Lucene search
K

25 matches found

Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.6 views

Siemens SIMATIC S7-1500 Loop with Unreachable Exit Condition (CVE-2018-14567)

libxml2 2.9.8, if --with-lzma is used, allows remote attackers to cause a denial of service infinite loop via a crafted XML file that triggers LZMAMEMLIMITERROR, as demonstrated by xmllint, a different vulnerability than CVE-2015-8035 and CVE-2018-9251. This plugin only works with Tenable.ot...

6.5CVSS6.8AI score0.043EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2023/10/20 12:0 a.m.26 views

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : libxml2 vulnerabilities (USN-3739-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3739-1 advisory. Matias Brutti discovered that libxml2 incorrectly handled certain XML files. An attacker could possibly use this issue to expose...

7.5CVSS6.7AI score0.05928EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2022/09/01 12:0 a.m.80 views

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-5.18)

The version of AOS installed on the remote host is prior to 5.18. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-5.18 advisory. - When using the Apache JServ Protocol AJP, care must be taken when trusting incoming connections to Apache Tomcat. Tomcat treats A...

9.8CVSS8.4AI score0.9927EPSS
Exploits137References179
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.29 views

Mageia: Security Advisory (MGASA-2019-0047)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.043EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2018:3081-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.043EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2020/09/10 12:0 a.m.39 views

Debian DLA-2369-1 : libxml2 security update

Several security vulnerabilities were corrected in libxml2, the GNOME XML library. CVE-2017-8872 Global buffer-overflow in the htmlParseTryOrFinish function. CVE-2017-18258 The xzhead function in libxml2 allows remote attackers to cause a denial of service memory consumption via a crafted LZMA...

9.1CVSS6.8AI score0.07836EPSS
Exploits1References11
OpenVAS
OpenVAS
added 2020/09/10 12:0 a.m.26 views

Debian: Security Advisory (DLA-2369-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.6AI score0.07836EPSS
Exploits1References4
IBM Security Bulletins
IBM Security Bulletins
added 2020/07/27 9:24 a.m.41 views

Security Bulletin: IBM MQ Appliance is affected by multiple libxml2 vulnerabilities

Summary IBM MQ Appliance has addressed multiple libxml2 vulnerabilities. Vulnerability Details CVEID: CVE-2015-8035 DESCRIPTION: libxml2 is vulnerable to a denial of service, caused by the failure to properly detect compression errors by the xzdecomp function. By using specially-crafted XML data,...

8.8CVSS2AI score0.043EPSS
Exploits2Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/04/21 12:0 a.m.36 views

Scientific Linux Security Update : libxml2 on SL7.x x86_64 (20200407)

libxml2: Use after free triggered by XPointer paths beginning with range-to libxml2: Use after free in xmlXPathCompOpEvalPositionalPredicate function in xpath.c libxml2: DoS caused by incorrect error detection during XZ decompression libxml2: NULL pointer dereference in xmlXPathCompOpEval functio...

8.8CVSS6.9AI score0.043EPSS
Exploits2References7
Cent OS
Cent OS
added 2020/04/08 6:42 p.m.220 views

libxml2 security update

CentOS Errata and Security Advisory CESA-2020:1190 An update for libxml2 is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

8.8CVSS6.7AI score0.043EPSS
Exploits2References7
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.37 views

Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2019-2211)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.7AI score0.04964EPSS
Exploits4References2
ALT Linux
ALT Linux
added 2019/05/22 12:0 a.m.34 views

Security fix for the ALT Linux 9 package libxml2 version 1:2.9.9.0.52.f824-alt1

May 22, 2019 Alexey Shabalin 1:2.9.9.0.52.f824-alt1 - v2.9.4-12-ge905f08 - v2.9.9-52-gf824a4bd fixes: CVE-2017-9047, CVE-2017-9048, CVE-2017-9049, CVE-2017-9050, CVE-2017-5969, CVE-2018-14404, CVE-2018-9251, CVE-2018-14567...

