CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6887 matches found

IBM Security Bulletins•added 2024/09/26 2:16 p.m.•17 views

Security Bulletin: Vulnerability in libxml2 affects IBM Integrated Analytics System [CVE-2022-23308]

Summary Redhat provided libxml2 is used by IBM Integrated Analytics System. IBM Integrated Analytics System has addressed the applicable CVE CVE-2022-23308 Vulnerability Details CVEID:CVE-2022-23308 DESCRIPTION: libxml2 is vulnerable to a denial of service, caused by a use-after-free in the ID an...

7.5CVSS9.3AI score0.00074EPSS

Exploits0Affected Software1

OpenVAS•added 2024/09/25 12:0 a.m.•36 views

Tenable Nessus Network Monitor < 6.5.0 Multiple Vulnerabilities (TNS-2024-17)

Tenable Nessus Network Monitor is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.8CVSS7.3AI score0.10778EPSS

Exploits4References1

Tenable Nessus•added 2024/09/25 12:0 a.m.•52 views

Nessus Network Monitor < 6.5.0 Multiple Vulnerabilities (TNS-2024-17)

According to its self-reported version, the Nessus Network Monitor running on the remote host is prior to 6.5.0. It is, therefore, affected by multiple vulnerabilities as referenced in the TNS-2024-17 advisory. - Nessus Network Monitor leverages third-party software to help provide underlying...

9.8CVSS7AI score0.10778EPSS

Exploits4References10

Tenable Product Security Advisories•added 2024/09/24 3:43 p.m.•23 views

[R1] Nessus Network Monitor 6.5.0 Fixes Multiple Vulnerabilities

R1 Nessus Network Monitor 6.5.0 Fixes Multiple Vulnerabilities Arnie Cabral Tue, 09/24/2024 - 11:43 Nessus Network Monitor leverages third-party software to help provide underlying functionality. Several of the third-party components OpenSSL, expat, curl, and libxml2 were found to contain...

8.4CVSS8.2AI score0.00308EPSS

Exploits0

Tenable Nessus•added 2024/09/24 12:0 a.m.•26 views

EulerOS 2.0 SP8 : libxml2 (EulerOS-SA-2024-2478)

According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An issue was discovered in libxml2 before 2.11.7 and 2.12.x before 2.12.5. When using the XML Reader interface with DTD validation and XInclude...

7.5CVSS6.9AI score0.00165EPSS

Exploits3References3

OpenVAS•added 2024/09/23 12:0 a.m.•11 views

Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2024-2478)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.4AI score0.00165EPSS

Exploits3References2

Tenable Nessus•added 2024/09/21 12:0 a.m.•26 views

CBL Mariner 2.0 Security Update: libxml2 (CVE-2024-25062)

The version of libxml2 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-25062 advisory. - An issue was discovered in libxml2 before 2.11.7 and 2.12.x before 2.12.5. When using the XML Reader...

7.5CVSS6.7AI score0.00165EPSS

Exploits3References2

CBLMariner•added 2024/09/20 8:58 p.m.•16 views

CVE-2024-25062 affecting package libxml2 for versions less than 2.10.4-4

CVE-2024-25062 affecting package libxml2 for versions less than 2.10.4-4. A patched version of the package is available...

7.5CVSS7.2AI score0.00165EPSS

Exploits3

Microsoft CVE•added 2024/09/20 7:0 a.m.•2 views

An issue was discovered in libxml2 before 2.11.7 and 2.12.x before 2.12.5. When using the XML Reader interface with DTD validation and XInclude expansion enabled processing crafted XML documents can lead to an xmlValidatePopElement use-after-free.

...

7.5CVSS6.7AI score0.00165EPSS

Exploits3

BDU FSTEC•added 2024/09/18 12:0 a.m.•1 views

The vulnerability of the libxml2 library stems from an improper limitation on XML references to external objects, which allows attackers to gain access to arbitrary files on the server or perform network scanning of internal and external infrastructure.

The vulnerability of the libxml2 library is related to an incorrect limitation on XML references to external objects. Exploiting this vulnerability could allow a malicious actor to gain access to arbitrary files on the server or perform network scanning of internal and external infrastructure...

9.4CVSS7AI score0.00553EPSS

Exploits0References4Affected Software1