Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-11979 |
|
Vulnerability in xmlsoft (CVE-2026-11979)
vulnerability in xmlsoft (CVE-2026-11979). Successful exploitation can lead to full system takeover.
|
| CVE-2025-7424 |
|
Vulnerability in java (CVE-2025-7424)
vulnerability in java (CVE-2025-7424). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.481` or later.
|
| CVE-2026-6732 |
|
Vulnerability in dos (CVE-2026-6732)
vulnerability in dos (CVE-2026-6732). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-0992 |
|
Vulnerability in redhat (CVE-2026-0992)
vulnerability in redhat (CVE-2026-0992). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-0990 |
|
Vulnerability in dos (CVE-2026-0990)
vulnerability in dos (CVE-2026-0990). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-0989 |
|
Vulnerability in xmlsoft (CVE-2026-0989)
vulnerability in xmlsoft (CVE-2026-0989). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-9714 |
|
Vulnerability in xmlsoft (CVE-2025-9714)
vulnerability in xmlsoft (CVE-2025-9714). Risk of unauthorized operations or information disclosure. Exploitable via ``xmlXPathRunEval``.
|
| CVE-2025-8732 |
|
Vulnerability in xmlsoft (CVE-2025-8732)
vulnerability in xmlsoft (CVE-2025-8732). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-6170 |
|
Vulnerability in redhat (CVE-2025-6170)
vulnerability in redhat (CVE-2025-6170). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-6021 |
|
Out-of-Bounds Write in java (CVE-2025-6021)
out-of-bounds write in java (CVE-2025-6021). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.481` or later.
|
| CVE-2019-18197 |
|
Use-After-Free in nokogiri (CVE-2019-18197)
vulnerability in nokogiri (CVE-2019-18197). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `1.10.5` or later.
|
| CVE-2019-13117 |
|
Vulnerability in nokogiri (CVE-2019-13117)
vulnerability in nokogiri (CVE-2019-13117). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.10.5` or later.
|
| CVE-2019-13118 |
|
Vulnerability in nokogiri (CVE-2019-13118)
vulnerability in nokogiri (CVE-2019-13118). Confidential information can be exposed externally. Exploitable via ``numbers.c``. Mitigation: upgrade to `1.10.5` or later.
|
| CVE-2019-11068 |
|
Vulnerability in nokogiri (CVE-2019-11068)
vulnerability in nokogiri (CVE-2019-11068). Successful exploitation can lead to full system takeover. Exploitable via ``xsltCheckRead``. Mitigation: upgrade to `1.10.3` or later.
|
| CVE-2017-16931 |
|
Buffer Overflow in c (CVE-2017-16931)
vulnerability in c (CVE-2017-16931). Successful exploitation can lead to full system takeover.
|
| CVE-2017-16932 |
|
parser.c in libxml2 before 2.9.5 does not prevent infinite recursion in parameter entities.
parser.c in libxml2 before 2.9.5 does not prevent infinite recursion in parameter entities.
|
| CVE-2017-9049 |
|
Out-of-Bounds Read in c (CVE-2017-9049)
vulnerability in c (CVE-2017-9049). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9050 |
|
Out-of-Bounds Read in c (CVE-2017-9050)
vulnerability in c (CVE-2017-9050). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9048 |
|
Buffer Overflow in c (CVE-2017-9048)
vulnerability in c (CVE-2017-9048). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9047 |
|
Buffer Overflow in c (CVE-2017-9047)
vulnerability in c (CVE-2017-9047). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-8872 |
|
Out-of-Bounds Read in c (CVE-2017-8872)
vulnerability in c (CVE-2017-8872). Confidential information can be exposed externally.
|
| CVE-2017-5029 |
|
Out-of-Bounds Write in c (CVE-2017-5029)
out-of-bounds write in c (CVE-2017-5029). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5969 |
|
Vulnerability in dos (CVE-2017-5969)
vulnerability in dos (CVE-2017-5969). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-4483 |
|
Unsafe Deserialization in c (CVE-2016-4483)
vulnerability in c (CVE-2016-4483). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-9019 |
|
Vulnerability in xmlsoft (CVE-2015-9019)
vulnerability in xmlsoft (CVE-2015-9019). Risk of unauthorized operations or information disclosure.
|