5CVSS6.7AI score0.04888EPSS
Exploits6
ALT Linux
ALT Linux
added 2019/05/22 12:0 a.m.56 views

Security fix for the ALT Linux 10 package libxml2 version 1:2.9.9.0.52.f824-alt1

May 22, 2019 Alexey Shabalin 1:2.9.9.0.52.f824-alt1 - v2.9.4-12-ge905f08 - v2.9.9-52-gf824a4bd fixes: CVE-2017-9047, CVE-2017-9048, CVE-2017-9049, CVE-2017-9050, CVE-2017-5969, CVE-2018-14404, CVE-2018-9251, CVE-2018-14567...

5CVSS6.7AI score0.04888EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2019/03/27 12:0 a.m.28 views

openSUSE Security Update : libxml2 (openSUSE-2019-785)

This update for libxml2 fixes the following security issues : - CVE-2018-9251: The xzdecomp function allowed remote attackers to cause a denial of service infinite loop via a crafted XML file that triggers LZMAMEMLIMITERROR, as demonstrated by xmllint bsc1088279 - CVE-2018-14567: Prevent denial o...

7.5CVSS6.4AI score0.043EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.36 views

SUSE SLED15 / SLES15 Security Update : libxml2 (SUSE-SU-2018:3080-1)

This update for libxml2 fixes the following security issues : CVE-2018-9251: The xzdecomp function allowed remote attackers to cause a denial of service infinite loop via a crafted XML file that triggers LZMAMEMLIMITERROR, as demonstrated by xmllint bsc1088279 CVE-2018-14567: Prevent denial of...

7.5CVSS6.5AI score0.043EPSS
Exploits1References10
Veracode
Veracode
added 2018/10/16 3:4 a.m.41 views

Copy-Paste Vulnerability (CPV) Through Libxml2

nokogiri is vulnerable to denial of service DoS attacks. The library uses a vulnerable version of libxml2, causing it to be vulnerable to the following CVEs: 1. CVE-2016-9318: XML External Entity XXE through a crafted document. 2. CVE-2017-16932: Infinite Recursion during parsing. 3...

5.5CVSS6.3AI score0.05928EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2018/10/15 12:0 a.m.33 views

openSUSE Security Update : libxml2 (openSUSE-2018-1149)

This update for libxml2 fixes the following security issues : - CVE-2018-9251: The xzdecomp function allowed remote attackers to cause a denial of service infinite loop via a crafted XML file that triggers LZMAMEMLIMITERROR, as demonstrated by xmllint bsc1088279. - CVE-2018-14567: Prevent denial ...

7.5CVSS6.3AI score0.043EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2018/10/15 12:0 a.m.35 views

openSUSE Security Update : libxml2 (openSUSE-2018-1150)

This update for libxml2 fixes the following security issues : - CVE-2018-9251: The xzdecomp function allowed remote attackers to cause a denial of service infinite loop via a crafted XML file that triggers LZMAMEMLIMITERROR, as demonstrated by xmllint bsc1088279 - CVE-2018-14567: Prevent denial o...

7.5CVSS6.4AI score0.043EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2018/10/13 12:0 a.m.38 views

openSUSE: Security Advisory for libxml2 (openSUSE-SU-2018:3107-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS6.8AI score0.043EPSS
Exploits1References2
OPENSUSE Linux
OPENSUSE Linux
added 2018/10/12 12:12 p.m.80 views

Security update for libxml2 (moderate)

This update for libxml2 fixes the following security issues: - CVE-2018-9251: The xzdecomp function allowed remote attackers to cause a denial of service infinite loop via a crafted XML file that triggers LZMAMEMLIMITERROR, as demonstrated by xmllint bsc1088279 - CVE-2018-14567: Prevent denial of...

5CVSS4.3AI score0.043EPSS
Exploits1References3
Rows per page
Query Builder