Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libxml2 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-3807
libxml2 in Apple iOS prior to 8.4.1 and OS X prior to 10.10.5 allows remote malicious users to obtain sensitive information from process memory or cause a denial of service (memory corruption) via a crafted XML document.
Apple Iphone Os
Apple Mac Os X
Apple Tvos
7.5
CVSSv3
CVE-2021-42522
There is a Information Disclosure vulnerability in anjuta/plugins/document-manager/anjuta-bookmarks.c. This issue was caused by the incorrect use of libxml2 API. The vendor forgot to call 'g_free()' to release the return value of 'xmlGetProp()'.
Gnome Anjuta 2.0.0
4.3
CVSSv3
CVE-2015-7115
libxml2 in Apple iOS prior to 9.2, OS X prior to 10.11.2, and tvOS prior to 9.1 allows remote malicious users to obtain sensitive information or cause a denial of service (memory corruption) via a crafted XML document, a different vulnerability than CVE-2015-7116.
Apple Iphone Os
Apple Mac Os X
Apple Tvos
4.3
CVSSv3
CVE-2015-7116
libxml2 in Apple iOS prior to 9.2, OS X prior to 10.11.2, and tvOS prior to 9.1 allows remote malicious users to obtain sensitive information or cause a denial of service (memory corruption) via a crafted XML document, a different vulnerability than CVE-2015-7115.
Apple Tvos
Apple Mac Os X
Apple Iphone Os
9.8
CVSSv3
CVE-2020-3909
A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. Multiple issues in libxml2.
Apple Mac Os X
Apple Itunes
Apple Ipados
Apple Iphone Os
Apple Tvos
Apple Watchos
Apple Icloud
Oracle Sun Zfs Storage Appliance Kit Software 8.8
NA
CVE-2008-3538
Unspecified vulnerability in HP Enterprise Discovery 2.0 up to and including 2.52 on Windows allows remote authenticated users to execute arbitrary code via unknown vectors. NOTE: the initial description of this CVE was inadvertently associated with libxml2, but it should be for ...
Hp Enterprise Discovery 2.0
Hp Enterprise Discovery 2.1.3
Hp Enterprise Discovery 2.20
Hp Enterprise Discovery 2.0.1
Hp Enterprise Discovery 2.0.2
Hp Enterprise Discovery 2.0.3
Hp Enterprise Discovery 2.21
Hp Enterprise Discovery 2.22
Hp Enterprise Discovery 2.1.1
Hp Enterprise Discovery 2.1.2
Hp Enterprise Discovery 2.52
Hp Enterprise Discovery 2.0.4
Hp Enterprise Discovery 2.1
Hp Enterprise Discovery 2.50
Hp Enterprise Discovery 2.51
9.8
CVSSv3
CVE-2020-3910
A buffer overflow was addressed with improved size validation. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. Multiple issues in libxml2.
Apple Icloud
Apple Itunes
Apple Ipados
Apple Iphone Os
Apple Mac Os X
Apple Tvos
Apple Watchos
9.8
CVSSv3
CVE-2020-3911
A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. Multiple issues in libxml2.
Apple Icloud
Apple Itunes
Apple Ipados
Apple Iphone Os
Apple Mac Os X
Apple Tvos
Apple Watchos
NA
CVE-2004-0981
Buffer overflow in the EXIF parsing routine in ImageMagick prior to 6.1.0 allows remote malicious users to execute arbitrary code via a certain image file.
Imagemagick Imagemagick 5.4.8
Imagemagick Imagemagick 5.4.8.2.1.1.0
Imagemagick Imagemagick 6.0.4
Imagemagick Imagemagick 6.0.5
Imagemagick Imagemagick 5.3.3
Imagemagick Imagemagick 5.4.3
Imagemagick Imagemagick 5.5.7
Imagemagick Imagemagick 6.0
Imagemagick Imagemagick 5.5.3.2.1.2.0
Imagemagick Imagemagick 5.5.6.0 2003-04-09
Imagemagick Imagemagick 6.0.6
Imagemagick Imagemagick 6.0.7
Imagemagick Imagemagick 6.0.8
Imagemagick Imagemagick 5.4.4.5
Imagemagick Imagemagick 5.4.7
Imagemagick Imagemagick 6.0.1
Imagemagick Imagemagick 6.0.3
Debian Debian Linux 3.0
Gentoo Linux
Suse Suse Linux 8.0
Suse Suse Linux 9.0
Suse Suse Linux 8.1
7.5
CVSSv3
CVE-2021-42521
There is a NULL pointer dereference vulnerability in VTK prior to 9.2.5, and it lies in IO/Infovis/vtkXMLTreeReader.cxx. The vendor didn't check the return value of libxml2 API 'xmlDocGetRootElement', and try to dereference it. It is unsafe as the return value can ...
Vtk Vtk
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »