Lucene search
+L

61 matches found

Tenable Nessus
Tenable Nessus
added 2024/05/01 12:0 a.m.32 views

Debian dla-3805 : libqt5concurrent5 - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3805 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3805-1 [email protected]...

9.8CVSS7AI score0.01553EPSS
Exploits1References16
Microsoft CVE
Microsoft CVE
added 2024/02/09 8:0 a.m.2 views

libexpat through 2.5.0 allows recursive XML Entity Expansion if XML_DTD is undefined at compile time.

...

5.5CVSS6.7AI score0.00373EPSS
Exploits0
OSV
OSV
added 2024/02/04 8:15 p.m.3 views

DEBIAN-CVE-2023-52426

libexpat through 2.5.0 allows recursive XML Entity Expansion if XMLDTD is undefined at compile time...

5.5CVSS6.3AI score0.00373EPSS
Exploits0References1
OSV
OSV
added 2024/02/04 8:15 p.m.8 views

AZL-34684 CVE-2023-52426 affecting package expat for versions less than 2.6.2-1

libexpat through 2.5.0 allows recursive XML Entity Expansion if XMLDTD is undefined at compile time...

5.5CVSS6.8AI score0.00373EPSS
Exploits0References1
OSV
OSV
added 2024/02/04 8:15 p.m.6 views

AZL-34208 CVE-2023-52426 affecting package expat for versions less than 2.6.2-2

libexpat through 2.5.0 allows recursive XML Entity Expansion if XMLDTD is undefined at compile time...

5.5CVSS6.8AI score0.00373EPSS
Exploits0References1
OSV
OSV
added 2024/02/04 8:15 p.m.2 views

UBUNTU-CVE-2023-52426

libexpat through 2.5.0 allows recursive XML Entity Expansion if XMLDTD is undefined at compile time...

5.5CVSS6.8AI score0.00373EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/02/04 12:0 a.m.6 views

PT-2024-3924

Name of the Vulnerable Software and Affected Versions: libexpat versions through 2.5.0 Description: The issue is related to the incorrect limitation of recursive references to objects in DTD, which can lead to a denial of service. This is caused by recursive XML Entity Expansion if XML DTD is...

9.8CVSS7.7AI score0.02006EPSS
Exploits2References85
OSV
OSV
added 2023/12/01 11:6 a.m.5 views

OESA-2023-1881 qt security update

Qt pronounced as "cute", not "cu-tee" is a cross-platform framework that is usually used as a graphical toolkit, although it is also very helpful in creating CLI applications. It runs on the three major desktop OSes, as well as on mobile OSes, such as Symbian, Nokia Belle, Meego Harmattan, MeeGo ...

7.5CVSS6.8AI score0.01553EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2023/11/21 12:0 a.m.44 views

Oracle Linux 8 : qt5-qtbase (ELSA-2023-6967)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-6967 advisory. - Fix infinite loops in QXmlStreamReader CVE-2023-38197 Resolves: bz2222770 - Don't allow remote attacker to bypass security restrictions caused by fla...

7.5CVSS6.7AI score0.01553EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2023/11/16 12:0 a.m.34 views

Oracle Linux 9 : qt5 (ELSA-2023-6369)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-6369 advisory. - Fix infinite loops in QXmlStreamReader CVE-2023-38197 Resolves: bz2222771 - Don't allow remote attacker to bypass security restrictions caused by fla...

7.5CVSS6.7AI score0.01553EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2023/11/14 12:0 a.m.45 views

CentOS 8 : qt5-qtbase (CESA-2023:6967)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2023:6967 advisory. - An issue was discovered in Qt 5.x before 5.15.14, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1. QDnsLookup has a buffer over-read via a...

7.5CVSS6.9AI score0.01553EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.37 views

RHEL 9 : qt5 (RHSA-2023:6369)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:6369 advisory. Qt is a software toolkit for developing applications. Security Fixes: qt: buffer over-read via a crafted reply from a DNS server...

7.5CVSS7AI score0.01553EPSS
Exploits1References44
Microsoft CVE
Microsoft CVE
added 2023/07/31 7:0 a.m.3 views

An issue was discovered in Qt before 5.15.15 6.x before 6.2.10 and 6.3.x through 6.5.x before 6.5.3. There are infinite loops in recursive entity expansion.

...

7.5CVSS7.1AI score0.01273EPSS
Exploits0
QT
QT
added 2023/07/18 12:0 a.m.45 views

Security advisory: QXmlStreamReader

A recently reported potential buffer overflow issue in QXmlStreamReader has been assigned the CVE id CVE-2023-38197. QXmlStreamReader can freeze or get out of memory on recursive entity expansion, with DTD tokens in XML body. Solution: Apply the attached patch or update to Qt 5.15.15, Qt 6.2.10, ...

7.5CVSS7.8AI score0.01273EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/07/15 2:17 a.m.2 views

SUSE CVE-2023-38197

An issue was discovered in Qt before 5.15.15, 6.x before 6.2.10, and 6.3.x through 6.5.x before 6.5.3. There are infinite loops in recursive entity expansion...

5.5CVSS7.1AI score0.01273EPSS
Exploits0References11
Snyk
Snyk
added 2023/07/13 11:34 a.m.2 views

Infinite loop

Overview Affected versions of this package are vulnerable to Infinite loop in recursive entity expansion. Remediation Upgrade qt to version 5.15.16, 6.5.3 or higher. References - qt Issue...

7.5CVSS7AI score0.01273EPSS
Exploits0References2
NVD
NVD
added 2023/07/13 2:15 a.m.23 views

CVE-2023-38197

An issue was discovered in Qt before 5.15.15, 6.x before 6.2.10, and 6.3.x through 6.5.x before 6.5.3. There are infinite loops in recursive entity expansion...

7.5CVSS0.01273EPSS
Exploits0References6
OSV
OSV
added 2023/07/13 2:15 a.m.3 views

DEBIAN-CVE-2023-38197

An issue was discovered in Qt before 5.15.15, 6.x before 6.2.10, and 6.3.x through 6.5.x before 6.5.3. There are infinite loops in recursive entity expansion...

7.5CVSS6.8AI score0.01273EPSS
Exploits0References1
Prion
Prion
added 2023/07/13 2:15 a.m.21 views

Privilege escalation

An issue was discovered in Qt before 5.15.15, 6.x before 6.2.10, and 6.3.x through 6.5.x before 6.5.3. There are infinite loops in recursive entity expansion...

5CVSS7.3AI score0.01273EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2023/07/13 12:0 a.m.24 views

CVE-2023-38197

An issue was discovered in Qt before 5.15.15, 6.x before 6.2.10, and 6.3.x through 6.5.x before 6.5.3. There are infinite loops in recursive entity expansion...

6.7AI score0.01273EPSS
Exploits0References6
Rows per page
Query Builder