CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

40 matches found

AstraLinux•added 2026/05/03 11:59 p.m.•1 views

Astra Linux - уязвимость в libxml2

The vulnerability of the xmlStringGetNodeList function in the tree.c component of the Libxml2 library is related to pointer dereferencing errors. Exploiting this vulnerability allows an attacker to cause a service failure...

5.5CVSS5.8AI score

Exploits0References1

RedhatCVE•added 2026/01/07 9:31 a.m.•2 views

CVE-2019-16164

MyHTML through 4.0.5 has a NULL pointer dereference in myhtmltreenoderemove in tree.c...

6.5CVSS6.9AI score0.00285EPSS

Exploits1References1

Snyk•added 2025/11/07 12:0 a.m.•1 views

Use After Free

Amendment This was deemed not a vulnerability. Overview Affected versions of this package are vulnerable to Use After Free via the xmlSetTreeDoc function in the tree.c file. An attacker can cause a crash of services or applications by providing crafted XML content that triggers access to a...

8.7CVSS5.3AI score0.00068EPSS

Exploits0References2

OSV•added 2025/10/17 5:40 p.m.•2 views

JLSEC-2025-82 libxml2 through 2.11.5 has a use-after-free that can only occur after a certain memory allocation fa...

libxml2 through 2.11.5 has a use-after-free that can only occur after a certain memory allocation fails. This occurs in xmlUnlinkNode in tree.c. NOTE: the vendor's position is "I don't think these issues are critical enough to warrant a CVE ID ... because an attacker typically can't control when...

6.5CVSS6.5AI score0.0007EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2018-13106

Malware in sbrugna...

7.8CVSS8.6AI score0.00213EPSS

Exploits1References5

EUVD•added 2025/10/07 12:30 a.m.•0 views

EUVD-2019-6984

Malware in sbrugna...

6.5CVSS6.5AI score0.00285EPSS

Exploits1References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2021-32159

Malicious code in bioql PyPI...

5.5CVSS5.9AI score0.00138EPSS

Exploits1References3

OSV•added 2024/10/09 2:14 p.m.•15 views

CVE-2024-47668 lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc()

In the Linux kernel, the following vulnerability has been resolved: lib/generic-radix-tree.c: Fix rare race in genradixptralloc If we need to increase the tree depth, allocate a new node, and then race with another thread that increased the tree depth before us, we'll still have a preallocated no...

4.7CVSS6AI score0.00009EPSS

Exploits0References11

Vulnrichment•added 2024/05/21 3:30 p.m.•25 views

CVE-2021-47432 lib/generic-radix-tree.c: Don't overflow in peek()

In the Linux kernel, the following vulnerability has been resolved: lib/generic-radix-tree.c: Don't overflow in peek When we started spreading new inode numbers throughout most of the 64 bit inode space, that triggered some corner case bugs, in particular some integer overflows related to the rad...

7.2AI score0.00008EPSS

Exploits0References4

OpenVAS•added 2023/12/12 12:0 a.m.•18 views

Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2023-3278)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.8AI score0.0007EPSS

Exploits0References2

Tenable Nessus•added 2023/11/04 12:0 a.m.•38 views

Amazon Linux 2023 : libxml2, libxml2-devel, libxml2-static (ALAS2023-2023-411)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-411 advisory. libxml2 through 2.11.5 has a use-after-free that can only occur after a certain memory allocation fails. This occurs in xmlUnlinkNode in tree.c. NOTE: the vendor's position is I don't think these issues...

6.5CVSS6.8AI score0.0007EPSS

Exploits0References4

Amazon•added 2023/11/01 12:0 a.m.•37 views

Important: libxml2

Issue Overview: libxml2 through 2.11.5 has a use-after-free that can only occur after a certain memory allocation fails. This occurs in xmlUnlinkNode in tree.c. NOTE: the vendor's position is "I don't think these issues are critical enough to warrant a CVE ID ... because an attacker typically can...

6.5CVSS7.1AI score0.0007EPSS

Exploits0

OSV•added 2023/10/06 10:15 p.m.•1 views

AZL-31272 CVE-2023-45322 affecting package libxml2 for versions less than 2.10.4-2

6.5CVSS6.7AI score0.0007EPSS

Exploits0References1

OSV•added 2023/10/06 10:15 p.m.•1 views

DEBIAN-CVE-2023-45322

6.5CVSS6.8AI score0.0007EPSS

Exploits0References1

Positive Technologies•added 2023/10/06 12:0 a.m.•2 views

PT-2023-6121 · Libxml2 +4 · Libxml2 +4

Name of the Vulnerable Software and Affected Versions: libxml2 versions 2.11.5 and earlier Description: The issue is related to a use-after-free vulnerability in the xmlUnlinkNode function, located in tree.c, which can occur after a certain memory allocation fails. This could potentially allow a...

8.1CVSS6.5AI score0.04197EPSS

Exploits11References100

SUSE CVE•added 2023/02/15 5:4 a.m.•1 views

SUSE CVE-2016-3627

The xmlStringGetNodeList function in tree.c in libxml2 2.9.3 and earlier, when used in recovery mode, allows context-dependent attackers to cause a denial of service infinite recursion, stack consumption, and application crash via a crafted XML document...

7.5CVSS8.8AI score0.00086EPSS

Exploits1References12

SUSE CVE•added 2023/02/15 3:36 a.m.•1 views

SUSE CVE-2021-45387

tcpreplay 4.3.4 has a Reachable Assertion in addtreeipv4 at tree.c...

5.5CVSS5.9AI score0.00138EPSS

Exploits1References3

OSV•added 2022/08/09 4:54 p.m.•2 views

CLSA-2022-1660064066 Fix CVE(s): CVE-2022-29824

SECURITY UPDATE: Integer overflows - debian/patches/CVE-2022-29824.patch: Fix integer overflows in xmlBuf and xmlBuffer in tree.c, buf.c - CVE-2022-29824...

6.5CVSS6.8AI score0.00074EPSS

Exploits5References1

OSV•added 2022/03/22 5:15 p.m.•17 views

CVE-2022-25484

tcpprep v4.4.1 has a reachable assertion assertl2len 0 in packet2tree at tree.c in tcpprep v4.4.1...

5.5CVSS7.1AI score

Exploits0References1