Lucene search
K

22 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2015-3451

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The clone function in XML::LibXML before 2.0119 does not properly set the expandentities option, which allows remote attackers to conduct XML external entity XX...

5CVSS7.3AI score0.04013EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.12 views

RHEL 7 : perl-xml-libxml (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - perl-XML-LibXML: Use-after-free by controlling the arguments to a replaceChild call CVE-2017-10672 - The...

9.8CVSS9.9AI score0.07929EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.13 views

RHEL 6 : perl-xml-libxml (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - perl-XML-LibXML: Use-after-free by controlling the arguments to a replaceChild call CVE-2017-10672 - The...

9.8CVSS9.9AI score0.07929EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.12 views

Debian: Security Advisory (DLA-214-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.6AI score0.04013EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.11 views

Mageia: Security Advisory (MGASA-2015-0199)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.6AI score0.04013EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.14 views

SUSE: Security Advisory (SUSE-SU-2015:1439-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS9.6AI score0.04013EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2015/09/08 12:0 a.m.23 views

openSUSE Security Update : perl-XML-LibXML (openSUSE-2015-571)

perl-XML-LibXML was updated to version 2.0.121 to fix one security vulnerability. - Fix 'expandentities' option that was not preserved under some circumstances. bsc929237, CVE-2015-3451 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin wer...

5CVSS8.2AI score0.04013EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/08/28 12:0 a.m.32 views

SUSE SLED12 / SLES12 Security Update : perl-XML-LibXML (SUSE-SU-2015:1439-1)

perl-XML-LibXML was updated to fix the expandentities option to be preserved in all cases. CVE-2015-3451. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much a...

5CVSS8.2AI score0.04013EPSS
Exploits0References4
OSV
OSV
added 2015/07/31 3:6 p.m.8 views

SUSE-SU-2015:1439-1 Security update for perl-XML-LibXML

perl-XML-LibXML was updated to fix the expandentities option to be preserved in all cases. CVE-2015-3451...

5CVSS6.1AI score0.04013EPSS
Exploits0References3
OSV
OSV
added 2015/05/12 7:59 p.m.9 views

CVE-2015-3451

The clone function in XML::LibXML before 2.0119 does not properly set the expandentities option, which allows remote attackers to conduct XML external entity XXE attacks via crafted XML data to the 1 new or 2 loadxml function...

6.3AI score
Exploits0References14
CVE
CVE
added 2015/05/12 7:0 p.m.131 views

CVE-2015-3451

CVE-2015-3451 affects XML::LibXML prior to 2.0119. The _clone function does not properly preserve or set the expand_entities option, enabling XML external entity (XXE) attacks via crafted XML data to the new or load_xml entry points. The connected sources confirm the vulnerable component and the ...

5CVSS6.4AI score0.04013EPSS
Exploits0References12Affected Software1
Tenable Nessus
Tenable Nessus
added 2015/05/11 12:0 a.m.35 views

Fedora 20 : perl-XML-LibXML-2.0119-1.fc20 (2015-7258)

Security fix for Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable Network...

5CVSS8.2AI score0.04013EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2015/05/11 12:0 a.m.19 views

Fedora 21 : perl-XML-LibXML-2.0119-1.fc21 (2015-7115)

Security fix for Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable Network...

5CVSS8.2AI score0.04013EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2015/05/08 12:0 a.m.23 views

Mandriva Linux Security Advisory : perl-XML-LibXML (MDVSA-2015:231)

Updated perl-XML-LibXML package fixes security vulnerability : Tilmann Haak from xing.com discovered that XML::LibXML did not respect the expandentities parameter to disable processing of external entities in some circumstances. This may allow attackers to gain read access to otherwise protected...

5CVSS8.2AI score0.04013EPSS
Exploits0References2
OSV
OSV
added 2015/05/06 5:10 p.m.9 views

MGASA-2015-0199 Updated perl-XML-LibXML packages fix CVE-2015-3451

Updated perl-XML-LibXML package fixes security vulnerability: Tilmann Haak from xing.com discovered that XML::LibXML did not respect the expandentities parameter to disable processing of external entities in some circumstances. This may allow attackers to gain read access to otherwise protected...

5CVSS6.3AI score0.04013EPSS
Exploits0References3
Mageia
Mageia
added 2015/05/06 5:10 p.m.28 views

Updated perl-XML-LibXML packages fix CVE-2015-3451

Updated perl-XML-LibXML package fixes security vulnerability: Tilmann Haak from xing.com discovered that XML::LibXML did not respect the expandentities parameter to disable processing of external entities in some circumstances. This may allow attackers to gain read access to otherwise protected...

5CVSS6.4AI score0.04013EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/05/04 12:0 a.m.23 views

Debian DSA-3243-1 : libxml-libxml-perl - security update

Tilmann Haak from xing.com discovered that XML::LibXML, a Perl interface to the libxml2 library, did not respect the expandentities parameter to disable processing of external entities in some circumstances. This may allow attackers to gain read access to otherwise protected resources, depending ...

5CVSS8.2AI score0.04013EPSS
Exploits0References5
securityvulns
securityvulns
added 2015/05/04 12:0 a.m.105 views

[USN-2592-1] XML::LibXML vulnerability

========================================================================== Ubuntu Security Notice USN-2592-1 May 04, 2015 libxml-libxml-perl vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its...

5CVSS0.5AI score0.04013EPSS
Exploits0
Debian
Debian
added 2015/05/01 5:12 p.m.40 views

[SECURITY] [DSA 3243-1] libxml-libxml-perl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3243-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso May 01, 2015 http://www.debian.org/security/faq -...

5CVSS2AI score0.04013EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2015/05/01 12:0 a.m.39 views

CVE-2015-3451

The clone function in XML::LibXML before 2.0119 does not properly set the expandentities option, which allows remote attackers to conduct XML external entity XXE attacks via crafted XML data to the 1 new or 2 loadxml function...

5CVSS7.2AI score0.04013EPSS
Exploits0References3
Rows per page
Query Builder