Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

41 matches found

NVD
NVDadded 4 days ago7 views

CVE-2026-56403

libexpat before 2.8.2 has an integer overflow in storeAtts...

6.9CVSS0.00102EPSS
Exploits0References1
OSV
OSVadded 4 days ago3 views

UBUNTU-CVE-2026-56403

libexpat before 2.8.2 has an integer overflow in storeAtts...

6.9CVSS5.8AI score0.00102EPSS
Exploits0References3
EUVD
EUVDadded 4 days ago5 views

EUVD-2026-38180

libexpat before 2.8.2 has an integer overflow in storeAtts...

6.9CVSS5.9AI score0.00102EPSS
Exploits0References1
Cvelist
Cvelistadded 4 days ago31 views

CVE-2026-56403

libexpat before 2.8.2 has an integer overflow in storeAtts...

6.9CVSS0.00102EPSS
Exploits0References1
CVE
CVEadded 4 days ago15 views

CVE-2026-56403

CVE-2026-56403 affects libexpat prior to 2.8.2, with an integer overflow in storeAtts. Local attack vector, high complexity, no user interaction, requires no privileges. Impact: confidentiality and integrity likely high; availability low. Base score 6.9 (CVSS 3.1). No exploitation details or reme...

6.9CVSS5.9AI score0.00102EPSS
Exploits0References1Affected Software1
Debian CVE
Debian CVEadded 4 days ago5 views

CVE-2026-56403

libexpat before 2.8.2 has an integer overflow in storeAtts...

6.9CVSS5.9AI score0.00102EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 4 days ago6 views

Linux Distros Unpatched Vulnerability : CVE-2026-56403

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libexpat before 2.8.2 has an integer overflow in storeAtts. CVE-2026-56403 Note that Nessus relies on the presence of the package as reported by the vendor...

6.9CVSS5.9AI score0.00102EPSS
Exploits0References3
AstraLinux
AstraLinuxadded 2026/05/20 5:53 a.m.4 views

Astra Linux - уязвимость в firefox, thunderbird, expat

In Expat also known as libexpat, before version 2.4.3, a left shift of 29 or more in the storeAtts function in xmlparse.c could lead to improper realloc behavior. This could result in allocating too few bytes, or only freeing memory after it was no longer needed...

9CVSS7.3AI score0.042EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2026/05/09 12:0 a.m.5 views

Unity Linux 20.1060e / 20.1070e Security Update: expat (UTSA-2026-017351)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017351 advisory. In Expat aka libexpat before 2.4.3, a left shift by 29 or more places in the storeAtts function in xmlparse.c can lead to realloc misbehavior e.g., allocating too fe...

9CVSS5.8AI score0.042EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2026/05/09 12:0 a.m.3 views

Unity Linux 20.1060e / 20.1070e Security Update: expat (UTSA-2026-017354)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017354 advisory. storeAtts in xmlparse.c in Expat aka libexpat before 2.4.3 has an integer overflow. Tenable has extracted the preceding description block directly from the Unity Lin...

8.8CVSS5.8AI score0.02778EPSS
Exploits0References4
AstraLinux
AstraLinuxadded 2026/05/03 11:59 p.m.3 views

Astra Linux – Vulnerabilities in Firefox, Thunderbird, Expat, LibXMLTok

The issue with integer overflow occurs in storeAtts in the xmlparse.c file, within the Expat library also known as libexpat, before version 2.4.3...

8.8CVSS8.1AI score0.02778EPSS
Exploits0References2
RedHat Linux
RedHat Linuxadded 2025/12/09 8:32 a.m.3 views

expat: Integer overflow in storeAtts in xmlparse.c

expat libexpat is susceptible to a software flaw that causes process interruption. When processing a large number of prefixed XML attributes on a single tag can libexpat can terminate unexpectedly due to integer overflow. The highest threat from this vulnerability is to availability,...

8.8CVSS7.6AI score0.02778EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2025/12/04 11:12 p.m.2 views

expat: Integer overflow in storeAtts in xmlparse.c

expat libexpat is susceptible to a software flaw that causes process interruption. When processing a large number of prefixed XML attributes on a single tag can libexpat can terminate unexpectedly due to integer overflow. The highest threat from this vulnerability is to availability,...

8.8CVSS7.6AI score0.02778EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2025/11/13 12:0 a.m.4 views

Siemens SIMATIC S7-1500 Integer Overflow or Wraparound (CVE-2022-22827)

storeAtts in xmlparse.c in Expat aka libexpat before 2.4.3 has an integer overflow. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504336;...

8.8CVSS6.8AI score0.02778EPSS
Exploits0References5
OSV
OSVadded 2025/10/14 3:35 p.m.6 views

JLSEC-2025-42 In Expat (aka libexpat) before 2.4.3, a left shift by 29 (or more) places in the storeAtts function ...

In Expat aka libexpat before 2.4.3, a left shift by 29 or more places in the storeAtts function in xmlparse.c can lead to realloc misbehavior e.g., allocating too few bytes, or only freeing memory...

9CVSS6.9AI score0.042EPSS
Exploits1References18
OSV
OSVadded 2025/10/14 3:35 p.m.4 views

JLSEC-2025-49 storeAtts in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.

storeAtts in xmlparse.c in Expat aka libexpat before 2.4.3 has an integer overflow...

8.8CVSS7.1AI score0.02778EPSS
Exploits0References12
OSV
OSVadded 2024/07/05 11:8 a.m.4 views

OESA-2024-1815 mozjs78 security update

Security Fixes: In Expat aka libexpat before 2.4.3, a left shift by 29 or more places in the storeAtts function in xmlparse.c can lead to realloc misbehavior e.g., allocating too few bytes, or only freeing memory.CVE-2021-45960 xmltokimpl.c in Expat aka libexpat before 2.4.5 lacks certain...

9.8CVSS8.8AI score0.04915EPSS
Exploits1References3
OSV
OSVadded 2023/08/06 11:5 a.m.6 views

OESA-2023-1465 firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. Security Fixes: In Expat aka libexpat before 2.4.3, a left shift by 29 or more places in the storeAtts function in xmlparse.c can lead to realloc misbehavior e.g., allocating too few...

9CVSS7AI score0.042EPSS
Exploits2References6
OSV
OSVadded 2023/08/06 11:5 a.m.5 views

OESA-2023-1464 firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. Security Fixes: In Expat aka libexpat before 2.4.3, a left shift by 29 or more places in the storeAtts function in xmlparse.c can lead to realloc misbehavior e.g., allocating too few...

9CVSS7AI score0.042EPSS
Exploits2References6
RedHat Linux
RedHat Linuxadded 2022/10/26 8:5 p.m.4 views

expat: Integer overflow in storeAtts in xmlparse.c

expat libexpat is susceptible to a software flaw that causes process interruption. When processing a large number of prefixed XML attributes on a single tag can libexpat can terminate unexpectedly due to integer overflow. The highest threat from this vulnerability is to availability,...

8.8CVSS7.5AI score0.02778EPSS
Exploits0References5
Rows per page
Query Builder