Lucene search
K

6939 matches found

NVD
NVD
added 2021/05/14 8:15 p.m.21 views

CVE-2021-3537

A vulnerability found in libxml2 in versions before 2.9.11 shows that it did not propagate errors while parsing XML mixed content, causing a NULL dereference. If an untrusted XML document was parsed in recovery mode and post-validated, the flaw could be used to crash the application. The highest...

5.9CVSS0.03503EPSS
Exploits0References9
OSV
OSV
added 2021/05/14 8:15 p.m.1 views

ALPINE-CVE-2021-3537

A vulnerability found in libxml2 in versions before 2.9.11 shows that it did not propagate errors while parsing XML mixed content, causing a NULL dereference. If an untrusted XML document was parsed in recovery mode and post-validated, the flaw could be used to crash the application. The highest...

5.9CVSS6.8AI score0.03503EPSS
Exploits0References1
OSV
OSV
added 2021/05/14 8:15 p.m.2 views

DEBIAN-CVE-2021-3537

A vulnerability found in libxml2 in versions before 2.9.11 shows that it did not propagate errors while parsing XML mixed content, causing a NULL dereference. If an untrusted XML document was parsed in recovery mode and post-validated, the flaw could be used to crash the application. The highest...

5.9CVSS7AI score0.03503EPSS
Exploits0References1
OSV
OSV
added 2021/05/14 8:15 p.m.36 views

CVE-2021-3537

A vulnerability found in libxml2 in versions before 2.9.11 shows that it did not propagate errors while parsing XML mixed content, causing a NULL dereference. If an untrusted XML document was parsed in recovery mode and post-validated, the flaw could be used to crash the application. The highest...

5.9CVSS3.3AI score
Exploits0References9
Prion
Prion
added 2021/05/14 8:15 p.m.29 views

Design/Logic Flaw

A vulnerability found in libxml2 in versions before 2.9.11 shows that it did not propagate errors while parsing XML mixed content, causing a NULL dereference. If an untrusted XML document was parsed in recovery mode and post-validated, the flaw could be used to crash the application. The highest...

4.3CVSS7AI score0.03503EPSS
Exploits0References9Affected Software11
UbuntuCve
UbuntuCve
added 2021/05/14 8:15 p.m.39 views

CVE-2021-3537

A vulnerability found in libxml2 in versions before 2.9.11 shows that it did not propagate errors while parsing XML mixed content, causing a NULL dereference. If an untrusted XML document was parsed in recovery mode and post-validated, the flaw could be used to crash the application. The highest...

5.9CVSS6.8AI score0.03503EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2021/05/14 8:15 p.m.174 views

CVE-2021-3537

A vulnerability found in libxml2 in versions before 2.9.11 shows that it did not propagate errors while parsing XML mixed content, causing a NULL dereference. If an untrusted XML document was parsed in recovery mode and post-validated, the flaw could be used to crash the application. The highest...

5.9CVSS6.6AI score0.03503EPSS
In wildExploits0References12
OSV
OSV
added 2021/05/14 8:15 p.m.1 views

UBUNTU-CVE-2021-3537

A vulnerability found in libxml2 in versions before 2.9.11 shows that it did not propagate errors while parsing XML mixed content, causing a NULL dereference. If an untrusted XML document was parsed in recovery mode and post-validated, the flaw could be used to crash the application. The highest...

5.9CVSS6.7AI score0.03503EPSS
Exploits0References7
AlpineLinux
AlpineLinux
added 2021/05/14 7:50 p.m.40 views

CVE-2021-3537

A vulnerability found in libxml2 in versions before 2.9.11 shows that it did not propagate errors while parsing XML mixed content, causing a NULL dereference. If an untrusted XML document was parsed in recovery mode and post-validated, the flaw could be used to crash the application. The highest...

5.9CVSS7.4AI score0.03503EPSS
Exploits0
CVE
CVE
added 2021/05/14 7:50 p.m.615 views

CVE-2021-3537

Summary: CVE-2021-3537 affects libxml2 up to 2.9.11. In XML mixed content parsing, errors were not propagated, causing a NULL dereference when an untrusted document is parsed in recovery mode and post-validated, with availability as the highest impact. The connected documents confirm the vulnerab...

5.9CVSS7AI score0.03503EPSS
In wildExploits0References9Affected Software1
Cvelist
Cvelist
added 2021/05/14 7:50 p.m.27 views

CVE-2021-3537

A vulnerability found in libxml2 in versions before 2.9.11 shows that it did not propagate errors while parsing XML mixed content, causing a NULL dereference. If an untrusted XML document was parsed in recovery mode and post-validated, the flaw could be used to crash the application. The highest...

7.2AI score0.03503EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2021/05/14 7:50 p.m.49 views

CVE-2021-3537

A vulnerability found in libxml2 in versions before 2.9.11 shows that it did not propagate errors while parsing XML mixed content, causing a NULL dereference. If an untrusted XML document was parsed in recovery mode and post-validated, the flaw could be used to crash the application. The highest...

5.9CVSS7.9AI score0.03503EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2021/05/13 5:39 p.m.61 views

CVE-2021-3541

A flaw was found in libxml2. Exponential entity expansion attack its possible bypassing all existing protection mechanisms and leading to denial of service...

6.5CVSS3AI score0.01861EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/05/13 12:0 a.m.3 views

libxml2 输入验证错误漏洞

libxml2 is an open source library used to parse XML documents . It is written in C and can be called by many languages, such as C, C++, XSH. An input validation error vulnerability exists in libxml2. An attacker can exploit this vulnerability to trigger a denial of service attack...

6.5CVSS7.3AI score0.01861EPSS
Exploits0References40
Positive Technologies
Positive Technologies
added 2021/05/13 12:0 a.m.4 views

PT-2021-3131

Name of the Vulnerable Software and Affected Versions libxml2 affected versions not specified Description A flaw was found in libxml2, allowing for an exponential entity expansion attack that can bypass existing protection mechanisms, leading to a denial of service. The vulnerability is related t...

10CVSS6.9AI score0.51733EPSS
Exploits24References142
OpenVAS
OpenVAS
added 2021/05/13 12:0 a.m.40 views

Fedora: Security Advisory for libxml2 (FEDORA-2021-e3ed1ba38b)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.4AI score0.0828EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/05/12 12:0 a.m.25 views

openSUSE: Security Advisory for libxml2 (openSUSE-SU-2021:0692-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS8.6AI score0.0828EPSS
Exploits1References2
CNVD
CNVD
added 2021/05/11 12:0 a.m.11 views

libxml2 buffer overflow vulnerability (CNVD-2021-37600)

libxml2 is a library written in C for parsing XML documents . A buffer overflow vulnerability exists in entities.c in libxml2, which can be exploited by an attacker to cause a buffer overflow or heap overflow...

8.6CVSS7.3AI score0.0828EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2021/05/11 12:0 a.m.36 views

Debian: Security Advisory (DLA-2653-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.6AI score0.0828EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2021/05/11 12:0 a.m.267 views

Debian DLA-2653-1 : libxml2 security update

Several vulnerabilities were discovered in libxml2, a library providing support to read, modify and write XML and HTML files, which could cause denial of service via application crash when parsing specially crafted files. For Debian 9 stretch, these problems have been fixed in version...

8.8CVSS7.3AI score0.0828EPSS
Exploits1References7
Rows per page
Query Builder