CVE-2022-22826
- EPSS 2.78%
- Veröffentlicht 10.01.2022 14:12:57
- Zuletzt bearbeitet 05.05.2025 17:17:53
nextScaffoldPart in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.
CVE-2022-22825
- EPSS 2.61%
- Veröffentlicht 10.01.2022 14:12:56
- Zuletzt bearbeitet 05.05.2025 17:17:53
lookup in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.
CVE-2022-22824
- EPSS 3.38%
- Veröffentlicht 10.01.2022 14:12:56
- Zuletzt bearbeitet 05.05.2025 17:17:53
defineAttribute in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.
CVE-2022-22823
- EPSS 3.38%
- Veröffentlicht 10.01.2022 14:12:56
- Zuletzt bearbeitet 05.05.2025 17:17:52
build_model in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.
CVE-2022-22822
- EPSS 4.83%
- Veröffentlicht 10.01.2022 14:12:56
- Zuletzt bearbeitet 05.05.2025 17:17:52
addBinding in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.
CVE-2021-46143
- EPSS 3.76%
- Veröffentlicht 06.01.2022 04:15:07
- Zuletzt bearbeitet 05.05.2025 17:17:28
In doProlog in xmlparse.c in Expat (aka libexpat) before 2.4.3, an integer overflow exists for m_groupSize.
- EPSS 4.2%
- Veröffentlicht 01.01.2022 19:15:08
- Zuletzt bearbeitet 05.05.2025 17:17:28
In Expat (aka libexpat) before 2.4.3, a left shift by 29 (or more) places in the storeAtts function in xmlparse.c can lead to realloc misbehavior (e.g., allocating too few bytes, or only freeing memory).
CVE-2021-20135
- EPSS 0.3%
- Veröffentlicht 03.11.2021 00:15:07
- Zuletzt bearbeitet 21.11.2024 05:45:59
Nessus versions 8.15.2 and earlier were found to contain a local privilege escalation vulnerability which could allow an authenticated, local administrator to run specific executables on the Nessus Agent host. Tenable has included a fix for this issu...
CVE-2021-20106
- EPSS 1.29%
- Veröffentlicht 21.07.2021 15:15:13
- Zuletzt bearbeitet 21.11.2024 05:45:56
Nessus Agent versions 8.2.5 and earlier were found to contain a privilege escalation vulnerability which could allow a Nessus administrator user to upload a specially crafted file that could lead to gaining administrator privileges on the Nessus host...
CVE-2021-20079
- EPSS 0.45%
- Veröffentlicht 29.06.2021 19:15:08
- Zuletzt bearbeitet 21.11.2024 05:45:53
Nessus versions 8.13.2 and earlier were found to contain a privilege escalation vulnerability which could allow a Nessus administrator user to upload a specially crafted file that could lead to gaining administrator privileges on the Nessus host.