Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libxml2 vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2016-1761
libxml2 in Apple iOS prior to 9.3, OS X prior to 10.11.4, and watchOS prior to 2.2 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.
Apple Watchos
Apple Iphone Os
Apple Mac Os X
NA
CVE-2021-42522
There is a Information Disclosure vulnerability in anjuta/plugins/document-manager/anjuta-bookmarks.c. This issue was caused by the incorrect use of libxml2 API. The vendor forgot to call 'g_free()' to release the return value of 'xmlGetProp()'.
Gnome Anjuta 2.0.0
4.3
CVSSv2
CVE-2015-7115
libxml2 in Apple iOS prior to 9.2, OS X prior to 10.11.2, and tvOS prior to 9.1 allows remote malicious users to obtain sensitive information or cause a denial of service (memory corruption) via a crafted XML document, a different vulnerability than CVE-2015-7116.
Apple Iphone Os
Apple Mac Os X
Apple Tvos
4.3
CVSSv2
CVE-2015-7116
libxml2 in Apple iOS prior to 9.2, OS X prior to 10.11.2, and tvOS prior to 9.1 allows remote malicious users to obtain sensitive information or cause a denial of service (memory corruption) via a crafted XML document, a different vulnerability than CVE-2015-7115.
Apple Tvos
Apple Mac Os X
Apple Iphone Os
9
CVSSv2
CVE-2008-3538
Unspecified vulnerability in HP Enterprise Discovery 2.0 up to and including 2.52 on Windows allows remote authenticated users to execute arbitrary code via unknown vectors. NOTE: the initial description of this CVE was inadvertently associated with libxml2, but it should be for ...
Hp Enterprise Discovery 2.0
Hp Enterprise Discovery 2.1.3
Hp Enterprise Discovery 2.20
Hp Enterprise Discovery 2.0.1
Hp Enterprise Discovery 2.0.2
Hp Enterprise Discovery 2.0.3
Hp Enterprise Discovery 2.21
Hp Enterprise Discovery 2.22
Hp Enterprise Discovery 2.1.1
Hp Enterprise Discovery 2.1.2
Hp Enterprise Discovery 2.52
Hp Enterprise Discovery 2.0.4
Hp Enterprise Discovery 2.1
Hp Enterprise Discovery 2.50
Hp Enterprise Discovery 2.51
7.5
CVSSv2
CVE-2020-3909
A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. Multiple issues in libxml2.
Apple Mac Os X
Apple Itunes
Apple Ipados
Apple Iphone Os
Apple Tvos
Apple Watchos
Apple Icloud
Oracle Sun Zfs Storage Appliance Kit Software 8.8
7.5
CVSSv2
CVE-2020-3910
A buffer overflow was addressed with improved size validation. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. Multiple issues in libxml2.
Apple Icloud
Apple Itunes
Apple Ipados
Apple Iphone Os
Apple Mac Os X
Apple Tvos
Apple Watchos
7.5
CVSSv2
CVE-2020-3911
A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. Multiple issues in libxml2.
Apple Icloud
Apple Itunes
Apple Ipados
Apple Iphone Os
Apple Mac Os X
Apple Tvos
Apple Watchos
10
CVSSv2
CVE-2004-0981
Buffer overflow in the EXIF parsing routine in ImageMagick prior to 6.1.0 allows remote malicious users to execute arbitrary code via a certain image file.
Imagemagick Imagemagick 5.4.8
Imagemagick Imagemagick 5.4.8.2.1.1.0
Imagemagick Imagemagick 6.0.4
Imagemagick Imagemagick 6.0.5
Imagemagick Imagemagick 5.3.3
Imagemagick Imagemagick 5.4.3
Imagemagick Imagemagick 5.5.7
Imagemagick Imagemagick 6.0
Imagemagick Imagemagick 5.5.3.2.1.2.0
Imagemagick Imagemagick 5.5.6.0 2003-04-09
Imagemagick Imagemagick 6.0.6
Imagemagick Imagemagick 6.0.7
Imagemagick Imagemagick 6.0.8
Imagemagick Imagemagick 5.4.4.5
Imagemagick Imagemagick 5.4.7
Imagemagick Imagemagick 6.0.1
Imagemagick Imagemagick 6.0.3
Debian Debian Linux 3.0
Gentoo Linux
Suse Suse Linux 8.0
Suse Suse Linux 9.0
Suse Suse Linux 8.1
NA
CVE-2021-42521
There is a NULL pointer dereference vulnerability in VTK prior to 9.2.5, and it lies in IO/Infovis/vtkXMLTreeReader.cxx. The vendor didn't check the return value of libxml2 API 'xmlDocGetRootElement', and try to dereference it. It is unsafe as the return value can ...
Vtk Vtk
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »