT, and XML Schema validation...

7.1AI score
Exploits0
AstraLinux
AstraLinux
added 2025/11/01 10:54 a.m.7 views

Astra Linux – Vulnerability in Firefox, Thunderbird

The XSLT document loading failed to properly propagate the source document, which bypassed its CSP. This vulnerability was fixed in Firefox 141, Firefox ESR 128.13, Firefox ESR 140.1, Thunderbird 141, Thunderbird 128.13, and Thunderbird 140.1...

8.1CVSS6.1AI score0.00305EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/10/27 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-11731

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the exsltFuncResultComp function of libxslt, which handles EXSLT elements during stylesheet parsing. Due to improper type handling, the...

3.1CVSS6AI score0.00264EPSS
Exploits0References4
NVD
NVD
added 2025/10/17 7:15 p.m.7 views

CVE-2024-31573

XMLUnit for Java before 2.10.0, in the default configuration, might allow code execution via an untrusted stylesheet used for an XSLT transformation, because XSLT extension functions are enabled...

4CVSS0.00221EPSS
Exploits0References3
OSV
OSV
added 2025/10/17 2:54 p.m.4 views

OESA-2025-2445 libxslt security update

Libxslt is the XSLT C library developed for the GNOME project Security Fixes: A use-after-free vulnerability was found in libxslt while parsing xsl nodes that may lead to the dereference of expired pointers and application crash.CVE-2025-10911...

5.5CVSS6.9AI score0.00161EPSS
Exploits0References2
OSV
OSV
added 2025/10/17 2:54 p.m.9 views

OESA-2025-2443 libxslt security update

Libxslt is the XSLT C library developed for the GNOME project Security Fixes: A use-after-free vulnerability was found in libxslt while parsing xsl nodes that may lead to the dereference of expired pointers and application crash.CVE-2025-10911...

5.5CVSS6.9AI score0.00161EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/10/17 12:0 a.m.2 views

CVE-2024-31573

XMLUnit for Java before 2.10.0, in the default configuration, might allow code execution via an untrusted stylesheet used for an XSLT transformation, because XSLT extension functions are enabled...

4CVSS7.3AI score0.00221EPSS
Exploits0References3
Rows per page
Query Builder