Lucene search
+L

89 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/18 12:0 a.m.9 views

Siemens (CVE-2025-49794)

A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the schema elements. This flaw allows a malicious actor to craft a malicious XML document used as input for libxml, resulting in the program's...

9.1CVSS6.8AI score0.00669EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Firefox

A vulnerability was identified in Thunderbird, where XPath parsing could trigger undefined behavior due to the lack of null checks during attribute access. This could lead to out-of-bounds read access and, potentially, memory corruption. This vulnerability has been fixed in Firefox 138, Firefox E...

4.8CVSS6.7AI score0.00264EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.6 views

MiracleLinux 8 : firefox-128.10.0-1.el8_10.ML.1 (AXSA:2025-9933:13)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2025-9933:13 advisory. firefox: thunderbird: Privilege escalation in Firefox Updater CVE-2025-2817 firefox: thunderbird: Unsafe attribute access during XPath parsing...

9.1CVSS7.2AI score0.00534EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.5 views

MiracleLinux 8 : thunderbird-128.10.0-1.el8_10.ML.1 (AXSA:2025-9937:11)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2025-9937:11 advisory. firefox: thunderbird: Privilege escalation in Firefox Updater CVE-2025-2817 firefox: thunderbird: Unsafe attribute access during XPath parsing...

9.1CVSS7.2AI score0.00534EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.7 views

TencentOS Server 4: mozjs (TSSA-2025:0366)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0366 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

9.1CVSS7.9AI score0.00534EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.5 views

TencentOS Server 3: libxml2 (TSSA-2025:0642)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0642 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

9.1CVSS7.2AI score0.01437EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2025/10/27 5:46 p.m.4 views

libxml: Heap use after free (UAF) leads to Denial of service (DoS)

A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the schema elements. This flaw allows a malicious actor to craft a malicious XML document used as input for libxml, resulting in the program's...

9.1CVSS7.1AI score0.00669EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/10/11 12:0 a.m.6 views

EulerOS 2.0 SP11 : libxml2 (EulerOS-SA-2025-2203)

According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in the interactive shell of the xmllint command-line tool, used for parsing XML files. When a user inputs an overly long command...

9.1CVSS6.8AI score0.01437EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.3 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: libxml2 (UTSA-2025-986089)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986089 advisory. A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the schema...

9.1CVSS6.5AI score0.00669EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.5 views

Unity Linux 20.1070a Security Update: libxml2 (UTSA-2025-986125)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986125 advisory. A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the schema...

9.1CVSS6.5AI score0.00669EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-12657

Malicious code in bioql PyPI...

4.8CVSS8AI score0.00264EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.8 views

EulerOS 2.0 SP10 : libxml2 (EulerOS-SA-2025-2105)

According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML...

9.1CVSS7.4AI score0.01437EPSS
Exploits1References5
IBM Security Bulletins
IBM Security Bulletins
added 2025/09/05 7:4 p.m.12 views

Security Bulletin: Multiple vulnerabilities in IBM MQ Operator and Queue manager container images

Summary Multiple vulnerabilities were addressed in IBM MQ Operator and Queue manager container images Vulnerability Details CVEID:CVE-2025-32415 DESCRIPTION: In libxml2 before 2.13.8 and 2.14.x before 2.14.2, xmlSchemaIDCFillNodeTables in xmlschemas.c has a heap-based buffer under-read. To exploi...

9.8CVSS8.6AI score0.73495EPSS
Exploits8Affected Software1
RedHat Linux
RedHat Linux
added 2025/07/30 7:16 a.m.29 views

libxml: Heap use after free (UAF) leads to Denial of service (DoS)

A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the schema elements. This flaw allows a malicious actor to craft a malicious XML document used as input for libxml, resulting in the program's...

9.1CVSS7.1AI score0.00669EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/07/30 7:14 a.m.7 views

libxml: Heap use after free (UAF) leads to Denial of service (DoS)

A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the schema elements. This flaw allows a malicious actor to craft a malicious XML document used as input for libxml, resulting in the program's...

9.1CVSS7.1AI score0.00669EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/07/30 7:10 a.m.6 views

libxml: Heap use after free (UAF) leads to Denial of service (DoS)

A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the schema elements. This flaw allows a malicious actor to craft a malicious XML document used as input for libxml, resulting in the program's...

9.1CVSS7.1AI score0.00669EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/07/30 5:36 a.m.10 views

libxml: Heap use after free (UAF) leads to Denial of service (DoS)

A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the schema elements. This flaw allows a malicious actor to craft a malicious XML document used as input for libxml, resulting in the program's...

9.1CVSS7.1AI score0.00669EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/07/30 12:0 a.m.6 views

RockyLinux 9 : thunderbird (RLSA-2025:4460)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:4460 advisory. firefox: thunderbird: Privilege escalation in Firefox Updater CVE-2025-2817 firefox: thunderbird: Unsafe attribute access during XPath parsing...

9.1CVSS7.2AI score0.00534EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2025/07/30 12:0 a.m.5 views

Azure Linux 3.0 Security Update: libxml2 (CVE-2025-49794)

The version of libxml2 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-49794 advisory. - A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under...

9.1CVSS6.6AI score0.00669EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/07/29 4:2 p.m.5 views

libxml: Heap use after free (UAF) leads to Denial of service (DoS)

A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the schema elements. This flaw allows a malicious actor to craft a malicious XML document used as input for libxml, resulting in the program's...

9.1CVSS7.1AI score0.00669EPSS
Exploits0References5
Rows per page
Query Builder