Lucene search
K

6939 matches found

Tenable Nessus
Tenable Nessus
added 2022/03/01 12:0 a.m.49 views

Slackware Linux 14.0 / 14.1 / 14.2 / 15.0 / current libxml2 Vulnerability (SSA:2022-059-01)

The version of libxml2 installed on the remote host is prior to 2.9.13. It is, therefore, affected by a vulnerability as referenced in the SSA:2022-059-01 advisory. - valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes. CVE-2022-23308 Note that Nessus has not tested f...

7.5CVSS7.2AI score0.0601EPSS
Exploits0References1
Veracode
Veracode
added 2022/02/28 1:21 p.m.29 views

Use After Free

libxml2.so is vulnerable to use after free. The vulnerability exists in ID and IDREF attributes of several functions in valid.c due to lack of validations of which leads to an application crash...

7.5CVSS2.3AI score0.0601EPSS
Exploits0References21Affected Software16
OSV
OSV
added 2022/02/26 5:15 a.m.2 views

DEBIAN-CVE-2022-23308

valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes...

7.5CVSS7.2AI score0.0601EPSS
Exploits0References1
NVD
NVD
added 2022/02/26 5:15 a.m.18 views

CVE-2022-23308

valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes...

7.5CVSS0.0601EPSS
Exploits0References19
OSV
OSV
added 2022/02/26 5:15 a.m.1 views

ALPINE-CVE-2022-23308

valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes...

7.5CVSS7AI score0.0601EPSS
Exploits0References1
OSV
OSV
added 2022/02/26 5:15 a.m.5 views

AZL-8862 CVE-2022-23308 affecting package libxml2 for versions less than 2.9.13-1

valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes...

7.5CVSS6.7AI score0.0601EPSS
Exploits0References1
OSV
OSV
added 2022/02/26 5:15 a.m.47 views

CVE-2022-23308

valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes...

7.5CVSS1.6AI score
Exploits0References19
UbuntuCve
UbuntuCve
added 2022/02/26 5:15 a.m.35 views

CVE-2022-23308

valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes...

7.5CVSS6.8AI score0.0601EPSS
Exploits0References4
Prion
Prion
added 2022/02/26 5:15 a.m.27 views

Design/Logic Flaw

valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes...

4.3CVSS8.4AI score0.0601EPSS
Exploits0References19Affected Software16
OSV
OSV
added 2022/02/26 5:15 a.m.1 views

UBUNTU-CVE-2022-23308

valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes...

7.5CVSS6.8AI score0.0601EPSS
Exploits0References5
AlpineLinux
AlpineLinux
added 2022/02/26 12:0 a.m.78 views

CVE-2022-23308

valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes...

7.5CVSS8AI score0.0601EPSS
Exploits0
CVE
CVE
added 2022/02/26 12:0 a.m.473 views

CVE-2022-23308

CVE-2022-23308 affects libxml2 before 2.9.13, caused by a use-after-free in ID/IDREF attributes in valid.c. The NVD data shows a CVSS 3.1 base score of 7.5 (NETWORK, PR:N, UI:N, S:U, C:N/I:N/A:H) and CVSS 2.0 base score of 4.3 (NETWORK, A:P). Connected advisories confirm the same flaw and referen...

7.5CVSS7.7AI score0.0601EPSS
Exploits0References19Affected Software1
Cvelist
Cvelist
added 2022/02/26 12:0 a.m.21 views

CVE-2022-23308

valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes...

7.9AI score0.0601EPSS
Exploits0References19
Debian CVE
Debian CVE
added 2022/02/26 12:0 a.m.60 views

CVE-2022-23308

valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes...

7.5CVSS7.4AI score0.0601EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2022/02/25 8:32 p.m.46 views

Vulnerable dependencies in Nokogiri

Summary Nokogiri v1.13.2 upgrades two of its packaged dependencies: - vendored libxml2 from v2.9.12 to v2.9.13 - vendored libxslt from v1.1.34 to v1.1.35 Those library versions address the following upstream CVEs: - libxslt: CVE-2021-30560 CVSS 8.8, High severity - libxml2: CVE-2022-23308...

8.8CVSS0.9AI score0.21623EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2022/02/25 8:32 p.m.52 views

GHSA-FQ42-C5RG-92C2 Vulnerable dependencies in Nokogiri

Summary Nokogiri v1.13.2 upgrades two of its packaged dependencies: - vendored libxml2 from v2.9.12 to v2.9.13 - vendored libxslt from v1.1.34 to v1.1.35 Those library versions address the following upstream CVEs: - libxslt: CVE-2021-30560 CVSS 8.8, High severity - libxml2: CVE-2022-23308...

8.1AI score
Exploits0References2
CNVD
CNVD
added 2022/02/25 12:0 a.m.28 views

ImageMagick code issue vulnerability (CNVD-2022-18008)

Imagemagick Studio ImageMagick is a set of open source image processing software from the American company ImageMagick Studio Imagemagick Studio. The software can read, convert, or write images in a variety of formats.ImageMagick has a security vulnerability that stems from a null pointer...

6.5CVSS2.6AI score0.01894EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2022/02/25 12:0 a.m.21 views

Fedora: Security Advisory for libxml2 (FEDORA-2022-b661dea83d)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.3AI score0.0601EPSS
Exploits0References2
Fedora
Fedora
added 2022/02/24 11:9 p.m.47 views

[SECURITY] Fedora 35 Update: libxml2-2.9.13-1.fc35

This library allows to manipulate XML files. It includes support to read, modify and write XML and HTML files. There is DTDs support this includes parsing and validation even with complex DtDs, either at parse time or later once the document has been modified. The output can be a simple SAX strea...

7.5CVSS0.5AI score0.0601EPSS
Exploits0
OSV
OSV
added 2022/02/24 7:15 p.m.31 views

CVE-2021-3596

A NULL pointer dereference flaw was found in ImageMagick in versions prior to 7.0.10-31 in ReadSVGImage in coders/svg.c. This issue is due to not checking the return value from libxml2's xmlCreatePushParserCtxt and uses the value directly, which leads to a crash and segmentation fault...

6.5CVSS6.2AI score
Exploits0References4
Rows per page
Query Builder