Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Tenable Nessus
Tenable Nessusadded 2018/09/07 12:0 a.m.85 views

Amazon Linux AMI : libxml2 (ALAS-2018-1072)

A NULL pointer dereference vulnerability exists in the xpath.c:xmlXPathCompOpEval function of libxml2 when parsing invalid XPath expression. Applications processing untrusted XSL format inputs with the use of libxml2 library may be vulnerable to denial of service attack due to crash of the...

7.5CVSS6.7AI score0.20012EPSS
Exploits0References2
Prion
Prionadded 2018/07/19 1:29 p.m.26 views

Null pointer dereference

A NULL pointer dereference vulnerability exists in the xpath.c:xmlXPathCompOpEval function of libxml2 through 2.9.8 when parsing an invalid XPath expression in the XPATHOPAND or XPATHOPOR case. Applications processing untrusted XSL format inputs with the use of the libxml2 library may be vulnerab...

5CVSS7.2AI score0.20012EPSS
Exploits0References9Affected Software2
Debian CVE
Debian CVEadded 2018/07/19 1:0 p.m.45 views

CVE-2018-14404

A NULL pointer dereference vulnerability exists in the xpath.c:xmlXPathCompOpEval function of libxml2 through 2.9.8 when parsing an invalid XPath expression in the XPATHOPAND or XPATHOPOR case. Applications processing untrusted XSL format inputs with the use of the libxml2 library may be vulnerab...

7.5CVSS6.4AI score0.20012EPSS
Exploits0
Veracode
Veracodeadded 2018/07/19 2:58 a.m.33 views

Denial Of Service (DoS)

libxml2 is affected by a denial-of-service DoS vulnerability. In xpath.c:xmlXPathCompOpEval, the cases XPATHOPAND and XPATHOPOR does not check for NULL values when assigning valuePopctxt which can result in a NULL pointer deference leading to a denial of service condition...

7.5CVSS7.3AI score0.20012EPSS
Exploits0References9Affected Software3
Veracode
Veracodeadded 2018/02/08 2:39 a.m.28 views

Copy-Paste Vulnerability Through LibXML2

Nokogiri and Chef are vulnerable to attacks through a copied version of LibXML2 within the codebase. LibXML2 before 2.9.5 is vulnerable to CVE-2017-15412 - LibXML2 contains a use-after-free bug in the xmlXPathCompOpEvalPositionPredicate method in xpath.c...

8.8CVSS8.5AI score0.02535EPSS
Exploits1
Cvelist
Cvelistadded 2011/09/02 4:0 p.m.20 views

CVE-2011-1944

Integer overflow in xpath.c in libxml2 2.6.x through 2.6.32 and 2.7.x through 2.7.8, and libxml 1.8.16 and earlier, allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted XML file that triggers a heap-based buffer overflow when addi...

8.5AI score0.23686EPSS
Exploits1References20
FreeBSD
FreeBSDadded 2011/09/02 12:0 a.m.32 views

libxml -- Integer overflow

Integer overflow in xpath.c, allows context-dependent attackers to to cause a denial of service crash and possibly execute arbitrary code via a crafted XML file that triggers a heap-based buffer overflow when adding a new namespace node, related to handling of XPath expressions...

9.3CVSS8.6AI score0.23686EPSS
Exploits1
Rows per page
Query Builder