Lucene search
K

47 matches found

CVE
CVE
added 2013/04/09 9:0 p.m.136 views

CVE-2013-1821

CVE-2013-1821 is an XML Entity Expansion (XEE) denial-of-service vulnerability in the REXML parser of Ruby. The provided sources confirm affected Ruby/REXML configurations across multiple lines: Ruby before 1.9.3-p392 (initial description) and extended references indicate the issue affects 1.9.x ...

5CVSS5.4AI score0.06671EPSS
Exploits0References23Affected Software1
NVD
NVD
added 2013/04/03 12:55 a.m.22 views

CVE-2013-1664

The XML libraries for Python 3.4, 3.3, 3.2, 3.1, 2.7, and 2.6, as used in OpenStack Keystone Essex, Folsom, and Grizzly; Compute Nova Essex and Folsom; Cinder Folsom; Django; and possibly other products allow remote attackers to cause a denial of service resource consumption and crash via an XML...

5CVSS9.2AI score0.04863EPSS
Exploits1References10
CVE
CVE
added 2013/04/03 12:0 a.m.127 views

CVE-2013-1664

The CVE-2013-1664 issue concerns the Python XML libraries (used by OpenStack components: Keystone Essex/Folsom/Grizzly, Nova Essex/Folsom, Cinder Folsom, Django, and possibly other products) that allow remote attackers to trigger a denial-of-service via XML Entity Expansion (XEE). The root cause ...

5CVSS9AI score0.04863EPSS
Exploits1References10Affected Software6
Cvelist
Cvelist
added 2013/04/03 12:0 a.m.53 views

CVE-2013-1664

The XML libraries for Python 3.4, 3.3, 3.2, 3.1, 2.7, and 2.6, as used in OpenStack Keystone Essex, Folsom, and Grizzly; Compute Nova Essex and Folsom; Cinder Folsom; Django; and possibly other products allow remote attackers to cause a denial of service resource consumption and crash via an XML...

9.2AI score0.04863EPSS
Exploits1References10
Debian CVE
Debian CVE
added 2013/04/03 12:0 a.m.27 views

CVE-2013-1664

The XML libraries for Python 3.4, 3.3, 3.2, 3.1, 2.7, and 2.6, as used in OpenStack Keystone Essex, Folsom, and Grizzly; Compute Nova Essex and Folsom; Cinder Folsom; Django; and possibly other products allow remote attackers to cause a denial of service resource consumption and crash via an XML...

5CVSS9.4AI score0.04863EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2013/03/07 12:0 a.m.33 views

CVE-2013-1821

lib/rexml/text.rb in the REXML parser in Ruby before 1.9.3-p392 allows remote attackers to cause a denial of service memory consumption and crash via crafted text nodes in an XML document, aka an XML Entity Expansion XEE attack...

5CVSS7.2AI score0.06671EPSS
Exploits0References3
CVE
CVE
added 2013/02/13 5:0 p.m.76 views

CVE-2012-6532

CVE-2012-6532 affects Zend Framework 1.x: Zend_Dom, Zend_Feed, Zend_Soap, and Zend_XmlRpc before 1.11.13 and 1.12.x before 1.12.0. It allows remote attackers to cause a denial of service via XML Entity Expansion (XEE) caused by recursive or circular references in a DOCTYPE declaration. The vulner...

5CVSS8.9AI score0.01848EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder