Lucene search
K

6941 matches found

Prion
Prion
added 2020/11/23 10:15 p.m.13 views

Xxe

TYPO3 is an open source PHP based web content management system. In TYPO3 from version 10.4.0, and before version 10.4.10, RSS widgets are susceptible to XML external entity processing. This vulnerability is reasonable, but is theoretical - it was not possible to actually reproduce the...

3.6CVSS4.3AI score0.00636EPSS
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 2020/11/23 9:18 p.m.62 views

XML External Entity in Dashboard Widget

Problem It has been discovered that RSS widgets are susceptible to XML external entity processing. This vulnerability is reasonable, but is theoretical - it was not possible to actually reproduce the vulnerability with current PHP versions of supported and maintained system distributions. At leas...

3.7CVSS2.6AI score0.00636EPSS
Exploits0References6Affected Software2
Positive Technologies
Positive Technologies
added 2020/11/23 12:0 a.m.3 views

PT-2020-16358 · Xmlsoft +1 · Libxml2 +1

Name of the Vulnerable Software and Affected Versions: TYPO3 versions 10.4.0 through 10.4.9 Description: The issue concerns XML external entity processing in RSS widgets, which is reasonable but theoretical, as it could not be reproduced with current PHP versions of supported and maintained syste...

3.7CVSS3.9AI score0.00636EPSS
Exploits0References10
OpenVAS
OpenVAS
added 2020/11/22 12:0 a.m.15 views

Fedora: Security Advisory for mingw-libxml2 (FEDORA-2020-ff317550e4)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.5CVSS7AI score0.03672EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/11/22 12:0 a.m.19 views

Fedora: Security Advisory for mingw-libxml2 (FEDORA-2020-7773c53bc8)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.5CVSS7AI score0.03672EPSS
Exploits1References2
Fedora
Fedora
added 2020/11/20 1:40 a.m.41 views

[SECURITY] Fedora 33 Update: mingw-libxml2-2.9.10-8.fc33

MinGW Windows libxml2 XML processing library...

6.5CVSS2.4AI score0.03672EPSS
Exploits1
Fedora
Fedora
added 2020/11/20 1:28 a.m.34 views

[SECURITY] Fedora 32 Update: mingw-libxml2-2.9.10-8.fc32

MinGW Windows libxml2 XML processing library...

6.5CVSS2.4AI score0.03672EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2020/11/20 12:0 a.m.48 views

Fedora 32 : mingw-libxml2 (2020-7773c53bc8)

Add correct fix for CVE-2020-24977 RHBZ1877788, thanks: Jan de Groot. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...

6.5CVSS7.2AI score0.03672EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/11/20 12:0 a.m.38 views

Fedora 33 : mingw-libxml2 (2020-ff317550e4)

Add correct fix for CVE-2020-24977 RHBZ1877788, thanks: Jan de Groot. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...

6.5CVSS7.2AI score0.03672EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/11/19 12:0 a.m.38 views

RHEL 8 : libxml2 (RHSA-2020:4479)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4479 advisory. The libxml2 library is a development toolbox providing the implementation of various XML standards. Security Fixes: libxml2: memory leak in...

7.5CVSS7.1AI score0.07836EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2020/11/18 12:0 a.m.50 views

RHEL 8 : libxml2 (RHSA-2020:1827)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1827 advisory. The libxml2 library is a development toolbox providing the implementation of various XML standards. Security Fixes: libxml2: NULL pointer...

7.5CVSS6.8AI score0.03681EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2020/11/17 12:0 a.m.21 views

Fedora 33 : libxml2 (2020-935f62c3d9)

Add correct fix for CVE-2020-24977 RHBZ1877788, thanks: Jan de Groot. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...

6.5CVSS7.2AI score0.03672EPSS
Exploits1References2
ArchLinux
ArchLinux
added 2020/11/17 12:0 a.m.96 views

[ASA-202011-15] libxml2: multiple issues

Arch Linux Security Advisory ASA-202011-15 ========================================== Severity: Medium Date : 2020-11-17 CVE-ID : CVE-2019-20388 CVE-2020-7595 CVE-2020-24977 Package : libxml2 Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-1263 Summary ======= The...

7.5CVSS0.2AI score0.07836EPSS
Exploits1References8
OpenVAS
OpenVAS
added 2020/11/14 12:0 a.m.23 views

Fedora: Security Advisory for libxml2 (FEDORA-2020-935f62c3d9)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS8.3AI score0.03672EPSS
Exploits1References2
Apple
Apple
added 2020/11/13 9:13 a.m.101 views

About the security content of iTunes 12.10.9 for Windows - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...

9.3CVSS2.3AI score0.08491EPSS
Exploits2Affected Software1
Apple
Apple
added 2020/11/12 10:19 a.m.81 views

About the security content of macOS Catalina 10.15.7, Security Update 2020-005 High Sierra, Security Update 2020-005 Mojave - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...

9.3CVSS0.6AI score0.02539EPSS
Exploits1Affected Software3
Positive Technologies
Positive Technologies
added 2020/11/12 12:0 a.m.5 views

PT-2020-6110 · Xmlsoft +1 · Libxml2 +10

Name of the Vulnerable Software and Affected Versions: watchOS versions prior to 7.0 iOS versions prior to 14.0 iPadOS versions prior to 14.0 iTunes for Windows versions prior to 12.10.9 iCloud for Windows versions prior to 11.5 tvOS versions prior to 14.0 macOS Catalina versions prior to 10.15.7...

9.3CVSS8.4AI score0.01351EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2020/11/12 12:0 a.m.28 views

Oracle Linux 8 : libxml2 (ELSA-2020-4479)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-4479 advisory. - Fix CVE-2019-19956 1793001 - Fix CVE-2020-7595 1799786 Tenable has extracted the preceding description block directly from the Oracle Linux security...

7.5CVSS7.1AI score0.07836EPSS
Exploits0References4
Oracle linux
Oracle linux
added 2020/11/10 12:0 a.m.78 views

libxml2 security update

2.9.7-8.0.1 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball 2.9.7-8 - Fix CVE-2019-19956 1793001 - Fix CVE-2020-7595 1799786 - Fix CVE-2019-20388 1810058...

7.5CVSS1.4AI score0.07836EPSS
Exploits0
ALT Linux
ALT Linux
added 2020/11/09 12:0 a.m.90 views

Security fix for the ALT Linux 9 package libxml2 version 1:2.9.10-alt4

1:2.9.10-alt4 built Nov. 9, 2020 Aleksei Nikiforov in task 261133 Nov. 6, 2020 Aleksei Nikiforov - Applied security fixes from upstream Fixes: CVE-2019-20388, CVE-2020-7595, CVE-2020-24977...

6.4CVSS7.6AI score0.07836EPSS
Exploits1
Rows per page
Query Builder