Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

Positive Technologies
Positive Technologiesadded 2026/05/08 12:0 a.m.6 views

PT-2026-38843

xsltGetInheritedNsList in libxslt before 1.1.43 has a use-after-free issue related to exclusion of result prefixes...

7.8CVSS5.8AI score0.00104EPSS
Exploits3References4
OSV
OSVadded 2026/05/06 2:45 p.m.2 views

BIT-JAVA-2024-55549

xsltGetInheritedNsList in libxslt before 1.1.43 has a use-after-free issue related to exclusion of result prefixes...

7.8CVSS7.1AI score0.00104EPSS
Exploits3References3
Tenable Nessus
Tenable Nessusadded 2026/01/14 12:0 a.m.3 views

MiracleLinux 3 : libxslt-1.1.17-4.3.0.1.AXS3 (AXSA:2012-927:01)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2012-927:01 advisory. This C library allows to transform XML files into other XML files or HTML, text, ... using the standard XSLT stylesheet transformation mechanism. To...

6.8CVSS8.9AI score0.01505EPSS
Exploits1References6
Tenable Nessus
Tenable Nessusadded 2025/08/22 12:0 a.m.2 views

Nutanix AHV : Multiple Vulnerabilities (NXSA-AHV-10.0.1.2)

The version of AHV installed on the remote host is prior to AHV-10.0.1.2. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AHV-10.0.1.2 advisory. - inftrees.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper...

8.8CVSS7.4AI score0.70761EPSS
Exploits5References12
SUSE CVE
SUSE CVEadded 2025/03/14 2:45 p.m.1 views

SUSE CVE-2025-24855

numbers.c in libxslt before 1.1.43 has a use-after-free because, in nested XPath evaluations, an XPath context node can be modified but never restored. This is related to xsltNumberFormatGetValue, xsltEvalXPathPredicate, xsltEvalXPathStringNs, and xsltComputeSortResultInternal...

7.8CVSS7.5AI score0.00087EPSS
Exploits1References12
OSV
OSVadded 2024/04/03 8:42 p.m.1 views

CLSA-2024-1712176929 Update of libxslt

Fix use-after-free in xsltApplyTemplates...

5.8AI score
Exploits0References1
OSV
OSVadded 2022/07/19 6:15 p.m.1 views

DEBIAN-CVE-2022-34169

The Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets. This can be used to corrupt Java class files generated by the internal XSLTC compiler and execute arbitrary Java bytecode. Users are recommended to update to version 2.7.3 o...

7.5CVSS7.2AI score0.10953EPSS
Exploits2References1
CNVD
CNVDadded 2019/11/05 12:0 a.m.1 views

Multiple Apple Products libxslt Component Memory Corruption Vulnerability

Apple watchOS and others are products of Apple Inc.Apple watchOS is a smartwatch operating system.Apple iCloud for Windows is a cloud service based on the Windows platform. The product supports storage of music, photos, apps, contacts, etc. Apple macOS Catalina is a specialized operating system...

9.8CVSS5.8AI score0.00527EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2008/05/21 7:30 a.m.0 views

libxslt: fixed-sized steps array overflow via "template match" condition in XSL file

Buffer overflow in pattern.c in libxslt before 1.1.24 allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via an XSL style sheet file with a long XSLT "transformation match" condition that triggers a large number of steps...

7.5CVSS7.8AI score0.2079EPSS
Exploits2References4
Rows per page
Query Builder