Lucene search
K

255 matches found

OSV
OSV
added 2025/01/29 12:13 a.m.5 views

OSV-2025-74 Stack-buffer-overflow in xmlValidateElementContent

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=392687022 Crash type: Stack-buffer-overflow WRITE Crash state: xmlValidateElementContent xmlValidateOneElement xmlValidateElement...

7.2AI score
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2024/10/22 10:20 a.m.36 views

Security Bulletin: Apache Xerces vulnerability Affects IBM Jazz Reporting Service

Summary Apache Xerces-J XML parser XML4J shipped with IBM Jazz Reporting Service is vulnerable to a denial of service attack that can be triggered by malformed XML data. Vulnerability Details CVEID:CVE-2020-14338 DESCRIPTION: Wildfly could allow a remote attacker to bypass security restrictions,...

7.8CVSS7.2AI score0.24738EPSS
Exploits0Affected Software1
OSV
OSV
added 2024/09/18 3:30 p.m.8 views

GHSA-W392-75Q8-VR67 Guardrails has an arbitrary code execution vulnerability

An arbitrary code execution vulnerability exists in versions 0.2.9 up to 0.5.10 of the Guardrails AI Guardrails framework because of the way it validates XML files. If a victim user loads a maliciously crafted XML file containing Python code, the code will be passed to an eval function, causing i...

8.8CVSS7.9AI score0.00375EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2024/09/18 3:30 p.m.16 views

Guardrails has an arbitrary code execution vulnerability

An arbitrary code execution vulnerability exists in versions 0.2.9 up to 0.5.10 of the Guardrails AI Guardrails framework because of the way it validates XML files. If a victim user loads a maliciously crafted XML file containing Python code, the code will be passed to an eval function, causing i...

7.8CVSS7.7AI score0.00375EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2024/09/18 3:2 p.m.14 views

CVE-2024-45858

An arbitrary code execution vulnerability exists in versions 0.2.9 up to 0.5.10 of the Guardrails AI Guardrails framework because of the way it validates XML files. If a victim user loads a maliciously crafted XML file containing Python code, the code will be passed to an eval function, causing i...

7.8CVSS0.00375EPSS
Exploits0References1
CVE
CVE
added 2024/09/18 3:2 p.m.41 views

CVE-2024-45858

CVE-2024-45858 affects Guardrails AI Guardrails framework versions 0.2.9–0.5.10. The root cause is improper validation of XML files, where loading a malicious XML containing Python code causes the code to be passed to eval and executed on the user’s machine. The vulnerability enables arbitrary co...

7.8CVSS8AI score0.00375EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/09/18 3:2 p.m.6 views

CVE-2024-45858

An arbitrary code execution vulnerability exists in versions 0.2.9 up to 0.5.10 of the Guardrails AI Guardrails framework because of the way it validates XML files. If a victim user loads a maliciously crafted XML file containing Python code, the code will be passed to an eval function, causing i...

7.8CVSS7.7AI score0.00375EPSS
Exploits0References1
OSV
OSV
added 2024/08/13 4:15 a.m.3 views

CVE-2024-42374

BEx Web Java Runtime Export Web Service does not sufficiently validate an XML document accepted from an untrusted source. An attacker can retrieve information from the SAP ADS system and exhaust the number of XMLForm service which makes the SAP ADS rendering PDF creation unavailable. This affects...

8.2CVSS5.8AI score0.00537EPSS
Exploits0References2
CVE
CVE
added 2024/08/13 3:34 a.m.58 views

CVE-2024-42374

CVE-2024-42374 affects the SAP BEx Web Java Runtime Export Web Service. The issue is insufficient validation of an XML document from an untrusted source, enabling an attacker to retrieve information from the SAP ADS system and exhaust the XMLForm service, which makes SAP ADS rendering (PDF creati...

8.2CVSS8.2AI score0.00537EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2024/08/12 12:0 a.m.8 views

PT-2024-6131 · Sap · Sap Bex Web Java Runtime Export Web Service

Name of the Vulnerable Software and Affected Versions: SAP BEx Web Java Runtime Export Web Service affected versions not specified Description: The issue is related to insufficient validation of an XML document accepted from an untrusted source in the SAP BEx Web Java Runtime Export Web Service...

