Lucene search
K

19 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2017-0663

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A remote code execution vulnerability in libxml2 could enable an attacker using a specially crafted file to execute arbitrary code within the context of an...

7.8CVSS9.1AI score0.02142EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2023/04/14 2:32 p.m.54 views

Security Bulletin: Vulnerabilities in libxml2 affect IBM BladeCenter Advanced Management Module (AMM) (CVE-2017-7376, CVE-2017-7375, CVE-2017-5969, CVE-2017-0663)

Summary IBM BladeCenter Advanced Management Module AMM has addressed the following vulnerabilities in libxml2. Vulnerability Details Summary IBM BladeCenter Advanced Management Module AMM has addressed the following vulnerabilities in libxml2. Vulnerability Details CVEID: CVE-2017-7376 Descriptio...

10CVSS9.1AI score0.23694EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.44 views

Ubuntu: Security Advisory (USN-3424-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9AI score0.23694EPSS
Exploits5References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.33 views

SUSE: Security Advisory (SUSE-SU-2017:2701-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.3AI score0.57595EPSS
Exploits32References2
Tenable Nessus
Tenable Nessus
added 2018/09/18 12:0 a.m.41 views

EulerOS Virtualization 2.5.1 : libxml2 (EulerOS-SA-2018-1257)

According to the versions of the libxml2 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A remote code execution vulnerability in libxml2 could enable an attacker using a specially crafted file to execute arbitrary co...

9.8CVSS8.3AI score0.05928EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2018/09/18 12:0 a.m.62 views

EulerOS Virtualization 2.5.0 : libxml2 (EulerOS-SA-2018-1258)

According to the versions of the libxml2 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A remote code execution vulnerability in libxml2 could enable an attacker using a specially crafted file to execute arbitrary co...

9.8CVSS8.3AI score0.05928EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2018/07/03 12:0 a.m.42 views

EulerOS 2.0 SP3 : libxml2 (EulerOS-SA-2018-1186)

According to the version of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - A remote code execution vulnerability in libxml2 could enable an attacker using a specially crafted file to execute arbitrary code within the...

7.8CVSS9.1AI score0.02142EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2018/02/06 12:0 a.m.37 views

Debian: Security Advisory (DLA-1060-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.8AI score0.23694EPSS
Exploits0References3
Mageia
Mageia
added 2018/01/03 3:50 p.m.50 views

Updated libxml2 & perl-XML-LibXML packages fix security vulnerabilities

Use-after-free error could lead to crash CVE-2016-4658. Use-after-free vulnerability in libxml2 through 2.9.4 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the XPointer range-to function CVE-2016-5131. libxml2 2.9.4 and earli...

10CVSS3AI score0.23694EPSS
Exploits7References9
Cloud Foundry
Cloud Foundry
added 2017/11/01 12:0 a.m.53 views

USN-3424-1: libxml2 vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 Description It was discovered that a type confusion error existed in libxml2. An attacker could use this to specially construct XML data that could cause a denial of service or possibly execute arbitrary code...

10CVSS9AI score0.23694EPSS
Exploits5
Veracode
Veracode
added 2017/09/21 8:11 a.m.42 views

Remote Code Execution (RCE)

The nokogiri gem is susceptible to remote code execution RCE attacks. The attacks exist because the library uses the C package libxml2 which is vulnerable to CVE-2017-0663, allowing a malicious user to pass a XML file to execute arbitrary code or crash the application...

7.8CVSS9.2AI score0.02142EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/09/19 12:0 a.m.52 views

Ubuntu 14.04 LTS / 16.04 LTS : libxml2 vulnerabilities (USN-3424-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3424-1 advisory. It was discovered that a type confusion error existed in libxml2. An attacker could use this to specially construct XML data that could cause...

10CVSS7.7AI score0.23694EPSS
Exploits5References8
Debian
Debian
added 2017/08/23 4:54 a.m.52 views

[SECURITY] [DSA 3952-1] libxml2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3952-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 23, 2017 https://www.debian.org/security/faq -...

10CVSS9.8AI score0.23694EPSS
Exploits5
Debian
Debian
added 2017/08/23 4:54 a.m.38 views

[SECURITY] [DSA 3952-1] libxml2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3952-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 23, 2017 https://www.debian.org/security/faq -...

10CVSS2.9AI score0.23694EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2017/08/21 12:0 a.m.39 views

Debian DLA-1060-1 : libxml2 security update

CVE-2017-0663 Invalid casting of different structs could enable an attacker to remotely execute some code within the context of an unprivileged process. CVE-2017-7376 Incorrect limit used for port values. For Debian 7 'Wheezy', these problems have been fixed in version 2.8.0+dfsg1-7+wheezy9. We...

10CVSS7.1AI score0.23694EPSS
Exploits0References4
Debian
Debian
added 2017/08/19 5:8 p.m.43 views

[SECURITY] [DLA 1060-1] libxml2 security update

Package : libxml2 Version : 2.8.0+dfsg1-7+wheezy9 CVE ID : CVE-2017-0663 CVE-2017-7376 CVE-2017-0663 Invalid casting of different structs could enable an attacker to remotely execute some code within the context of an unprivileged process. CVE-2017-7376 Incorrect limit used for port values. For...

10CVSS8.5AI score0.23694EPSS
Exploits0
OSV
OSV
added 2017/06/14 1:29 p.m.8 views

CVE-2017-0663

A remote code execution vulnerability in libxml2 could enable an attacker using a specially crafted file to execute arbitrary code within the context of an unprivileged process. This issue is rated as High due to the possibility of remote code execution in an application that uses this library...

7.8CVSS8.5AI score
Exploits0References7
CVE
CVE
added 2017/06/14 1:0 p.m.149 views

CVE-2017-0663

CVE-2017-0663: libxml2 remote code execution via a crafted file. The Android-impacting flaw is a libxml2 out-of-bounds write that can crash or enable code execution in an unprivileged process. Exploitation and impact are stated in the CVE entry, with high severity (CVSSv3 7.8). No public fix vers...

7.8CVSS7.4AI score0.02142EPSS
Exploits0References7Affected Software1
UbuntuCve
UbuntuCve
added 2017/06/14 12:0 a.m.35 views

CVE-2017-0663

A remote code execution vulnerability in libxml2 could enable an attacker using a specially crafted file to execute arbitrary code within the context of an unprivileged process. This issue is rated as High due to the possibility of remote code execution in an application that uses this library...

7.8CVSS7.9AI score0.02142EPSS
Exploits0References4
Rows per page
Query Builder