CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16 matches found

OSV•added 2025/11/14 2:45 p.m.•15 views

HSEC-2023-0004 xml-conduit unbounded entity expansion

xml-conduit unbounded entity expansion A vulnerability was found in xml-conduit. It has been classified as problematic. Affected is an unknown function of the file xml-conduit/src/Text/XML/Stream/Parse.hs of the component DOCTYPE Entity Expansion Handler. The manipulation leads to infinite loop. ...

7.5CVSS5.7AI score0.00724EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2021-34096

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00724EPSS

Exploits0References5

Tenable Nessus•added 2025/03/05 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2021-4249

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in xml-conduit. It has been classified as problematic. Affected is an unknown function of the file...

7.5CVSS6.3AI score0.00724EPSS

Exploits0References3

SUSE CVE•added 2023/02/15 3:47 a.m.•1 views

SUSE CVE-2021-4249

A vulnerability was found in xml-conduit. It has been classified as problematic. Affected is an unknown function of the file xml-conduit/src/Text/XML/Stream/Parse.hs of the component DOCTYPE Entity Expansion Handler. The manipulation leads to infinite loop. It is possible to launch the attack...

7.5CVSS7AI score0.00724EPSS

Exploits0References3

OSV•added 2022/12/18 3:15 p.m.•8 views

CVE-2021-4249

7.5CVSS7.7AI score

Exploits0References4

OSV•added 2022/12/18 3:15 p.m.•1 views

DEBIAN-CVE-2021-4249

7.5CVSS6AI score0.00724EPSS

Exploits0References1

NVD•added 2022/12/18 3:15 p.m.•7 views

CVE-2021-4249

7.5CVSS0.00724EPSS

Exploits0References4

OSV•added 2022/12/18 3:15 p.m.•0 views

UBUNTU-CVE-2021-4249

7.5CVSS4.8AI score0.00724EPSS

Exploits0References4

UbuntuCve•added 2022/12/18 3:15 p.m.•13 views

CVE-2021-4249

7.5CVSS6.4AI score0.00724EPSS

Exploits0References3

Prion•added 2022/12/18 3:15 p.m.•10 views

Design/Logic Flaw

5CVSS7.6AI score0.00724EPSS

Exploits0References4Affected Software1

Debian CVE•added 2022/12/18 12:0 a.m.•15 views

CVE-2021-4249

7.5CVSS7.6AI score0.00724EPSS

Exploits0

Positive Technologies•added 2022/12/18 12:0 a.m.•1 views

PT-2022-11601

Name of the Vulnerable Software and Affected Versions xml-conduit versions prior to 1.9.1.0 Description A vulnerability was found in the DOCTYPE Entity Expansion Handler component of xml-conduit, affecting an unknown function of the file xml-conduit/src/Text/XML/Stream/Parse.hs. The manipulation...

7.5CVSS7.1AI score0.00724EPSS

Exploits0References20

Cvelist•added 2022/12/18 12:0 a.m.•11 views

CVE-2021-4249 xml-conduit DOCTYPE Entity Expansion Parse.hs infinite loop

4.3CVSS7.8AI score0.00724EPSS

Exploits0References4

CNNVD•added 2022/12/18 12:0 a.m.•1 views

snoyberg xml 安全漏洞

snoyberg xml is a package of various XML utilities for Haskell by the individual developer Michael Snoyman. A security vulnerability exists in snoyberg xml that stems from an infinite loop caused by some unknown functions in the xml-conduit/src/Text/XML/Stream/Parse.hs file of its component DOCTY...

7.5CVSS7.2AI score0.00724EPSS

Exploits0References5

Vulnrichment•added 2022/12/18 12:0 a.m.•4 views

CVE-2021-4249 xml-conduit DOCTYPE Entity Expansion Parse.hs infinite loop

4.3CVSS5.1AI score0.00724EPSS

Exploits0References4

CVE•added 2022/12/18 12:0 a.m.•65 views

CVE-2021-4249

CVE-2021-4249 affects the Haskell library xml-conduit. The issue lies in the DOCTYPE Entity Expansion Handler within xml-conduit/src/Text/XML/Stream/Parse.hs, where manipulation can cause an infinite loop. It is possible to trigger the issue remotely. Public details consistently recommend upgradi...

7.5CVSS5.9AI score0.00724EPSS

Exploits0References4Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by