Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/06/22 7:32 p.m.5 views

CVE-2026-56403

A flaw was found in libexpat. An integer overflow vulnerability exists in the storeAtts function. This flaw could allow an attacker to corrupt memory, leading to a denial of service, information disclosure, or potentially arbitrary code execution, compromising the integrity and confidentiality of...

6.9CVSS6.1AI score0.00102EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/06/06 12:0 a.m.7 views

EulerOS Virtualization 2.12.0 : expat (EulerOS-SA-2026-2098)

According to the versions of the expat package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : In libexpat before 2.7.4, XMLExternalEntityParserCreate does not copy unknown encoding handler user data.CVE-2026-24515 In libexpat...

7.8CVSS7.8AI score0.00193EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2025/12/17 6:13 a.m.7 views

Security Bulletin: Due to use of libexpat , IBM Sterling Connect:Direct Web Services is affected by large memory allocations issue.

Summary libexpat is used by IBM Sterling Connect:Direct Web Services CVE-2025-59375. Vulnerability Details CVEID:CVE-2025-59375 DESCRIPTION: libexpat in Expat before 2.7.2 allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing. CWE:CWE-770:...

7.5CVSS6.5AI score0.01279EPSS
Exploits1Affected Software1
AlmaLinux
AlmaLinux
added 2025/04/22 12:0 a.m.5 views

Moderate: xmlrpc-c security update

XML-RPC is a remote procedure call RPC protocol that uses XML to encode its calls and HTTP as a transport mechanism. The xmlrpc-c packages provide a network protocol to allow a client program to make a simple RPC remote procedure call over the Internet. It converts an RPC into an XML document,...

7.5CVSS6.9AI score0.01569EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/04/30 10:36 a.m.4 views

expat: XML Entity Expansion

An XML Entity Expansion flaw was found in libexpat. This flaw allows an attacker to cause a denial of service when there is an isolated use of external parsers...

7.5CVSS7.3AI score0.02006EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2022/05/17 7:10 p.m.7 views

expat: Integer overflow in nextScaffoldPart in xmlparse.c

expat libexpat is susceptible to a software flaw that causes process interruption. When processing a large number of prefixed XML attributes on a single tag can libexpat can terminate unexpectedly due to integer overflow. The highest threat from this vulnerability is to availability,...

8.8CVSS7.5AI score0.02778EPSS
Exploits0References5
Rows per page
Query Builder