Lucene search
K

22 matches found

Tenable Nessus
Tenable Nessus
added 2022/09/01 12:0 a.m.80 views

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-5.18)

The version of AOS installed on the remote host is prior to 5.18. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-5.18 advisory. - When using the Apache JServ Protocol AJP, care must be taken when trusting incoming connections to Apache Tomcat. Tomcat treats A...

9.8CVSS8.4AI score0.9927EPSS
Exploits137References179
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.16 views

SUSE: Security Advisory (SUSE-SU-2016:0786-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.1AI score0.89557EPSS
Exploits24References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2016:0049-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS8.1AI score0.0721EPSS
Exploits3References15
IBM Security Bulletins
IBM Security Bulletins
added 2020/07/27 9:24 a.m.41 views

Security Bulletin: IBM MQ Appliance is affected by multiple libxml2 vulnerabilities

Summary IBM MQ Appliance has addressed multiple libxml2 vulnerabilities. Vulnerability Details CVEID: CVE-2015-8035 DESCRIPTION: libxml2 is vulnerable to a denial of service, caused by the failure to properly detect compression errors by the xzdecomp function. By using specially-crafted XML data,...

8.8CVSS2AI score0.043EPSS
Exploits2Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/04/21 12:0 a.m.36 views

Scientific Linux Security Update : libxml2 on SL7.x x86_64 (20200407)

libxml2: Use after free triggered by XPointer paths beginning with range-to libxml2: Use after free in xmlXPathCompOpEvalPositionalPredicate function in xpath.c libxml2: DoS caused by incorrect error detection during XZ decompression libxml2: NULL pointer dereference in xmlXPathCompOpEval functio...

8.8CVSS6.9AI score0.043EPSS
Exploits2References7
Cent OS
Cent OS
added 2020/04/08 6:42 p.m.220 views

libxml2 security update

CentOS Errata and Security Advisory CESA-2020:1190 An update for libxml2 is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

8.8CVSS6.7AI score0.043EPSS
Exploits2References7
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.46 views

Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2019-1559)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.03681EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2018/07/31 12:0 a.m.43 views

CVE-2018-14567

libxml2 2.9.8, if --with-lzma is used, allows remote attackers to cause a denial of service infinite loop via a crafted XML file that triggers LZMAMEMLIMITERROR, as demonstrated by xmllint, a different vulnerability than CVE-2015-8035 and CVE-2018-9251...

6.5CVSS6.8AI score0.043EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/04/01 12:0 a.m.42 views

Apple TV < 9.2 Multiple Vulnerabilities

According to its banner, the remote Apple TV device is a version prior to 9.2. It is, therefore, affected by the following vulnerabilities : - An XML external entity XXE expansion flaw exists in libxml2 due to the XML parser accepting entities from untrusted sources. An unauthenticated, remote...

10CVSS8.5AI score0.33367EPSS
Exploits8References25
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.38 views

Fedora 22 : libxml2-2.9.3-1.fc22 (2015-037f844d3e)

Very large set of security issues for libxml2 and a bunch of bug fixes tooCVE-2015-8242 CVE-2015-7500 CVE-2015-7499 CVE-2015-5312 CVE-2015-7498 CVE-2015-7497 CVE-2015-1819 CVE-2015-7941 CVE-2015-7942 CVE-2015-8035 Note that Tenable Network Security has extracted the preceding description block...

7.1CVSS6.9AI score0.0721EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.247 views

Fedora 22 : mingw-libxml2-2.9.3-1.fc22 (2016-a9ee80b01d)

Update to 2.9.3 which fixes various CVE's Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVE...

6.8CVSS6.9AI score0.04737EPSS
Exploits2References9
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.38 views

Fedora 23 : libxml2-2.9.3-1.fc23 (2015-c24af963a2)

Very large set of security issues for libxml2 and a bunch of bug fixes tooCVE-2015-8242 CVE-2015-7500 CVE-2015-7499 CVE-2015-5312 CVE-2015-7498 CVE-2015-7497 CVE-2015-1819 CVE-2015-7941 CVE-2015-7942 CVE-2015-8035 Note that Tenable Network Security has extracted the preceding description block...

7.1CVSS6.9AI score0.0721EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2016/01/25 12:0 a.m.26 views

openSUSE Security Update : libxml2 (openSUSE-2016-32)

security update: This update fixes the following security issues : - CVE-2015-1819 Enforce the reader to run in constant memory bnc928193 - CVE-2015-7941 Fix out of bound read with crafted xml input by stopping parsing on entities boundaries errors bnc951734 - CVE-2015-7942 Fix another variation...

7.1CVSS7.4AI score0.0721EPSS
Exploits3References24
Tenable Nessus
Tenable Nessus
added 2016/01/12 12:0 a.m.33 views

SUSE SLED12 / SLES12 Security Update : libxml2 (SUSE-SU-2016:0049-1)

security update: This update fixes the following security issues : - CVE-2015-1819 Enforce the reader to run in constant memory bnc928193 - CVE-2015-7941 Fix out of bound read with crafted xml input by stopping parsing on entities boundaries errors bnc951734 - CVE-2015-7942 Fix another variation...

7.1CVSS7.4AI score0.0721EPSS
Exploits3References37
Debian
Debian
added 2015/12/23 1:19 p.m.43 views

[SECURITY] [DSA 3430-1] libxml2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3430-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 23, 2015 https://www.debian.org/security/faq -...

7.1CVSS2.7AI score0.0721EPSS
Exploits3
ArchLinux
ArchLinux
added 2015/12/09 12:0 a.m.64 views

libxml2: multiple issues

CVE-2015-1819 denial of service A denial of service flaw was found in the way the libxml2 library parsed certain XML files. An attacker could provide a specially crafted XML file that, when parsed by an application using libxml2, could cause that application to use an excessive amount of memory...

7.1CVSS3.2AI score0.0721EPSS
Exploits2References12
Tenable Nessus
Tenable Nessus
added 2015/11/23 12:0 a.m.47 views

FreeBSD : libxml2 -- multiple vulnerabilities (e5423caf-8fb8-11e5-918c-bcaec565249c)

reports : CVE-2015-5312 Another entity expansion issue David Drysdale. CVE-2015-7497 Avoid an heap buffer overflow in xmlDictComputeFastQKey David Drysdale. CVE-2015-7498 Avoid processing entities after encoding conversion failures Daniel Veillard. CVE-2015-7499 1 Add xmlHaltParser to stop the...

7.1CVSS7.4AI score0.0721EPSS
Exploits2References13
FreeBSD
FreeBSD
added 2015/11/20 12:0 a.m.39 views

libxml2 -- multiple vulnerabilities

reports: CVE-2015-5312 Another entity expansion issue David Drysdale. CVE-2015-7497 Avoid an heap buffer overflow in xmlDictComputeFastQKey David Drysdale. CVE-2015-7498 Avoid processing entities after encoding conversion failures Daniel Veillard. CVE-2015-7499 1 Add xmlHaltParser to stop the...

7.1CVSS8.4AI score0.0721EPSS
Exploits2References2
OSV
OSV
added 2015/11/18 4:59 p.m.8 views

CVE-2015-8035

The xzdecomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service process hang via crafted XML data...

6AI score
Exploits0References25
OpenVAS
OpenVAS
added 2015/11/17 12:0 a.m.39 views

Ubuntu: Security Advisory (USN-2812-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS7.6AI score0.0634EPSS
Exploits2References2
Rows per page
Query Builder