CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

81 matches found

OSV•added 2026/04/11 2:3 p.m.•3 views

OESA-2026-1860 mxml security update

Mini-XML is a small XML parsing library that you can use to read XML and XML-like data files in your application without requiring large non-standard libraries. Security Fixes: A vulnerability was determined in mxml up to 4.0.4. This issue affects the function indexsort of the file mxml-index.c o...

4.8CVSS6.1AI score0.00017EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2018-13146

Malware in sbrugna...

5.5CVSS5.3AI score0.00237EPSS

Exploits1References9

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2018-13145

Malware in sbrugna...

5.5CVSS5.3AI score0.00336EPSS

Exploits1References9

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2018-12583

Malware in sbrugna...

5.5CVSS5.3AI score0.00176EPSS

Exploits1References8

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2018-12582

Malware in sbrugna...

8.8CVSS5.7AI score0.00711EPSS

Exploits1References9

Tenable Nessus•added 2025/08/30 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2018-20004

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been found in Mini-XML aka mxml 2.12. It is a stack-based buffer overflow in mxmlwritenode in mxml-file.c via vectors involving a double-precision...

8.8CVSS6.5AI score0.00711EPSS

Exploits1References2

Tenable Nessus•added 2025/08/30 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2018-20593

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Mini-XML aka mxml v2.12, there is stack-based buffer overflow in the scanfile function in mxmldoc.c. CVE-2018-20593 Note that Nessus relies on the presence o...

5.5CVSS6.4AI score0.00237EPSS

Exploits1References2

Tenable Nessus•added 2025/08/27 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2018-20592

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Mini-XML aka mxml v2.12, there is a use-after-free in the mxmlAdd function of the mxml-node.c file. Remote attackers could leverage this vulnerability to cau...

5.5CVSS6.1AI score0.00336EPSS

Exploits1References2

Tenable Nessus•added 2025/08/25 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2016-4571

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The mxmlwritenode function in mxml-file.c in mxml 2.9, 2.7, and possibly earlier allows remote attackers to cause a denial of service stack consumption via...

7.1CVSS5.7AI score0.00333EPSS

Exploits0References2

Tenable Nessus•added 2025/08/25 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2018-20005

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been found in Mini-XML aka mxml 2.12. It is a use-after-free in mxmlWalkNext in mxml- search.c, as demonstrated by mxmldoc. CVE-2018-20005 Note tha...

5.5CVSS5.9AI score0.00176EPSS

Exploits1References3

SUSE CVE•added 2023/02/15 4:21 a.m.•1 views

SUSE CVE-2018-20004

An issue has been found in Mini-XML aka mxml 2.12. It is a stack-based buffer overflow in mxmlwritenode in mxml-file.c via vectors involving a double-precision floating point number and the '' substring, as demonstrated by testmxml...

8.8CVSS6.1AI score0.00711EPSS

Exploits1References4

SUSE CVE•added 2023/02/15 4:21 a.m.•3 views

SUSE CVE-2018-20005

An issue has been found in Mini-XML aka mxml 2.12. It is a use-after-free in mxmlWalkNext in mxml-search.c, as demonstrated by mxmldoc...

5.5CVSS5.4AI score0.00176EPSS

Exploits1References4

SUSE CVE•added 2023/02/15 4:21 a.m.•2 views

SUSE CVE-2018-20592

In Mini-XML aka mxml v2.12, there is a use-after-free in the mxmlAdd function of the mxml-node.c file. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted xml file, as demonstrated by mxmldoc...

5.5CVSS5.2AI score0.00336EPSS

Exploits1References3

SUSE CVE•added 2023/02/15 4:21 a.m.•1 views

SUSE CVE-2018-20593

In Mini-XML aka mxml v2.12, there is stack-based buffer overflow in the scanfile function in mxmldoc.c...

5.5CVSS5.8AI score0.00237EPSS

Exploits1References3

SUSE CVE•added 2023/02/15 3:37 a.m.•1 views

SUSE CVE-2021-42860

A stack buffer overflow exists in Mini-XML v3.2. When inputting an unformed XML string to the mxmlLoadString API, it will cause a stack-buffer-overflow in mxmlstringgetc:2611. NOTE: it is unclear whether this input is allowed by the API specification...

7.5CVSS7.3AI score0.00291EPSS

Exploits1References3

SUSE CVE•added 2023/02/15 3:37 a.m.•1 views

SUSE CVE-2021-42859

A memory leak issue was discovered in Mini-XML v3.2 that could cause a denial of service. NOTE: testing reports are inconsistent, with some testers seeing the issue in both the 3.2 release and in the October 2021 development code, but others not seeing the issue in the 3.2 release...

7.5CVSS6.9AI score0.00274EPSS

Exploits1References3

CNVD•added 2022/05/31 12:0 a.m.•22 views

Mini-XML Denial of Service Vulnerability (CNVD-2022-68515)

Mini-XML is a small XML parser developed in C. A denial of service vulnerability exists in Mini-XML v3.2, which stems from the failure to validate input strings in mxmlLoadString and can be exploited by attackers to cause a denial of service...

5CVSS4.6AI score0.00274EPSS

Exploits1Affected Software1