Lucene search
K

26 matches found

Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: woodstox-core (UTSA-2025-680589)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-680589 advisory. Those using Woodstox to parse XML data may be vulnerable to Denial of Service attacks DOS if DTD support is enabled. If the parser is running on user supplied input,...

7.5CVSS6.4AI score0.19653EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2025/05/05 12:13 a.m.5 views

woodstox-core: woodstox to serialise XML data was vulnerable to Denial of Service attacks

A flaw was found in the FasterXML/woodstox package. This flaw allows an attacker to cause a denial of service DoS in its target via XML serialization. An attacker may benefit from the parser sending a malicious input that may cause a crash. This vulnerability is only relevant for users using the...

7.5CVSS7.2AI score0.19653EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2025/04/28 12:20 a.m.4 views

woodstox-core: woodstox to serialise XML data was vulnerable to Denial of Service attacks

A flaw was found in the FasterXML/woodstox package. This flaw allows an attacker to cause a denial of service DoS in its target via XML serialization. An attacker may benefit from the parser sending a malicious input that may cause a crash. This vulnerability is only relevant for users using the...

7.5CVSS7.2AI score0.19653EPSS
Exploits1References5
OSV
OSV
added 2024/11/15 12:19 p.m.5 views

OESA-2024-2378 woodstox-core security update

Woodstox is a high-performance validating namespace-aware StAX-compliant JSR-173 Open Source XML-processor written in Java. XML processor means that it handles both input == parsing and output == writing, serialization, as well as supporting tasks such as validation. Security Fixes: Those using...

7.5CVSS6.8AI score0.19653EPSS
Exploits1References2
Amazon
Amazon
added 2024/02/19 12:0 a.m.6 views

Medium: woodstox-core

Issue Overview: Those using Woodstox to parse XML data may be vulnerable to Denial of Service attacks DOS if DTD support is enabled. If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial o...

7.5CVSS7AI score0.19653EPSS
Exploits1
Amazon
Amazon
added 2024/02/19 12:0 a.m.35 views

Medium: woodstox-core

Issue Overview: Those using Woodstox to parse XML data may be vulnerable to Denial of Service attacks DOS if DTD support is enabled. If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial o...

7.5CVSS8.1AI score0.19653EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/02/19 12:0 a.m.38 views

Amazon Linux 2 : woodstox-core (ALAS-2024-2463)

The version of woodstox-core installed on the remote host is prior to 4.1.2-8. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2463 advisory. Those using Woodstox to parse XML data may be vulnerable to Denial of Service attacks DOS if DTD support is enabled. If the...

7.5CVSS6.5AI score0.19653EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2023/09/05 6:37 p.m.4 views

woodstox-core: woodstox to serialise XML data was vulnerable to Denial of Service attacks

A flaw was found in the FasterXML/woodstox package. This flaw allows an attacker to cause a denial of service DoS in its target via XML serialization. An attacker may benefit from the parser sending a malicious input that may cause a crash. This vulnerability is only relevant for users using the...

7.5CVSS7.2AI score0.19653EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2023/09/05 6:37 p.m.62 views

Important: Red Hat Security Advisory: Red Hat Process Automation Manager 7.13.4 security update

An update is now available for Red Hat Process Automation Manager. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which provides a detailed severity rating, is available for each vulnerability from th...

9.8CVSS6.8AI score0.46836EPSS
Exploits8References13
RedHat Linux
RedHat Linux
added 2023/06/27 11:28 a.m.3 views

woodstox-core: woodstox to serialise XML data was vulnerable to Denial of Service attacks

A flaw was found in the FasterXML/woodstox package. This flaw allows an attacker to cause a denial of service DoS in its target via XML serialization. An attacker may benefit from the parser sending a malicious input that may cause a crash. This vulnerability is only relevant for users using the...

7.5CVSS7.2AI score0.19653EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2023/06/27 11:28 a.m.58 views

Important: Red Hat Security Advisory: Service Registry (container images) release and security update [2.4.3 GA]

An update to the images for Red Hat Integration - Service Registry is now available from the Red Hat Container Catalog. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Red Hat Product Security has rated this update as having a security impact...

9.8CVSS6.7AI score0.19653EPSS
Exploits3References10
RedHat Linux
RedHat Linux
added 2023/06/15 3:23 p.m.7 views

woodstox-core: woodstox to serialise XML data was vulnerable to Denial of Service attacks

A flaw was found in the FasterXML/woodstox package. This flaw allows an attacker to cause a denial of service DoS in its target via XML serialization. An attacker may benefit from the parser sending a malicious input that may cause a crash. This vulnerability is only relevant for users using the...

7.5CVSS7.2AI score0.19653EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2023/05/24 5:13 p.m.4 views

woodstox-core: woodstox to serialise XML data was vulnerable to Denial of Service attacks

A flaw was found in the FasterXML/woodstox package. This flaw allows an attacker to cause a denial of service DoS in its target via XML serialization. An attacker may benefit from the parser sending a malicious input that may cause a crash. This vulnerability is only relevant for users using the...

7.5CVSS7.2AI score0.19653EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2023/05/03 2:5 p.m.6 views

woodstox-core: woodstox to serialise XML data was vulnerable to Denial of Service attacks

A flaw was found in the FasterXML/woodstox package. This flaw allows an attacker to cause a denial of service DoS in its target via XML serialization. An attacker may benefit from the parser sending a malicious input that may cause a crash. This vulnerability is only relevant for users using the...

7.5CVSS7.2AI score0.19653EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2023/03/28 12:0 a.m.24 views

Mageia: Security Advisory (MGASA-2023-0104)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.7AI score0.19653EPSS
Exploits1References4
OSV
OSV
added 2023/03/18 10:16 p.m.10 views

MGASA-2023-0104 Updated woodstox-core packages fix security vulnerability

Denial of service using crafted input. CVE-2022-40152...

7.5CVSS7.4AI score0.19653EPSS
Exploits1References3
Mageia
Mageia
added 2023/03/18 10:16 p.m.194 views

Updated woodstox-core packages fix security vulnerability

Denial of service using crafted input. CVE-2022-40152...

7.5CVSS2.8AI score0.19653EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2023/01/31 1:18 p.m.64 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.9 Security update

An update is now available for Red Hat JBoss Enterprise Application Platform 7.4. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS7.7AI score0.99019EPSS
Exploits32References42
RedHat Linux
RedHat Linux
added 2023/01/31 1:15 p.m.6 views

woodstox-core: woodstox to serialise XML data was vulnerable to Denial of Service attacks

A flaw was found in the FasterXML/woodstox package. This flaw allows an attacker to cause a denial of service DoS in its target via XML serialization. An attacker may benefit from the parser sending a malicious input that may cause a crash. This vulnerability is only relevant for users using the...

7.5CVSS7.2AI score0.19653EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2023/01/31 1:15 p.m.3 views

woodstox-core: woodstox to serialise XML data was vulnerable to Denial of Service attacks

A flaw was found in the FasterXML/woodstox package. This flaw allows an attacker to cause a denial of service DoS in its target via XML serialization. An attacker may benefit from the parser sending a malicious input that may cause a crash. This vulnerability is only relevant for users using the...

7.5CVSS7.2AI score0.19653EPSS
Exploits1References5
Rows per page
Query Builder