CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Multiple Brother printers are prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...

8.1CVSS8.4AI score0.22062EPSS

Exploits2References2

Tenable Nessus•added 2025/08/24 12:0 a.m.•14 views

Linux Distros Unpatched Vulnerability : CVE-2017-9765

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in the soapget function in Genivia gSOAP 2.7.x and 2.8.x before 2.8.48, as used on Axis cameras and other devices, allows remote attackers to...

8.1CVSS8.8AI score0.22062EPSS

Exploits2References2

Tenable Nessus•added 2025/07/30 12:0 a.m.•3 views

CBL Mariner 2.0 Security Update: libxml2 (CVE-2025-49794)

The version of libxml2 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-49794 advisory. - A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under...

9.1CVSS6.6AI score0.00669EPSS

Exploits0References2

NVD•added 2025/06/16 4:15 p.m.•6 views

CVE-2025-49794

A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the schema elements. This flaw allows a malicious actor to craft a malicious XML document used as input for libxml, resulting in the program's...

9.1CVSS0.00669EPSS

Exploits0References32

F5 Networks•added 2025/06/16 12:58 a.m.•13 views

K000151869: libexpat vulnerability CVE-2024-8176

Security Advisory Description A stack overflow vulnerability exists in the libexpat library due to the way it handles recursive entity expansion in XML documents. When parsing an XML document with deeply nested entity references, libexpat can be forced to recurse indefinitely, exhausting the stac...

7.5CVSS7.2AI score0.01569EPSS

Exploits0Affected Software2

RedhatCVE•added 2025/05/23 9:46 a.m.•4 views

CVE-2024-25677

In Min before 1.31.0, local files are not correctly treated as unique security origins, which allows them to improperly request cross-origin resources. For example, a local file may request other local files through an XML document...

8.8CVSS6.8AI score0.00617EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 5:38 a.m.•9 views

CVE-2023-26058

An XXE issue was discovered in Nokia NetAct before 22 FP2211 via an XML document to a Performance Manager page. Input validation and a proper XML parser configuration are missing. For an external attacker, it is very difficult to exploit this, because a few dynamically created parameters such as...

6.5CVSS6.8AI score0.00486EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 3:55 a.m.•7 views

CVE-2023-34411

The xml-rs crate before 0.8.14 for Rust and Crab allows a denial of service panic via an invalid ! token such as !DOCTYPEs/%!A nesting in an XML document. The earliest affected version is 0.8.9...

7.5CVSS6.8AI score0.01172EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 3:42 a.m.•4 views

CVE-2023-30353

Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 allows unauthenticated remote code execution via an XML document...

9.8CVSS8.1AI score0.01208EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by