Lucene search
K

2086 matches found

RedHat Linux
RedHat Linux
added 2025/11/25 7:17 a.m.3 views

libexpat: expat: Improper Restriction of XML Entity Expansion Depth in libexpat

A stack overflow vulnerability exists in the libexpat library due to the way it handles recursive entity expansion in XML documents. When parsing an XML document with deeply nested entity references, libexpat can be forced to recurse indefinitely, exhausting the stack space and causing a crash...

7.5CVSS7.4AI score0.01569EPSS
Exploits0References6
EUVD
EUVD
added 2025/11/24 9:30 p.m.3 views

EUVD-2025-198987

A buffer overflow with Xilinx Run Time Environment may allow a local attacker to read or corrupt data from the advanced extensible interface AXI, potentially resulting in loss of confidentiality, integrity, and/or availability...

7.3CVSS6.5AI score0.00111EPSS
Exploits0References2
NVD
NVD
added 2025/11/24 8:15 p.m.3 views

CVE-2025-52539

A buffer overflow with Xilinx Run Time Environment may allow a local attacker to read or corrupt data from the advanced extensible interface AXI, potentially resulting in loss of confidentiality, integrity, and/or availability...

7.3CVSS0.00111EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/24 7:42 p.m.7 views

CVE-2025-52539

A buffer overflow with Xilinx Run Time Environment may allow a local attacker to read or corrupt data from the advanced extensible interface AXI, potentially resulting in loss of confidentiality, integrity, and/or availability...

7.3CVSS0.00111EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/24 7:42 p.m.3 views

CVE-2025-52539

A buffer overflow with Xilinx Run Time Environment may allow a local attacker to read or corrupt data from the advanced extensible interface AXI, potentially resulting in loss of confidentiality, integrity, and/or availability...

7.3CVSS6.6AI score0.00111EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2025/11/24 12:0 a.m.4 views

OpenSCAP Libraries 1.4.3

The openscap project is a set of open source libraries that support the SCAP Security Content Automation Protocol set of standards from NIST. It supports CPE, CCE, CVE, CVSS, OVAL, and XCCDF...

6.9AI score
Exploits0
Positive Technologies
Positive Technologies
added 2025/11/24 12:0 a.m.4 views

PT-2025-47953

A buffer overflow with Xilinx Run Time Environment may allow a local attacker to read or corrupt data from the advanced extensible interface AXI, potentially resulting in loss of confidentiality, integrity, and/or availability...

7.3CVSS7AI score0.00111EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/11/19 10:11 p.m.2 views

expat: XML Entity Expansion

An XML Entity Expansion flaw was found in libexpat. This flaw allows an attacker to cause a denial of service when there is an isolated use of external parsers...

7.5CVSS7.3AI score0.02006EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/11/18 12:11 a.m.13 views

CVE-2025-63292

Freebox v5 HD firmware = 1.7.20, Freebox v5 Crystal firmware = 1.7.20, Freebox v6 Révolution r1–r3 firmware = 4.7.x, Freebox Mini 4K firmware = 4.7.x, and Freebox One firmware = 4.7.x were discovered to expose subscribers' IMSI identifiers in plaintext during the initial phase of EAP-SIM...

3.5CVSS7.3AI score0.00097EPSS
Exploits1References1
EUVD
EUVD
added 2025/11/13 3:23 a.m.4 views

EUVD-2025-179480

Malicious code in cryptography-biohacking-xml-graphql npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/13 3:23 a.m.4 views

EUVD-2025-180280

Malicious code in astrophysics-mesosphere-neptunology-xml npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/13 3:23 a.m.1 views

EUVD-2025-178119

Malicious code in less-radiometric-hydra-xml npm...

6.6AI score
Exploits0
CNNVD
CNNVD
added 2025/11/13 12:0 a.m.6 views

WordPress plugin Import any XML, CSV or Excel File to WordPress 代码注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. WordPress plugin Impor...

8.8CVSS8AI score0.00569EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.5 views

Siemens SIMATIC S7-1500 Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2023-39615)

Xmlsoft Libxml2 v2.11.0 was discovered to contain an out-of-bounds read via the xmlSAX2StartElement function at /libxml2/SAX2.c. This vulnerability allows attackers to cause a Denial of Service DoS via supplying a crafted XML file. NOTE: the vendor's position is that the product does not support...

6.5CVSS6.7AI score0.00667EPSS
Exploits1References9
OSV
OSV
added 2025/11/12 9:56 p.m.2 views

CVE-2025-40183 bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6}

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix metadatadst leak bpfredirectneighv4,6 Cilium has a BPF egress gateway feature which forces outgoing K8s Pod traffic to pass through dedicated egress gateways which then SNAT the traffic in order to interact with stable I...

6.3AI score0.00183EPSS
Exploits1References10
OSV
OSV
added 2025/11/12 4:15 p.m.4 views

CVE-2025-11700

N-central versions 2025.4 are vulnerable to multiple XML External Entities injection leading to information disclosure...

7.5CVSS5.8AI score0.31631EPSS
Exploits2References1
EUVD
EUVD
added 2025/11/12 4:29 a.m.2 views

EUVD-2025-121340

Malicious code in testcafe-callisto-levels-xml npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/12 4:29 a.m.3 views

EUVD-2025-113328

Malicious code in galaxy-andromeda-non-blocking-xml npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/12 4:29 a.m.3 views

EUVD-2025-122291

Malicious code in sagitta-xml-child-process-loopback npm...

6.6AI score
Exploits0
Cvelist
Cvelist
added 2025/11/11 4:51 p.m.7 views

CVE-2025-35968

Protection mechanism failure in the UEFI firmware for the Slim Bootloader within firmware may allow an escalation of privilege. Startup code and smm adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via...

7.1CVSS0.00103EPSS
Exploits0References1
Rows per page
Query Builder