Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6887 matches found

RedhatCVE
RedhatCVEadded 2025/02/19 9:52 a.m.5 views

CVE-2024-56171

A flaw was found in libxml2. This vulnerability allows a use-after-free via a crafted XML document validated against an XML schema with certain identity constraints or a crafted XML schema...

8.1CVSS7.3AI score0.00183EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2025/02/19 9:22 a.m.4 views

CVE-2025-27113

A flaw was found in libxml2. This vulnerability allows a NULL pointer dereference, leading to a potential crash or denial of service via a crafted XML pattern. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security...

3.1CVSS6.3AI score0.00094EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2025/02/19 12:0 a.m.14 views

Slackware Linux 15.0 / current libxml2 Multiple Vulnerabilities (SSA:2025-050-01)

The version of libxml2 installed on the remote host is prior to 2.11.9 / 2.13.6. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2025-050-01 advisory. New libxml2 packages are available for Slackware 15.0 and -current to fix security issues. Tenable has extracted t...

9.8CVSS6.5AI score0.00235EPSS
Exploits0References3
NVD
NVDadded 2025/02/18 11:15 p.m.13 views

CVE-2025-27113

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a NULL pointer dereference in xmlPatMatch in pattern.c...

7.5CVSS0.00094EPSS
Exploits1References11
OSV
OSVadded 2025/02/18 11:15 p.m.1 views

ALPINE-CVE-2025-27113

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a NULL pointer dereference in xmlPatMatch in pattern.c...

7.5CVSS7AI score0.00094EPSS
Exploits1References1
OSV
OSVadded 2025/02/18 11:15 p.m.1 views

DEBIAN-CVE-2025-27113

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a NULL pointer dereference in xmlPatMatch in pattern.c...

7.5CVSS6.2AI score0.00094EPSS
Exploits1References1
OSV
OSVadded 2025/02/18 11:15 p.m.31 views

CVE-2025-24928

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a stack-based buffer overflow in xmlSnprintfElements in valid.c. To exploit this, DTD validation must occur for an untrusted document or untrusted DTD. NOTE: this is similar to CVE-2017-9047...

7.7CVSS8AI score
Exploits0References4
OSV
OSVadded 2025/02/18 11:15 p.m.19 views

CVE-2025-27113

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a NULL pointer dereference in xmlPatMatch in pattern.c...

7.5CVSS3.7AI score
Exploits0References11
OSV
OSVadded 2025/02/18 11:15 p.m.2 views

AZL-57058 CVE-2025-27113 affecting package libxml2 for versions less than 2.11.5-4

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a NULL pointer dereference in xmlPatMatch in pattern.c...

7.5CVSS6.6AI score0.00094EPSS
Exploits1References1
NVD
NVDadded 2025/02/18 11:15 p.m.17 views

CVE-2025-24928

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a stack-based buffer overflow in xmlSnprintfElements in valid.c. To exploit this, DTD validation must occur for an untrusted document or untrusted DTD. NOTE: this is similar to CVE-2017-9047...

7.8CVSS0.00235EPSS
Exploits0References4
OSV
OSVadded 2025/02/18 11:15 p.m.1 views

DEBIAN-CVE-2025-24928

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a stack-based buffer overflow in xmlSnprintfElements in valid.c. To exploit this, DTD validation must occur for an untrusted document or untrusted DTD. NOTE: this is similar to CVE-2017-9047...

7.8CVSS6.7AI score0.00235EPSS
Exploits0References1
OSV
OSVadded 2025/02/18 11:15 p.m.2 views

AZL-57031 CVE-2025-24928 affecting package libxml2 for versions less than 2.11.5-4

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a stack-based buffer overflow in xmlSnprintfElements in valid.c. To exploit this, DTD validation must occur for an untrusted document or untrusted DTD. NOTE: this is similar to CVE-2017-9047...

7.8CVSS7.3AI score0.00235EPSS
Exploits0References1
OSV
OSVadded 2025/02/18 11:15 p.m.4 views

AZL-56964 CVE-2025-27113 affecting package libxml2 for versions less than 2.10.4-6

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a NULL pointer dereference in xmlPatMatch in pattern.c...

7.5CVSS6.6AI score0.00094EPSS
Exploits1References1
OSV
OSVadded 2025/02/18 11:15 p.m.1 views

AZL-56931 CVE-2025-24928 affecting package libxml2 for versions less than 2.10.4-6

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a stack-based buffer overflow in xmlSnprintfElements in valid.c. To exploit this, DTD validation must occur for an untrusted document or untrusted DTD. NOTE: this is similar to CVE-2017-9047...

7.8CVSS7.5AI score0.00235EPSS
Exploits0References1
OSV
OSVadded 2025/02/18 11:15 p.m.3 views

UBUNTU-CVE-2025-27113

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a NULL pointer dereference in xmlPatMatch in pattern.c...

7.5CVSS7.1AI score0.00094EPSS
Exploits1References5
OSV
OSVadded 2025/02/18 11:15 p.m.2 views

UBUNTU-CVE-2025-24928

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a stack-based buffer overflow in xmlSnprintfElements in valid.c. To exploit this, DTD validation must occur for an untrusted document or untrusted DTD. NOTE: this is similar to CVE-2017-9047...

7.8CVSS7.1AI score0.00235EPSS
Exploits0References6
Github Security Blog
Github Security Blogadded 2025/02/18 10:36 p.m.20 views

Nokogiri updates packaged libxml2 to 2.13.6 to resolve CVE-2025-24928 and CVE-2024-56171

Summary Nokogiri v1.18.3 upgrades its dependency libxml2 to v2.13.6. libxml2 v2.13.6 addresses: - CVE-2025-24928 - described at https://gitlab.gnome.org/GNOME/libxml2/-/issues/847 - CVE-2024-56171 - described at https://gitlab.gnome.org/GNOME/libxml2/-/issues/828 Impact CVE-2025-24928 Stack-buffe...

9.8CVSS6.9AI score0.00235EPSS
Exploits0References3Affected Software1
OSV
OSVadded 2025/02/18 10:36 p.m.12 views

GHSA-VVFQ-8HWR-QM4M Nokogiri updates packaged libxml2 to 2.13.6 to resolve CVE-2025-24928 and CVE-2024-56171

Summary Nokogiri v1.18.3 upgrades its dependency libxml2 to v2.13.6. libxml2 v2.13.6 addresses: - CVE-2025-24928 - described at https://gitlab.gnome.org/GNOME/libxml2/-/issues/847 - CVE-2024-56171 - described at https://gitlab.gnome.org/GNOME/libxml2/-/issues/828 Impact CVE-2025-24928 Stack-buffe...

7.5AI score
Exploits0References3
OSV
OSVadded 2025/02/18 10:15 p.m.3 views

AZL-56925 CVE-2024-56171 affecting package libxml2 for versions less than 2.10.4-6

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a use-after-free in xmlSchemaIDCFillNodeTables and xmlSchemaBubbleIDCNodeTables in xmlschemas.c. To exploit this, a crafted XML document must be validated against an XML schema with certain identity constraints, or a crafted XML schema must be...

9.8CVSS6.6AI score0.00183EPSS
Exploits0References1
OSV
OSVadded 2025/02/18 10:15 p.m.16 views

CVE-2024-56171

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a use-after-free in xmlSchemaIDCFillNodeTables and xmlSchemaBubbleIDCNodeTables in xmlschemas.c. To exploit this, a crafted XML document must be validated against an XML schema with certain identity constraints, or a crafted XML schema must be...

9.8CVSS7.7AI score
Exploits0References11
Rows per page
Query Builder