8.5CVSS6.9AI score0.00537EPSS
Exploits0References10
BDU FSTEC
BDU FSTEC
added 2024/06/10 12:0 a.m.5 views

The vulnerability of the WordPress MasterStudy LMS plugin, a content management system for WordPress websites, allows attackers to execute arbitrary SQL queries.

The vulnerability of the WordPress MasterStudy LMS content management system’s plugin is related to the lack of verification of the validity of XML objects. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries remotely...

10CVSS8.1AI score0.77729EPSS
Exploits1References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2024/05/03 3:15 a.m.8 views

CVE-2023-41209

D-Link DAP-1325 SetHostIPv6StaticSettings StaticDNS1 Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to exploit this...

8.8CVSS6.3AI score0.00855EPSS
Exploits0References3Affected Software1
Veracode
Veracode
added 2024/04/10 11:50 a.m.19 views

XML External Entity Injection

org.apache.zeppelin: sap is vulnerable to XML External Entity Injection. This vulnerability is due to a lack of proper XML validation...

5.3CVSS6.7AI score0.01327EPSS
Exploits0References5Affected Software1
Redos
Redos
added 2024/04/10 12:0 a.m.33 views

ROS-20240410-16

A vulnerability in the xmlValidatePopElement function of the XML Reader Interface component of the Libxml2 library is related to the memory usage after it has been freed. Exploitation of the vulnerability could allow an attacker, acting remotely, to cause a denial of service using a specially...

7.5CVSS7.1AI score0.01375EPSS
Exploits3
Fedora
Fedora
added 2023/12/31 2:27 a.m.35 views

[SECURITY] Fedora 39 Update: xerces-c-3.2.5-1.fc39

Xerces-C is a validating XML parser written in a portable subset of C++. Xerces-C makes it easy to give your application the ability to read and write XML data. A shared library is provided for parsing, generating, manipulating, and validating XML documents. Xerces-C is faithful to the XML 1.0...

8.8CVSS7AI score0.09503EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2023/12/15 12:0 a.m.5 views

The vulnerability of the Cryptocurrency Widgets Pack plugin in the WordPress content management system arises from the lack of validation for XML objects’ sequences. This allows a malicious user to execute arbitrary SQL queries.

The vulnerability of the Cryptocurrency Widgets Pack plugin in the WordPress content management system is related to the lack of validation for the consistency of XML objects. Exploiting this vulnerability could allow a malicious actor to execute arbitrary SQL queries remotely...

10CVSS8.1AI score0.04756EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/10/28 12:0 a.m.4 views

The vulnerability of the WS_FTP Server server lies in the lack of validation for XML objects’ sequences, which allows an attacker to gain access to read and modify the database.

The vulnerability of the Oracle Database management system is related to the lack of validation for the consistency of XML objects. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to read and modify the database...

8.3CVSS7.5AI score0.00854EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2023/10/10 2:15 a.m.19 views

CVE-2023-40310

SAP PowerDesigner Client - version 16.7, does not sufficiently validate BPMN2 XML document imported from an untrusted source. As a result, URLs of external entities in BPMN2 file, although not used, would be accessed during import. A successful attack could impact availability of SAP...

7.5CVSS6.7AI score0.008EPSS
Exploits0References2
Prion
Prion
added 2023/10/10 2:15 a.m.20 views

Xxe

SAP PowerDesigner Client - version 16.7, does not sufficiently validate BPMN2 XML document imported from an untrusted source. As a result, URLs of external entities in BPMN2 file, although not used, would be accessed during import. A successful attack could impact availability of SAP...

5CVSS7.5AI score0.008EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/10/10 1:35 a.m.18 views

CVE-2023-40310 Missing XML Validation vulnerability in SAP PowerDesigner Client BPMN2 import

SAP PowerDesigner Client - version 16.7, does not sufficiently validate BPMN2 XML document imported from an untrusted source. As a result, URLs of external entities in BPMN2 file, although not used, would be accessed during import. A successful attack could impact availability of SAP...

6.5CVSS6.9AI score0.008EPSS
Exploits0References2
Rows per page
Query Builder