Denial Of Service (DoS)

🗓️ 29 Nov 2024 03:25:42Reported by Veracode Vulnerability DatabaseType

veracode🔗 sca.analysiscenter.veracode.com👁 2 Views

libexpat.so has a Denial Of Service vulnerability from improper XML parser implementation.

Reporter	Title	Published	Views	Family All 263
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities have been identified in IBM Db2 shipped with IBM WebSphere Remote Server	7 Aug 202515:41	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in expact library (CVE-2024-50602) affects Power HMC.	18 Feb 202511:43	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in IBM API Connect	15 Mar 202500:18	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge v5.1.1 is vulnerable to multiple Operator package issues	2 Apr 202517:43	–	ibm
IBM Security Bulletins	Security Bulletin: Security vulnerabilities affect multiple packages shipped with IBM CICS TX Advanced.	28 Apr 202510:33	–	ibm
IBM Security Bulletins	Security Bulletin: There are multiple vulnerabilities in IBM DB2 bundled with IBM Application Performance Management products.	8 Aug 202509:58	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Guardium Data Security Center is affected by multiple vulnerabilities	19 Jun 202505:35	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cognos Dashboards on Cloud Pak for Data has addressed security vulnerabilities	27 Feb 202513:56	–	ibm
IBM Security Bulletins	Security Bulletin: IBM QRadar SIEM contains multiple vulnerabilities	26 Mar 202504:11	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in libexpat affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge.	28 Mar 202515:54	–	ibm

Vulners

Node

libexpat expatMatch2.6.3-r0cpp

AND

alpinelinux alpine_linuxMatch3.21

qt6-qtwebengine qt6-qtwebengineMatch6.6.0-r1cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.8.0-r0cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.2.3-r0cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.2.2-r0cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.3.1-r1cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.6.2-r1cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.6.2-r2cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.4.0-r1cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.6.3-r2cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.5.0-r0cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.4.1-r0cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.5.2-r1cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.6.3-r5cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.5.1-r0cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.4.2-r0cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.5.0-r2cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.2.3-r1cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.4.2-r4cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.2.4-r0cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.4.1-r1cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.3.0-r0cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.6.3-r0cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.4.2-r2cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.8.2-r2cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.6.1-r1cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.2.4-r1cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.8.3-r0cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.4.2-r5cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.3.1-r0cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.6.0-r0cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.8.2-r4cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.5.0-r1cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.5.1-r1cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.5.2-r0cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.8.2-r3cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.6.0-r5cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.4.0-r0cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.4.3-r0cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.8.2-r0cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.6.1-r0cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.2.2-r1cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.2.3-r2cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.8.1-r0cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.2.3-r3cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.3.2-r0cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.7.2-r4cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.6.3-r3cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.7.2-r2cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.8.2-r1cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.7.2-r0cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.3.0-r1cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.6.3-r4cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.6.2-r0cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.5.3-r0cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.7.2-r5cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.7.2-r1cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.6.3-r1cpp

AND

alpinelinux alpine_linuxMatchedge

qt6-qtwebengine qt6-qtwebengineMatch6.8.3-r0cpp

AND

qt6-qtwebengine qt6-qtwebengineMatch6.8.2-r3cpp

AND

alpinelinux alpine_linuxMatch3.22

libexpat.so libexpat.soRange0.5.0.debug–1.9.3cpp

Source	Link
github	www.github.com/libexpat/libexpat/pull/915
bugzilla	www.bugzilla.suse.com/show_bug.cgi
github	www.github.com/libexpat/libexpat/commit/554edf4d57cace2a36384450fbc3e8db9a86841d
github	www.github.com/advisories/GHSA-79wf-qgrg-2p6c
lists	www.lists.debian.org/debian-lts-announce/2025/04/msg00040.html
security	www.security.netapp.com/advisory/ntap-20250404-0008/

30 Apr 2025 22:16Current

5.8Medium risk

Vulners AI Score5.8

CVSS 3.15.9

EPSS0.00127

SSVC