Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.10 views

Ubuntu 16.04 LTS : ITK vulnerabilities (USN-8235-1)

The remote Ubuntu 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8235-1 advisory. It was discovered that Expat, vendored in ITK incorrectly handled certain files. An attacker could possibly use this issue to cause a crash or execute...

9.8CVSS7.6AI score0.34174EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/12/09 12:0 a.m.4 views

F5 Networks BIG-IP : Expat vulnerability (K000158115)

The version of F5 Networks BIG-IP installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the K000158115 advisory. libexpat in Expat before 2.7.2 allows attackers to trigger large dynamic memory allocations via a small document that ...

7.5CVSS5.6AI score0.01279EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2025/12/04 11:12 p.m.3 views

expat: parsing large tokens can trigger a denial of service

A flaw was found in Expat libexpat. When parsing a large token that requires multiple buffer fills to complete, Expat has to re-parse the token from start numerous times. This process may trigger excessive resource consumption, leading to a denial of service...

7.5CVSS7.4AI score0.01815EPSS
Exploits1References4
IBM Security Bulletins
IBM Security Bulletins
added 2025/11/28 7:13 p.m.50 views

Security Bulletin: Astronomer with IBM is vulnerable to several issues due to open source packages

Summary Open source software is used by Astronomer with IBM as part of overall processing functionality. Vulnerability Details CVEID:CVE-2007-2243 DESCRIPTION: OpenSSH 4.6 and earlier, when ChallengeResponseAuthentication is enabled, allows remote attackers to determine the existence of user...

7.8CVSS8.6AI score0.19433EPSS
Exploits7Affected Software1
RedHat Linux
RedHat Linux
added 2025/11/25 7:17 a.m.3 views

expat: parsing large tokens can trigger a denial of service

A flaw was found in Expat libexpat. When parsing a large token that requires multiple buffer fills to complete, Expat has to re-parse the token from start numerous times. This process may trigger excessive resource consumption, leading to a denial of service...

7.5CVSS7.4AI score0.01815EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2022/06/30 9:0 p.m.3 views

expat: Stack exhaustion in doctype parsing

A flaw was found in expat. A stack exhaustion in doctype parsing could be triggered by a file with a large number of opening braces, resulting in a denial of service...

6.5CVSS7.2AI score0.03268EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/03/28 12:1 p.m.3 views

expat: Namespace-separator characters in "xmlns[:prefix]" attribute values can lead to arbitrary code execution

A flaw was found in expat. Passing one or more namespace separator characters in the "xmlns:prefix" attribute values made expat send malformed tag names to the XML processor on top of expat. This issue causes arbitrary code execution depending on how unexpected cases are handled inside the XML...

9.8CVSS7.3AI score0.34174EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/03/28 9:49 a.m.3 views

expat: Namespace-separator characters in "xmlns[:prefix]" attribute values can lead to arbitrary code execution

A flaw was found in expat. Passing one or more namespace separator characters in the "xmlns:prefix" attribute values made expat send malformed tag names to the XML processor on top of expat. This issue causes arbitrary code execution depending on how unexpected cases are handled inside the XML...

9.8CVSS7.3AI score0.34174EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/03/22 4:25 p.m.3 views

expat: Malformed 2- and 3-byte UTF-8 sequences can lead to arbitrary code execution

A flaw was found in expat. Passing malformed 2- and 3-byte UTF-8 sequences for example, from start tag names to the XML processing application on top of expat can lead to arbitrary code execution. This issue is dependent on how invalid UTF-8 is handled inside the XML processor...

9.8CVSS7.5AI score0.04955EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/03/14 10:48 a.m.3 views

expat: Namespace-separator characters in "xmlns[:prefix]" attribute values can lead to arbitrary code execution

A flaw was found in expat. Passing one or more namespace separator characters in the "xmlns:prefix" attribute values made expat send malformed tag names to the XML processor on top of expat. This issue causes arbitrary code execution depending on how unexpected cases are handled inside the XML...

9.8CVSS7.3AI score0.34174EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/03/14 10:7 a.m.3 views

expat: Malformed 2- and 3-byte UTF-8 sequences can lead to arbitrary code execution

A flaw was found in expat. Passing malformed 2- and 3-byte UTF-8 sequences for example, from start tag names to the XML processing application on top of expat can lead to arbitrary code execution. This issue is dependent on how invalid UTF-8 is handled inside the XML processor...

9.8CVSS7.5AI score0.04955EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/03/10 3:22 p.m.5 views

expat: Namespace-separator characters in "xmlns[:prefix]" attribute values can lead to arbitrary code execution

A flaw was found in expat. Passing one or more namespace separator characters in the "xmlns:prefix" attribute values made expat send malformed tag names to the XML processor on top of expat. This issue causes arbitrary code execution depending on how unexpected cases are handled inside the XML...

9.8CVSS7.3AI score0.34174EPSS
Exploits0References5
Rows per page
Query Builder