Lucene search
K

6939 matches found

BDU FSTEC
BDU FSTEC
added 2021/11/02 12:0 a.m.5 views

The vulnerability of the xmlmemory.c component of the libxml2 XML document analysis software occurs due to writing beyond the buffer boundaries. This allows an attacker to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the xmlmemory.c component of the libxml2 XML document analysis software involves buffer overflow attacks. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause service failures...

8.8CVSS7.6AI score0.02979EPSS
Exploits0References7Affected Software4
BDU FSTEC
BDU FSTEC
added 2021/11/02 12:0 a.m.4 views

The vulnerability of the xinclude.c component in the Libxml2 library arises from the use of memory after it is freed. This allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the xinclude.c component in the Libxml2 library is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and even cause service failures through a specially created fi...

8.8CVSS6.8AI score0.03653EPSS
Exploits0References14Affected Software7
BDU FSTEC
BDU FSTEC
added 2021/11/02 12:0 a.m.4 views

The vulnerability of the XML object encoding function in the Libxml2 library, related to writing beyond buffer boundaries, allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of XML object encoding functions in the Libxml2 library is related to writing beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and even cause service failures through a specially...

8.6CVSS7AI score0.0828EPSS
Exploits0References14Affected Software7
BDU FSTEC
BDU FSTEC
added 2021/11/02 12:0 a.m.2 views

The vulnerability in the parser.c component of the Libxml2 library, related to pointer dereferencing errors, allows attackers to trigger a denial-of-service attack.

The vulnerability of the parser.c component in the Libxml2 library is related to the lack of error handling during the analysis of XML content. Exploiting this vulnerability allows a malicious actor to cause service failures by using a specially created XML document...

5.9CVSS6.8AI score0.03503EPSS
Exploits0References12Affected Software5
BDU FSTEC
BDU FSTEC
added 2021/11/02 12:0 a.m.3 views

The vulnerability of the xmllint component in the Libxml2 library arises from the use of memory after it is freed. This allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the xmllint component in the Libxml2 library is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and even cause service failures through a specially created file...

8.8CVSS6.8AI score0.0199EPSS
Exploits1References12Affected Software5
Tenable Nessus
Tenable Nessus
added 2021/10/28 12:0 a.m.199 views

Oracle MySQL Workbench < 8.0.27 Multiple Vulnerabilities (Oct 2021)

The version of Oracle MySQL Workbench installed on the remote Windows host is prior to 8.0.27. It is, therefore, affected by multiple vulnerabilities as referenced in the advisory. - Vulnerability in the MySQL Workbench product of Oracle MySQL component: MySQL Workbench OpenSSL. Supported version...

8.8CVSS6.6AI score0.50445EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2021/10/28 12:0 a.m.46 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : libxml2 Multiple Vulnerabilities (NS-SA-2021-0148)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has libxml2 packages installed that are affected by multiple vulnerabilities: - xmlParseBalancedChunkMemoryRecover in parser.c in libxml2 before 2.9.10 has a memory leak related to newDoc-oldNs. CVE-2019-19956 - xmlSchemaPreRun...

7.5CVSS6.9AI score0.07836EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2021/10/26 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2021-2595)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.6AI score0.0828EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2021/10/25 12:0 a.m.51 views

EulerOS 2.0 SP3 : libxml2 (EulerOS-SA-2021-2595)

According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - There's a flaw in libxml2's xmllint in versions before 2.9.11. An attacker who is able to submit a crafted file to be processed by xmllint coul...

8.8CVSS7.1AI score0.0828EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2021/10/14 12:0 a.m.48 views

Scientific Linux Security Update : libxml2 on SL7.x i686/x86_64 (2021:3810)

The remote Scientific Linux 7 host has packages installed that are affected by a vulnerability as referenced in the SLSA-2021:3810-1 advisory. - libxml2: Use after free via namespace node in XPointer ranges CVE-2016-4658 Note that Nessus has not tested for this issue but has instead relied only o...

10CVSS7.2AI score0.08628EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/10/13 12:0 a.m.80 views

Oracle Linux 7 : libxml2 (ELSA-2021-3810)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-3810 advisory. 2.9.1-6.0.3 - Rebuild to include attribution logo Orabug: 33024216 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in...

10CVSS7.2AI score0.08628EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/10/13 12:0 a.m.80 views

RHEL 7 : libxml2 (RHSA-2021:3810)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:3810 advisory. The libxml2 library is a development toolbox providing the implementation of various XML standards. Security Fixes: libxml2: Use after free via...

10CVSS7.3AI score0.08628EPSS
Exploits0References5
Oracle linux
Oracle linux
added 2021/10/13 12:0 a.m.368 views

libxml2 security update

2.9.1-6.0.3 - Rebuild to include attribution logo Orabug: 33024216 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball 2.9.1-6.6 - Fix CVE-2016-4658 1966916...

10CVSS2AI score0.08628EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2021/10/12 4:12 p.m.1 views

libxml2: Use after free via namespace node in XPointer ranges

A use-after-free flaw was found in the Xpointer implementation of libxml2. An attacker could use this flaw against an application parsing untrusted XML files and compiled with libxml2 to leak small amount of memory data...

10CVSS7.1AI score0.08628EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/10/12 4:12 p.m.269 views

Moderate: Red Hat Security Advisory: libxml2 security update

An update for libxml2 is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

10CVSS6.7AI score0.08628EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2021/09/30 12:44 p.m.74 views

Security Bulletin: Vulnerabilities in IBM Java Runtime and libxml2 affecting Tivoli Netcool/OMNIbus (Multiple CVEs)

Summary There is a vulnerability in IBM® Runtime Environment Java™ Technology Edition Version 8, as well as a vulnerability in GNOME libxml2 version 2.7.8. Both components are used by Tivoli Netcool/OMNIbus. The JRE vulnerability was disclosed as part of the IBM Java SDK updates in April 2021. Th...

8.8CVSS8.1AI score0.03653EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2021/09/28 12:0 a.m.19 views

Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2021-2508)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.3AI score0.0199EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2021/09/27 12:0 a.m.33 views

EulerOS 2.0 SP5 : libxml2 (EulerOS-SA-2021-2508)

According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - There's a flaw in libxml2's xmllint in versions before 2.9.11. An attacker who is able to submit a crafted file to be processed by xmllint coul...

7.8CVSS7.2AI score0.0199EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2021/09/15 10:14 p.m.57 views

Security Bulletin: libXml2 used by IBM InfoSphere Identity Insight has a potential vulnerability (CVE-2021-3518)

Summary The libXml2 library used by Identity Insight has a potential use-after-free vulnerability that could be exploited by an attacker using a crafted input file. Vulnerability Details CVEID: CVE-2021-3518 DESCRIPTION: GNOME libxml2 could allow a remote attacker to execute arbitrary code on the...

8.8CVSS8.2AI score0.03653EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2021/09/15 12:0 a.m.29 views

Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2021-2406)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.6AI score0.0828EPSS
Exploits1References2
Rows per page
Query Builder