Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Tenable Nessus
Tenable Nessusadded 2025/11/13 12:0 a.m.4 views

Siemens SIMATIC S7-1500 Improper Restriction of XML External Entity Reference (CVE-2016-9318)

libxml2 2.9.4 and earlier, as used in XMLSec 1.2.23 and earlier and other products, does not offer a flag directly indicating that the current document may be read but other files may not be opened, which makes it easier for remote attackers to conduct XML External Entity XXE attacks via a crafte...

5.5CVSS6.8AI score0.00119EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2017-8872

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The htmlParseTryOrFinish function in HTMLparser.c in libxml2 2.9.4 allows attackers to cause a denial of service buffer over-read or information disclosure...

9.1CVSS7.7AI score0.00233EPSS
Exploits0References2
OSV
OSVadded 2024/06/15 12:0 a.m.18 views

OPENSUSE-SU-2024:10228-1 python-libxml2-2.9.4-1.4 on GA media

These are all security issues fixed in the python-libxml2-2.9.4-1.4 package on the GA media of openSUSE Tumbleweed...

10CVSS6.7AI score0.11297EPSS
Exploits16References16
CVE
CVEadded 2017/05/10 5:14 a.m.172 views

CVE-2017-8872

CVE-2017-8872 affects libxml2 and is a buffer-over-read/overflow in htmlParseTryOrFinish() in HTMLparser.c. It can allow a local attacker to cause a denial of service or information disclosure. Affected context appears in multiple IBM security bulletins for libxml2-enabled devices (e.g., IBM Blad...

9.1CVSS7.7AI score0.00233EPSS
Exploits0References2Affected Software1
CNVD
CNVDadded 2016/07/28 12:0 a.m.1 views

Google Chrome libxml2 Memory Misreference Vulnerability

Google Chrome is a web browsing tool developed by Google. A memory misreference vulnerability exists in Google Chrome versions prior to 52.0.2743.82 and prior to libxml2 2.9.4. A remote attacker can cause a denial of service by exploiting this vulnerability...

8.8CVSS8AI score0.0369EPSS
Exploits0References1
UbuntuCve
UbuntuCveadded 2016/07/23 12:0 a.m.33 views

CVE-2016-5131

Use-after-free vulnerability in libxml2 through 2.9.4, as used in Google Chrome before 52.0.2743.82, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the XPointer range-to function...

8.8CVSS7.2AI score0.0369EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2016/05/20 12:0 a.m.5 views

PT-2016-2031

Name of the Vulnerable Software and Affected Versions libxml2 versions prior to 2.9.4 Apple iOS versions prior to 9.3.2 OS X versions prior to 10.11.5 tvOS versions prior to 9.2.1 watchOS versions prior to 2.2.1 Description The issue is caused by a heap-based buffer overflow in the xmlStrncat...

10CVSS7.9AI score0.23686EPSS
Exploits24References217
Rows per page
Query Builder