Lucene search
+L

52 matches found

opensuse
opensuse
added 2022/03/04 12:0 a.m.56 views

Security update for expat (important)

openSUSE Security Update: Security update for expat Announcement ID: openSUSE-SU-2022:0713-1 Rating: important References: 1196025 1196026 1196168 1196169 1196171 Cross-References: CVE-2022-25235 CVE-2022-25236 CVE-2022-25313 CVE-2022-25314 CVE-2022-25315 CVSS scores: CVE-2022-25235 NVD : 9.8...

8.8CVSS9.5AI score0.34174EPSS
Exploits1References5
mageia
mageia
added 2022/02/22 8:15 p.m.95 views

Updated expat packages fix security vulnerability

Passing malformed 2- and 3-byte UTF-8 sequences e.g. from start tag names to the XML processing application on top of Expat can cause arbitrary damage e.g. code execution depending on how invalid UTF-8 is handled inside the XML processor; validation was not their job but Expat's. Exploits with co...

9.8CVSS2.3AI score0.34174EPSS
Exploits1References3
veracode
veracode
added 2022/02/17 9:52 a.m.39 views

Privilege Escalation

libexpat.so is vulnerable to privilege escalation. The vulnerability exists in the namespace-separator Character Handler in the xmlparse.c allowing an unauthorized user to access the system account...

9.8CVSS8.8AI score0.34174EPSS
Exploits0References14Affected Software23
osv
osv
added 2022/02/16 1:15 a.m.3 views

ALPINE-CVE-2022-25236

xmlparse.c in Expat aka libexpat before 2.4.5 allows attackers to insert namespace-separator characters into namespace URIs...

9.8CVSS8.5AI score0.34174EPSS
Exploits0References1
nvd
nvd
added 2022/02/16 1:15 a.m.30 views

CVE-2022-25236

xmlparse.c in Expat aka libexpat before 2.4.5 allows attackers to insert namespace-separator characters into namespace URIs...

9.8CVSS0.34174EPSS
Exploits0References11
osv
osv
added 2022/02/16 1:15 a.m.2 views

DEBIAN-CVE-2022-25236

xmlparse.c in Expat aka libexpat before 2.4.5 allows attackers to insert namespace-separator characters into namespace URIs...

9.8CVSS7.1AI score0.34174EPSS
Exploits0References1
euvd
euvd
added 2022/02/16 12:39 a.m.5 views

EUVD-2022-29934

xmlparse.c in Expat aka libexpat before 2.4.5 allows attackers to insert namespace-separator characters into namespace URIs...

9.8CVSS8AI score0.34174EPSS
Exploits0References38
vulnrichment
vulnrichment
added 2022/02/16 12:39 a.m.8 views

CVE-2022-25236

xmlparse.c in Expat aka libexpat before 2.4.5 allows attackers to insert namespace-separator characters into namespace URIs...

9.5AI score0.34174EPSS
Exploits0References11
osv
osv
added 2022/02/16 12:39 a.m.36 views

CVE-2022-25236

xmlparse.c in Expat aka libexpat before 2.4.5 allows attackers to insert namespace-separator characters into namespace URIs...

9.8CVSS5.1AI score0.34174EPSS
Exploits0References13
cvelist
cvelist
added 2022/02/16 12:39 a.m.27 views

CVE-2022-25236

xmlparse.c in Expat aka libexpat before 2.4.5 allows attackers to insert namespace-separator characters into namespace URIs...

9.7AI score0.34174EPSS
Exploits0References11
alpinelinux
alpinelinux
added 2022/02/16 12:39 a.m.40 views

CVE-2022-25236

xmlparse.c in Expat aka libexpat before 2.4.5 allows attackers to insert namespace-separator characters into namespace URIs...

9.8CVSS9.9AI score0.34174EPSS
Exploits0
ubuntucve
ubuntucve
added 2022/02/15 12:0 a.m.70 views

CVE-2022-25236

xmlparse.c in Expat aka libexpat before 2.4.5 allows attackers to insert namespace-separator characters into namespace URIs...

9.8CVSS6.8AI score0.34174EPSS
Exploits0References13
Rows per page
Query Builder