Lucene search
K

75 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.20 views

Mageia: Security Advisory (MGASA-2019-0159)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.3AI score0.02025EPSS
Exploits4References4
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.11 views

Mageia: Security Advisory (MGASA-2017-0103)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS5.9AI score0.01589EPSS
Exploits0References6
Mageia
Mageia
added 2019/05/12 9:35 a.m.40 views

Updated mxml packages fix security vulnerabilities

Updated mxml packages fix security vulnerabilities: An issue has been found in Mini-XML aka mxml 2.12. It is a stack-based buffer overflow in mxmlwritenode in mxml-file.c via vectors involving a double-precision floating point number and the '' substring, as demonstrated by testmxml CVE-2018-2000...

8.8CVSS5AI score0.02025EPSS
Exploits4References2
OSV
OSV
added 2019/05/12 9:35 a.m.7 views

MGASA-2019-0159 Updated mxml packages fix security vulnerabilities

Updated mxml packages fix security vulnerabilities: An issue has been found in Mini-XML aka mxml 2.12. It is a stack-based buffer overflow in mxmlwritenode in mxml-file.c via vectors involving a double-precision floating point number and the '' substring, as demonstrated by testmxml CVE-2018-2000...

8.8CVSS5.9AI score0.02025EPSS
Exploits4References3
OpenVAS
OpenVAS
added 2019/05/07 12:0 a.m.59 views

Fedora Update for mxml FEDORA-2019-f99619e34d

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

5.5CVSS6AI score0.01303EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/05/02 12:0 a.m.27 views

Fedora 30 : mxml (2019-4182dd32eb)

Update to 3.0. License has changed to ASL 2.0 + exception. See https://github.com/michaelrsweet/mxml/releases/tag/v3.0 for more info. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to...

8.8CVSS6.2AI score0.02025EPSS
Exploits3References5
OpenVAS
OpenVAS
added 2019/03/28 12:0 a.m.20 views

Fedora Update for mxml FEDORA-2019-d333d01e08

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

5.5CVSS5.9AI score0.01303EPSS
Exploits1References2
Fedora
Fedora
added 2019/03/25 5:29 a.m.45 views

[SECURITY] Fedora 28 Update: mxml-3.0-1.fc28

Mini-XML is a small XML parsing library that you can use to read XML and XML-like data files in your application without requiring large non-standard libraries...

8.8CVSS3.6AI score0.02025EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2019/03/25 12:0 a.m.29 views

Fedora 28 : mxml (2019-d333d01e08)

Update to 3.0. License has changed to ASL 2.0 + exception. See https://github.com/michaelrsweet/mxml/releases/tag/v3.0 for more info. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to...

8.8CVSS6.2AI score0.02025EPSS
Exploits4References6
Tenable Nessus
Tenable Nessus
added 2019/01/28 12:0 a.m.42 views

Debian DLA-1641-1 : mxml security update

Several stack exhaustion conditions were found in mxml that can easily crash when parsing xml files. CVE-2016-4570 The mxmlDelete function in mxml-node.c allows remote attackers to cause a denial of service stack consumption via crafted xml file. CVE-2016-4571 The mxmlwritenode function in...

8.8CVSS6.7AI score0.02025EPSS
Exploits1References5
Debian
Debian
added 2019/01/25 7:56 a.m.50 views

[SECURITY] [DLA 1641-1] mxml security update

Package : mxml Version : 2.6-2+deb8u1 CVE ID : CVE-2016-4570 CVE-2016-4571 CVE-2018-20004 Debian Bug : 825855 918007 Several stack exhaustion conditions were found in mxml that can easily crash when parsing xml files. CVE-2016-4570 The mxmlDelete function in mxml-node.c allows remote attackers to...

8.8CVSS6.5AI score0.02025EPSS
Exploits1
OSV
OSV
added 2019/01/25 12:0 a.m.25 views

DLA-1641-1 mxml - security update

Bulletin has no description...

8.8CVSS5.7AI score0.02025EPSS
Exploits1
OpenVAS
OpenVAS
added 2019/01/24 12:0 a.m.31 views

Debian: Security Advisory (DLA-1641-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.4AI score0.02025EPSS
Exploits1References3
CNVD
CNVD
added 2018/12/31 12:0 a.m.3 views

Mini-XML Denial of Service Vulnerability

Mini-XML also known as mxml is a small XML parser developed using the C language . A denial of service vulnerability exists in the 'mxmlAdd' function of the mxml-node.c file in Mini-XML version 2.12. A remote attacker can exploit this vulnerability with a specially crafted xml file to cause a...

5.5CVSS6.9AI score0.01492EPSS
Exploits1References1
NVD
NVD
added 2018/12/30 6:29 p.m.22 views

CVE-2018-20592

In Mini-XML aka mxml v2.12, there is a use-after-free in the mxmlAdd function of the mxml-node.c file. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted xml file, as demonstrated by mxmldoc...

5.5CVSS5.3AI score0.01492EPSS
Exploits1References5
Prion
Prion
added 2018/12/30 6:29 p.m.18 views

Design/Logic Flaw

In Mini-XML aka mxml v2.12, there is a use-after-free in the mxmlAdd function of the mxml-node.c file. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted xml file, as demonstrated by mxmldoc...

4.3CVSS5.5AI score0.01492EPSS
Exploits1References5Affected Software2
OSV
OSV
added 2018/12/30 6:29 p.m.26 views

CVE-2018-20592

In Mini-XML aka mxml v2.12, there is a use-after-free in the mxmlAdd function of the mxml-node.c file. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted xml file, as demonstrated by mxmldoc...

5.5CVSS6.5AI score
Exploits0References5
CVE
CVE
added 2018/12/30 6:0 p.m.57 views

CVE-2018-20593

CVE-2018-20593 affects Mini-XML (mxml) 2.12, with a stack-based buffer overflow in the scan_file function of mxmldoc.c. Connected advisories confirm the issue across multiple distributions and track a set of related CVEs (CVE-2018-20004, -20005, -20592, -20593), indicating the vulnerability arise...

5.5CVSS6.9AI score0.01303EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2018/12/30 6:0 p.m.61 views

CVE-2018-20592

CVE-2018-20592 affects Mini-XML (mxml) 2.12, with a use-after-free in mxmlAdd in mxml-node.c that can cause denial of service via a crafted XML file (as shown by mxmldoc). Connected sources indicate fixes in newer mxml releases (e.g., Fedora/Mageia advisories referencing updates to v3.0 and relat...

5.5CVSS6.4AI score0.01492EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2018/12/30 6:0 p.m.18 views

CVE-2018-20593

In Mini-XML aka mxml v2.12, there is stack-based buffer overflow in the scanfile function in mxmldoc.c...

7.1AI score0.01303EPSS
Exploits1References5
Rows per page
Query Builder