Lucene search
K

67 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 9 : expat-2.2.10-12.el9.2 (AXSA:2022-3997:08)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3997:08 advisory. expat: stack exhaustion in doctype parsing CVE-2022-25313 expat: integer overflow in copyString CVE-2022-25314 Tenable has extracted the preceding...

7.5CVSS7.6AI score0.04654EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.10 views

Alibaba Cloud Linux 3 : 0128: expat (ALINUX3-SA-2022:0128)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2022:0128 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2022-25313: In Expat aka libexpat befo...

7.5CVSS6.8AI score0.04654EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2022-25313

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Expat aka libexpat before 2.4.5, an attacker can trigger stack exhaustion in buildmodel via a large nesting depth in the DTD element. CVE-2022-25313 Note tha...

6.5CVSS6.7AI score0.03268EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/07/12 12:0 a.m.26 views

RHEL 8 : expat (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - expat: Stack exhaustion in doctype parsing CVE-2022-25313 - libexpat through 2.5.0 allows recursive XML...

7.5CVSS8.7AI score0.03268EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.13 views

RHEL 6 : expat (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - expat: Large number of prefixed XML attributes on a single tag can crash libexpat CVE-2021-45960 - expat:...

9.6AI score0.19069EPSS
Exploits7References19
Tenable Nessus
Tenable Nessus
added 2023/10/05 12:0 a.m.68 views

Amazon Linux 2 : expat (ALAS-2023-2280)

The version of expat installed on the remote host is prior to 2.1.0-15. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-2280 advisory. Expat aka libexpat before 2.4.4 has an integer overflow in the doProlog function. CVE-2022-23990 A flaw was found in expat....

7.5CVSS6.6AI score0.03992EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2023/07/25 12:0 a.m.22 views

Huawei EulerOS: Security Advisory for expat (EulerOS-SA-2023-2422)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.7AI score0.04781EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/03/21 12:0 a.m.95 views

Amazon Linux 2023 : expat, expat-devel, expat-static (ALAS2023-2023-058)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-058 advisory. In Expat aka libexpat before 2.4.3, a left shift by 29 or more places in the storeAtts function in xmlparse.c can lead to realloc misbehavior e.g., allocating too few bytes, or only freeing...

9.8CVSS8.5AI score0.34174EPSS
Exploits4References36
IBM Security Bulletins
IBM Security Bulletins
added 2023/01/12 9:59 p.m.49 views

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a denial of service in libexpat (CVE-2022-25313)

Summary IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a denial of service caused by a stack exhaustion in the buildmodel component of libexpat CVE-2022-25313. Libexpat is used as part of the base image included in our service components. Please read the details...

6.5CVSS7.7AI score0.03268EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/12/19 12:0 a.m.25 views

NewStart CGSL MAIN 6.02 : expat Multiple Vulnerabilities (NS-SA-2022-0104)

The remote NewStart CGSL host, running version MAIN 6.02, has expat packages installed that are affected by multiple vulnerabilities: - In Expat aka libexpat before 2.4.5, an attacker can trigger stack exhaustion in buildmodel via a large nesting depth in the DTD element. CVE-2022-25313 - In Expa...

7.5CVSS6.8AI score0.04654EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2022/12/09 12:0 a.m.45 views

Amazon Linux 2022 : expat (ALAS2022-2022-232)

The version of expat installed on the remote host is prior to 2.4.7-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-232 advisory. - In Expat aka libexpat before 2.4.3, a left shift by 29 or more places in the storeAtts function in xmlparse.c can lead t...

9.8CVSS7.4AI score0.34174EPSS
Exploits3References31
Tenable Nessus
Tenable Nessus
added 2022/11/09 12:0 a.m.32 views

RHEL 8 : mingw-expat (RHSA-2022:7811)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:7811 advisory. Expat is a C library for parsing XML documents. The mingw-expat packages provide a port of the Expat library for MinGW. The following packag...

9.8CVSS8.2AI score0.34174EPSS
Exploits1References15
OpenVAS
OpenVAS
added 2022/11/09 12:0 a.m.25 views

Tenable Nessus < 10.2.0 Multiple Vulnerabilities (TNS-2022-11)

Tenable Nessus is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:tenable:nessus"; ifdescripti...

9.8CVSS8.9AI score0.51733EPSS
Exploits6References1
OSV
OSV
added 2022/11/08 12:0 a.m.46 views

ALSA-2022:7811 Important: mingw-expat security update

Expat is a C library for parsing XML documents. The mingw-expat packages provide a port of the Expat library for MinGW. The following packages have been upgraded to a later upstream version: mingw-expat 2.4.8. BZ2057023, BZ2057037, BZ2057127 Security Fixes: expat: Malformed 2- and 3-byte UTF-8...

9.8CVSS9.3AI score0.34174EPSS
Exploits1References14
AlmaLinux
AlmaLinux
added 2022/11/08 12:0 a.m.53 views

Important: mingw-expat security update

Expat is a C library for parsing XML documents. The mingw-expat packages provide a port of the Expat library for MinGW. The following packages have been upgraded to a later upstream version: mingw-expat 2.4.8. BZ2057023, BZ2057037, BZ2057127 Security Fixes: expat: Malformed 2- and 3-byte UTF-8...

9.8CVSS9.7AI score0.34174EPSS
Exploits1References14
IBM Security Bulletins
IBM Security Bulletins
added 2022/11/04 5:54 p.m.81 views

Security Bulletin: IBM App Connect Enterprise Certified Container operands may be vulnerable to denial of service due to CVE-2022-25313

Summary libexpat is not used directly by IBM App Connect Enterprise Certified Container but is present in the operand images as part of the base operating system. Use of libexpat within IBM App Connect Enterprise Certified Container operands may be vulnerable to denial of service. This bulletin...

6.5CVSS7.9AI score0.03268EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2022/10/26 8:5 p.m.71 views

Important: Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.51 security update

An update is now available for Red Hat JBoss Core Services. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link...

9.8CVSS7.6AI score0.82295EPSS
Exploits5References22
OpenVAS
OpenVAS
added 2022/10/12 12:0 a.m.22 views

Huawei EulerOS: Security Advisory for expat (EulerOS-SA-2022-2555)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.9AI score0.34174EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2022/09/29 12:0 a.m.48 views

GLSA-202209-24 : Expat: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202209-24 Expat: Multiple Vulnerabilities - In Expat aka libexpat before 2.4.3, a left shift by 29 or more places in the storeAtts function in xmlparse.c can lead to realloc misbehavior e.g., allocating too few bytes, or only...

9.8CVSS7.6AI score0.34174EPSS
Exploits3References22
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/07 12:5 p.m.88 views

Security Bulletin: Multiple vulnerabilities found in IBM DB2 which is shipped with IBM® Intelligent Operations Center(CVE-2022-22389, CVE-2022-22390, CVE-2022-25313, CVE-2022-25236, CVE-2022-25235, CVE-2022-25314, CVE-2022-25315)

Summary Multiple vulnerabilities have been identified in DB2 which is shipped with IBM® Intelligent Operations Center. Information about these vulnerabilities affecting IBM® Intelligent Operations Center have been published and addressed the applicable CVEs. Vulnerability Details...

9.8CVSS10AI score0.34174EPSS
Exploits1Affected Software1
Rows per page
Query Builder