Lucene search
+L

55 matches found

Tenable Nessus
Tenable Nessus
added 2025/11/25 12:0 a.m.10 views

RHEL 9 : expat (RHSA-2025:22035)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:22035 advisory. Expat is a C library for parsing XML documents. Security Fixes: expat: internal entity expansion CVE-2013-0340 expat: parsing large tokens...

7.5CVSS7.6AI score0.20093EPSS
Exploits3References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-12553

Malware in sbrugna...

9.8CVSS7.7AI score0.04268EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2023/05/16 8:49 a.m.6 views

expat: a use-after-free in the doContent function in xmlparse.c

A vulnerability was found in expat. With this flaw, it is possible to create a situation in which parsing is suspended while substituting in an internal entity so that XMLResumeParser directly uses the internalEntityProcessor as its processor. If the subsequent parse includes some unclosed tags,...

8.1CVSS7.6AI score0.0176EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 5:42 a.m.4 views

SUSE CVE-2013-0338

libxml2 2.9.0 and earlier allows context-dependent attackers to cause a denial of service CPU and memory consumption via an XML file containing an entity declaration with long replacement text and many references to this entity, aka "internal entity expansion" with linear complexity...

4.3CVSS6.8AI score0.02856EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2022/12/08 1:21 p.m.5 views

expat: a use-after-free in the doContent function in xmlparse.c

A vulnerability was found in expat. With this flaw, it is possible to create a situation in which parsing is suspended while substituting in an internal entity so that XMLResumeParser directly uses the internalEntityProcessor as its processor. If the subsequent parse includes some unclosed tags,...

8.1CVSS7.6AI score0.0176EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/11/15 11:58 a.m.6 views

expat: internal entity expansion

expat before version 2.4.0 does not properly handle entities expansion unless an application developer uses the XMLSetEntityDeclHandler function, which allows remote attackers to cause a denial of service resource consumption, send HTTP requests to intranet servers, or read arbitrary files via a...

6.8CVSS7AI score0.20093EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2022/10/18 6:29 p.m.4 views

expat: a use-after-free in the doContent function in xmlparse.c

A vulnerability was found in expat. With this flaw, it is possible to create a situation in which parsing is suspended while substituting in an internal entity so that XMLResumeParser directly uses the internalEntityProcessor as its processor. If the subsequent parse includes some unclosed tags,...

8.1CVSS7.6AI score0.0176EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/10/18 6:25 p.m.8 views

expat: a use-after-free in the doContent function in xmlparse.c

A vulnerability was found in expat. With this flaw, it is possible to create a situation in which parsing is suspended while substituting in an internal entity so that XMLResumeParser directly uses the internalEntityProcessor as its processor. If the subsequent parse includes some unclosed tags,...

8.1CVSS7.6AI score0.0176EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/10/18 6:25 p.m.5 views

expat: a use-after-free in the doContent function in xmlparse.c

A vulnerability was found in expat. With this flaw, it is possible to create a situation in which parsing is suspended while substituting in an internal entity so that XMLResumeParser directly uses the internalEntityProcessor as its processor. If the subsequent parse includes some unclosed tags,...

8.1CVSS7.6AI score0.0176EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/10/18 6:20 p.m.5 views

expat: a use-after-free in the doContent function in xmlparse.c

A vulnerability was found in expat. With this flaw, it is possible to create a situation in which parsing is suspended while substituting in an internal entity so that XMLResumeParser directly uses the internalEntityProcessor as its processor. If the subsequent parse includes some unclosed tags,...

8.1CVSS7.6AI score0.0176EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/10/18 6:20 p.m.6 views

expat: a use-after-free in the doContent function in xmlparse.c

A vulnerability was found in expat. With this flaw, it is possible to create a situation in which parsing is suspended while substituting in an internal entity so that XMLResumeParser directly uses the internalEntityProcessor as its processor. If the subsequent parse includes some unclosed tags,...

8.1CVSS7.6AI score0.0176EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/10/18 6:19 p.m.6 views

expat: a use-after-free in the doContent function in xmlparse.c

A vulnerability was found in expat. With this flaw, it is possible to create a situation in which parsing is suspended while substituting in an internal entity so that XMLResumeParser directly uses the internalEntityProcessor as its processor. If the subsequent parse includes some unclosed tags,...

8.1CVSS7.6AI score0.0176EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/10/18 6:15 p.m.9 views

expat: a use-after-free in the doContent function in xmlparse.c

A vulnerability was found in expat. With this flaw, it is possible to create a situation in which parsing is suspended while substituting in an internal entity so that XMLResumeParser directly uses the internalEntityProcessor as its processor. If the subsequent parse includes some unclosed tags,...

8.1CVSS7.6AI score0.0176EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/10/18 6:15 p.m.4 views

expat: a use-after-free in the doContent function in xmlparse.c

A vulnerability was found in expat. With this flaw, it is possible to create a situation in which parsing is suspended while substituting in an internal entity so that XMLResumeParser directly uses the internalEntityProcessor as its processor. If the subsequent parse includes some unclosed tags,...

8.1CVSS7.6AI score0.0176EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/10/18 1:4 p.m.6 views

expat: a use-after-free in the doContent function in xmlparse.c

A vulnerability was found in expat. With this flaw, it is possible to create a situation in which parsing is suspended while substituting in an internal entity so that XMLResumeParser directly uses the internalEntityProcessor as its processor. If the subsequent parse includes some unclosed tags,...

8.1CVSS7.6AI score0.0176EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/10/18 1:4 p.m.11 views

expat: a use-after-free in the doContent function in xmlparse.c

A vulnerability was found in expat. With this flaw, it is possible to create a situation in which parsing is suspended while substituting in an internal entity so that XMLResumeParser directly uses the internalEntityProcessor as its processor. If the subsequent parse includes some unclosed tags,...

8.1CVSS7.6AI score0.0176EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/10/18 1:1 p.m.6 views

expat: a use-after-free in the doContent function in xmlparse.c

A vulnerability was found in expat. With this flaw, it is possible to create a situation in which parsing is suspended while substituting in an internal entity so that XMLResumeParser directly uses the internalEntityProcessor as its processor. If the subsequent parse includes some unclosed tags,...

8.1CVSS7.6AI score0.0176EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/10/18 12:49 p.m.3 views

expat: a use-after-free in the doContent function in xmlparse.c

A vulnerability was found in expat. With this flaw, it is possible to create a situation in which parsing is suspended while substituting in an internal entity so that XMLResumeParser directly uses the internalEntityProcessor as its processor. If the subsequent parse includes some unclosed tags,...

8.1CVSS7.6AI score0.0176EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/10/17 8:15 a.m.6 views

expat: a use-after-free in the doContent function in xmlparse.c

A vulnerability was found in expat. With this flaw, it is possible to create a situation in which parsing is suspended while substituting in an internal entity so that XMLResumeParser directly uses the internalEntityProcessor as its processor. If the subsequent parse includes some unclosed tags,...

8.1CVSS7.6AI score0.0176EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/10/12 11:24 a.m.12 views

expat: a use-after-free in the doContent function in xmlparse.c

A vulnerability was found in expat. With this flaw, it is possible to create a situation in which parsing is suspended while substituting in an internal entity so that XMLResumeParser directly uses the internalEntityProcessor as its processor. If the subsequent parse includes some unclosed tags,...

8.1CVSS7.6AI score0.0176EPSS
Exploits0References6
Rows per page
Query Builder