PT-2022-1762 · Expat +12 · Expat +12

Name of the Vulnerable Software and Affected Versions: Expat versions prior to 2.4.3 Description: The issue is related to an integer overflow in the build model function in xmlparse.c of the Expat library. This could allow a remote attacker to execute arbitrary code on the system by persuading a...

Apache Ambari 2.4.0 - 2.4.2, 2.5.0 XML Injection Vulnerability

Apache Ambari is prone to an XML injection vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apache:ambari";...