Lucene search
Veracode Vulnerability DatabaseVERACODE:6356HistoryMay 23, 2018 - 5:14 a.m.
Remote Code Execution (RCE)
2018-05-2305:14:44
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
14
0.019 Low
EPSS
Percentile
88.7%
libxml2.so is vulnerable to remote code execution (RCE) attacks. The application does not forbid namespace nodes in XPointer ranges, allowing a malicious user to inject and execute arbitrary code.
| CPE | Name | Operator | Version |
|---|---|---|---|
| libxml2.so | le | 2.9.4 | |
| libxml2 | eq | 2.9.1__5.ael7b_1.2 |
Related
openvas
openvas
CentOS: Security Advisory for libxml2 (CESA-2021:3810)
2021-11-18 00:00:00
Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2019-1685)
2020-01-23 00:00:00
SUSE: Security Advisory (SUSE-SU-2016:2650-1)
2021-04-19 00:00:00
nessus
nessus
SUSE SLED12 / SLES12 Security Update : libxml2 (SUSE-SU-2016:2650-1)
2016-10-27 00:00:00
openSUSE Security Update : libxml2 (openSUSE-2016-1259)
2016-11-04 00:00:00
openSUSE Security Update : libxml2 (openSUSE-2016-1265)
2016-11-07 00:00:00
ibm
ibm
Security Bulletin: IBM QRadar Network Security is affected by an arbitrary code execution vulnerability (CVE-2016-4658)
2022-03-31 03:36:56
cvelist
cvelist
CVE-2016-4658
2016-09-25 10:00:00
osv
osv
Nokogiri does not forbid namespace nodes in XPointer ranges
2018-08-21 19:03:26
libxml2 - security update
2016-10-31 00:00:00
github
github
Nokogiri does not forbid namespace nodes in XPointer ranges
2018-08-21 19:03:26
cloudlinux
cloudlinux
libxml2: Fix of CVE-2016-4658
2023-11-07 18:21:51
oraclelinux
oraclelinux
libxml2 security update
2021-10-13 00:00:00
prion
prion
Memory corruption
2016-09-25 10:59:00
f5
f5
K49419538 : libxml2 vulnerability CVE 2016-4658
2022-04-05 00:00:00
debiancve
debiancve
CVE-2016-4658
2016-09-25 10:59:02
ubuntucve
ubuntucve
CVE-2016-4658
2016-09-25 00:00:00
centos
centos
libxml2 security update
2021-11-17 14:46:50
redhatcve
redhatcve
CVE-2016-4658
2016-10-13 09:47:26
cve
cve
CVE-2016-4658
2016-09-25 10:59:02
redhat
redhat
nvd
nvd
CVE-2016-4658
2016-09-25 10:59:02
amazon
amazon
Medium: libxml2
2019-09-30 22:47:00
debian
debian
[SECURITY] [DSA 3744-1] libxml2 security update
2016-12-23 18:31:42
[SECURITY] [DSA 3744-1] libxml2 security update
2016-12-23 18:31:42
[SECURITY] [DLA 691-1] libxml2 security update
2016-10-31 17:09:55
veracode
veracode
Copy-Paste Vulnerability (CPV) Through Libxml2
2017-03-23 01:10:27
archlinux
archlinux
[ASA-201611-2] libxml2: arbitrary code execution
2016-11-01 00:00:00
rubygems
rubygems
Nokogiri gem contains several vulnerabilities in libxml2 and libxslt
2017-03-10 21:00:00
cloudfoundry
cloudfoundry
USN-3235-1: libxml2 vulnerabilities | Cloud Foundry
2017-03-31 00:00:00
ubuntu
ubuntu
libxml2 vulnerabilities
2017-03-16 00:00:00
fedora
fedora
[SECURITY] Fedora 26 Update: libxml2-2.9.7-1.fc26
2018-02-14 17:11:02
[SECURITY] Fedora 27 Update: libxml2-2.9.7-1.fc27
2018-01-30 18:12:24
[SECURITY] Fedora 25 Update: libxml2-2.9.4-2.fc25
2017-04-19 09:32:17
altlinux
altlinux
mageia
mageia
Updated libxml2 & perl-XML-LibXML packages fix security vulnerabilities
2018-01-03 18:50:51
rosalinux
rosalinux
Advisory ROSA-SA-2021-1905
2021-07-02 17:25:35
apple
apple
About the security content of watchOS 3 - Apple Support
2020-07-27 08:13:37
About the security content of watchOS 3
2016-09-13 00:00:00
About the security content of tvOS 10
2016-09-13 00:00:00
gentoo
gentoo
libxml2: Multiple vulnerabilities
2017-01-16 00:00:00
suse
suse
Security update for SLES 12-SP2 Docker image (important)
2017-10-11 03:08:09
Security update for SLES 12-SP1 Docker image (important)
2017-10-11 03:07:32
Security update for SLES 12 Docker image (important)
2017-10-11 03:06:53
androidsecurity
androidsecurity
Android Security BulletinβJune 2017
2017-06-05 00:00:00
tenable
tenable
[R1] Nessus Network Monitor 6.2.2 Fixes Multiple Vulnerabilities
2023-06-29 10:45:47
ics
ics
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
2023-12-14 12:00:00