Lucene search
K

82 matches found

Cvelist
Cvelist
added 2024/06/03 2:25 p.m.31 views

CVE-2024-36124 iq80 Snappy has an out-of-bounds read when uncompressing data, leading to JVM crash

iq80 Snappy is a compression/decompression library. When uncompressing certain data, Snappy tries to read outside the bounds of the given byte arrays. Because Snappy uses the JDK class sun.misc.Unsafe to speed up memory access, no additional bounds checks are performed and this has similar securi...

5.3CVSS5.2AI score0.00487EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/05/14 12:0 a.m.28 views

F5 Networks BIG-IP : libxml2 vulnerability (K000139592)

The version of F5 Networks BIG-IP installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the K000139592 advisory. An issue was discovered in libxml2 before 2.10.4. When hashing empty dict strings in a crafted XML document,...

6.5CVSS7.2AI score0.01013EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/02/09 12:0 a.m.32 views

GLSA-202402-11 : libxml2: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202402-11 libxml2: Multiple Vulnerabilities - In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a segfault. This occurs in xmlSchemaFixupComplexType in...

7.5CVSS7AI score0.01375EPSS
Exploits4References9
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.16 views

EulerOS Virtualization 2.11.0 : libxml2 (EulerOS-SA-2023-2762)

According to the versions of the libxml2 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a...

6.5CVSS7.2AI score0.01086EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.31 views

EulerOS Virtualization 2.11.1 : libxml2 (EulerOS-SA-2023-2731)

According to the versions of the libxml2 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a...

6.5CVSS7.2AI score0.01086EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.31 views

EulerOS 2.0 SP11 : libxml2 (EulerOS-SA-2023-2696)

According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a segfault. This occur...

6.5CVSS7.2AI score0.01086EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.17 views

EulerOS Virtualization 3.0.6.6 : libxml2 (EulerOS-SA-2023-3404)

According to the versions of the libxml2 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a...

6.5CVSS7.2AI score0.01086EPSS
Exploits1References3
Veracode
Veracode
added 2023/09/04 9:3 a.m.16 views

Authorization Bypass

github.com/openfga/openfga is vulnerable to Authorization Bypass. The vulnerability exists because the number of objects returned with the ListObjects API are non-deterministic which allows an attacker to access unauthorized objects if the model contains expressions of type rel1 from type1...

6.5CVSS6.8AI score0.00451EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/08/15 12:0 a.m.22 views

Oracle Linux 8 : libxml2 (ELSA-2023-4529)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-4529 advisory. - Fix CVE-2023-28484 2185994 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus h...

6.5CVSS7.3AI score0.01086EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/08/02 12:0 a.m.23 views

EulerOS Virtualization 2.10.0 : libxml2 (EulerOS-SA-2023-2563)

According to the versions of the libxml2 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a...

6.5CVSS7.2AI score0.01086EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/08/02 12:0 a.m.14 views

EulerOS Virtualization 2.10.1 : libxml2 (EulerOS-SA-2023-2544)

According to the versions of the libxml2 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a...

6.5CVSS7.2AI score0.01086EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/08/02 12:0 a.m.34 views

AlmaLinux 9 : libxml2 (ALSA-2023:4349)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:4349 advisory. - In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a segfault. This occurs in...

6.5CVSS7.3AI score0.01086EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2023/08/01 12:0 a.m.29 views

Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2023-2527)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7.6AI score0.01086EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2023/08/01 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2023-2514)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7.6AI score0.01086EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/07/31 12:0 a.m.25 views

EulerOS Virtualization 2.9.1 : libxml2 (EulerOS-SA-2023-2514)

According to the versions of the libxml2 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a...

6.5CVSS7.2AI score0.01086EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/07/18 12:0 a.m.33 views

EulerOS 2.0 SP10 : libxml2 (EulerOS-SA-2023-2360)

According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a segfault. This occur...

6.5CVSS7.2AI score0.01086EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2023/07/17 12:0 a.m.27 views

Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2023-2386)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7.6AI score0.01086EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2023/07/10 12:0 a.m.10 views

Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2023-2316)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7.6AI score0.01086EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/07/09 12:0 a.m.34 views

EulerOS 2.0 SP9 : libxml2 (EulerOS-SA-2023-2316)

According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a segfault. This occur...

6.5CVSS7.2AI score0.01086EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/06/07 12:0 a.m.29 views

Ubuntu 23.04 : libxml2 vulnerabilities (USN-6028-2)

The remote Ubuntu 23.04 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6028-2 advisory. USN-6028-1 fixed vulnerabilities in libxml2. This update provides the corresponding updates for Ubuntu 23.04. Tenable has extracted the preceding description...

7.5CVSS6.5AI score0.02462EPSS
Exploits2References4
Rows per page
Query Builder