Lucene search
K

35 matches found

RedhatCVE
RedhatCVE
added 2026/06/23 8:0 a.m.7 views

CVE-2026-56410

A flaw was found in libexpat. Specifically, the xmlwf utility contains an integer overflow vulnerability in its resolveSystemId function. This flaw could be exploited by an attacker to potentially gain unauthorized access to sensitive information or execute arbitrary code, leading to a compromise...

6.9CVSS6.1AI score0.0011EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/22 7:32 p.m.8 views

CVE-2026-56411

A flaw was found in libexpat, a software library used for parsing XML Extensible Markup Language documents. An attacker could exploit an integer overflow vulnerability in the xmlwf utility by crafting malicious NOTATION declarations. This could lead to the disclosure of sensitive information or...

6.9CVSS5.9AI score0.0011EPSS
Exploits0References4
OSV
OSV
added 2026/06/21 5:16 p.m.4 views

ALPINE-CVE-2026-56411

xmlwf in libexpat before 2.8.2 has an integer overflow in endDoctypeDecl via NOTATION declarations...

6.9CVSS5.8AI score0.0011EPSS
Exploits0References1
NVD
NVD
added 2026/06/21 5:16 p.m.15 views

CVE-2026-56411

xmlwf in libexpat before 2.8.2 has an integer overflow in endDoctypeDecl via NOTATION declarations...

6.9CVSS0.0011EPSS
Exploits0References1
OSV
OSV
added 2026/06/21 5:16 p.m.4 views

UBUNTU-CVE-2026-56411

xmlwf in libexpat before 2.8.2 has an integer overflow in endDoctypeDecl via NOTATION declarations...

6.9CVSS5.8AI score0.0011EPSS
Exploits0References3
OSV
OSV
added 2026/06/21 4:16 p.m.4 views

ALPINE-CVE-2026-56410

xmlwf in libexpat before 2.8.2 has an integer overflow in resolveSystemId...

6.9CVSS5.8AI score0.0011EPSS
Exploits0References1
NVD
NVD
added 2026/06/21 4:16 p.m.11 views

CVE-2026-56410

xmlwf in libexpat before 2.8.2 has an integer overflow in resolveSystemId...

6.9CVSS0.0011EPSS
Exploits0References1
NVD
NVD
added 2026/06/21 4:16 p.m.17 views

CVE-2026-56409

xmlwf in libexpat before 2.8.2 has an integer overflow for the output filename when -d outputDir is used...

6.5CVSS0.00098EPSS
Exploits0References1
OSV
OSV
added 2026/06/21 4:16 p.m.4 views

ALPINE-CVE-2026-56409

xmlwf in libexpat before 2.8.2 has an integer overflow for the output filename when -d outputDir is used...

6.5CVSS5.8AI score0.00098EPSS
Exploits0References1
OSV
OSV
added 2026/06/21 4:16 p.m.4 views

UBUNTU-CVE-2026-56409

xmlwf in libexpat before 2.8.2 has an integer overflow for the output filename when -d outputDir is used...

6.5CVSS5.8AI score0.00098EPSS
Exploits0References3
OSV
OSV
added 2026/06/21 4:16 p.m.5 views

UBUNTU-CVE-2026-56410

xmlwf in libexpat before 2.8.2 has an integer overflow in resolveSystemId...

6.9CVSS5.8AI score0.0011EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/06/21 3:56 p.m.4 views

CVE-2026-56411

xmlwf in libexpat before 2.8.2 has an integer overflow in endDoctypeDecl via NOTATION declarations...

6.9CVSS5.9AI score0.0011EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/21 3:56 p.m.37 views

CVE-2026-56411

xmlwf in libexpat before 2.8.2 has an integer overflow in endDoctypeDecl via NOTATION declarations...

6.9CVSS0.0011EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/06/21 3:56 p.m.5 views

CVE-2026-56411

xmlwf in libexpat before 2.8.2 has an integer overflow in endDoctypeDecl via NOTATION declarations...

6.9CVSS5.9AI score0.0011EPSS
Exploits0
CVE
CVE
added 2026/06/21 3:56 p.m.36 views

CVE-2026-56411

CVE-2026-56411 affects libexpat’s xmlwf binary, with an integer overflow in endDoctypeDecl triggered by NOTATION declarations prior to version 2.8.2. The CVSS metrics indicate a Local attack vector, high confidentiality and integrity impact, and low availability impact, with no user interaction r...

6.9CVSS5.9AI score0.0011EPSS
Exploits0References1Affected Software1
AlpineLinux
AlpineLinux
added 2026/06/21 3:56 p.m.5 views

CVE-2026-56411

xmlwf in libexpat before 2.8.2 has an integer overflow in endDoctypeDecl via NOTATION declarations...

6.9CVSS5.8AI score0.0011EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/21 3:55 p.m.32 views

CVE-2026-56410

xmlwf in libexpat before 2.8.2 has an integer overflow in resolveSystemId...

6.9CVSS0.0011EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/21 3:55 p.m.11 views

EUVD-2026-38187

xmlwf in libexpat before 2.8.2 has an integer overflow in resolveSystemId...

6.9CVSS5.9AI score0.0011EPSS
Exploits0References1
CVE
CVE
added 2026/06/21 3:55 p.m.29 views

CVE-2026-56410

The vulnerability CVE-2026-56410 affects xmlwf in libexpat prior to 2.8.2, due to an integer overflow in resolveSystemId. Impact is indicated as high for confidentiality and integrity, with low availability impact; attack vector is local and no user interaction is required. Remedy: upgrade to lib...

6.9CVSS5.9AI score0.0011EPSS
Exploits0References1Affected Software1
Debian CVE
Debian CVE
added 2026/06/21 3:55 p.m.5 views

CVE-2026-56410

xmlwf in libexpat before 2.8.2 has an integer overflow in resolveSystemId...

6.9CVSS5.9AI score0.0011EPSS
Exploits0
Rows per page
Query Builder