Libslax Security Vulnerabilities and Issues — Libslax CVE List

Lucene search

JuniperLibslax

5 matches found

CVE•added 2019/07/22 4:15 p.m.•89 views

CVE-2019-1010232

Juniper juniper/libslax libslax latest version (as of commit 084ddf6ab4a55b59dfa9a53f9c5f14d192c4f8e5 Commits on Sep 1, 2018) is affected by: Buffer Overflow. The impact is: remote dos. The component is: slaxlexer.c:601(funtion:slaxGetInput). The attack vector is: ./slaxproc --slax-to-xslt POC0.

6.5CVSS6.5AI score0.00252EPSS

CVE•added 2021/09/20 4:15 p.m.•44 views

CVE-2021-39531

An issue was discovered in libslax through v0.22.1. slaxLexer() in slaxlexer.c has a stack-based buffer overflow.

8.8CVSS8.7AI score0.00412EPSS

CVE•added 2021/09/20 4:15 p.m.•44 views

CVE-2021-39534

An issue was discovered in libslax through v0.22.1. slaxIsCommentStart() in slaxlexer.c has a heap-based buffer overflow.

8.8CVSS8.7AI score0.00377EPSS

CVE•added 2021/09/20 4:15 p.m.•39 views

CVE-2021-39533

An issue was discovered in libslax through v0.22.1. slaxLexer() in slaxlexer.c has a heap-based buffer overflow.

8.8CVSS8.7AI score0.00412EPSS

CVE•added 2021/09/20 4:15 p.m.•36 views

CVE-2021-39532

An issue was discovered in libslax through v0.22.1. A NULL pointer dereference exists in the function slaxLexer() located in slaxlexer.c. It allows an attacker to cause Denial of Service.

6.5CVSS6.3AI score0.00239EPSS