Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: xmlsoft Clear
ID Title
CVE-2026-11979 Vulnerability in xmlsoft (CVE-2026-11979)
vulnerability in xmlsoft (CVE-2026-11979). Successful exploitation can lead to full system takeover.
CVE-2025-7424 Vulnerability in java (CVE-2025-7424)
vulnerability in java (CVE-2025-7424). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.481` or later.
CVE-2026-6732 Vulnerability in dos (CVE-2026-6732)
vulnerability in dos (CVE-2026-6732). Risk of unauthorized operations or information disclosure.
CVE-2026-0992 Vulnerability in redhat (CVE-2026-0992)
vulnerability in redhat (CVE-2026-0992). Risk of unauthorized operations or information disclosure.
CVE-2026-0990 Vulnerability in dos (CVE-2026-0990)
vulnerability in dos (CVE-2026-0990). Risk of unauthorized operations or information disclosure.
CVE-2026-0989 Vulnerability in xmlsoft (CVE-2026-0989)
vulnerability in xmlsoft (CVE-2026-0989). Risk of unauthorized operations or information disclosure.
CVE-2025-9714 Vulnerability in xmlsoft (CVE-2025-9714)
vulnerability in xmlsoft (CVE-2025-9714). Risk of unauthorized operations or information disclosure. Exploitable via ``xmlXPathRunEval``.
CVE-2025-8732 Vulnerability in xmlsoft (CVE-2025-8732)
vulnerability in xmlsoft (CVE-2025-8732). Risk of unauthorized operations or information disclosure.
CVE-2025-6170 Vulnerability in redhat (CVE-2025-6170)
vulnerability in redhat (CVE-2025-6170). Risk of unauthorized operations or information disclosure.
CVE-2025-6021 Out-of-Bounds Write in java (CVE-2025-6021)
out-of-bounds write in java (CVE-2025-6021). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.481` or later.
CVE-2019-18197 Use-After-Free in nokogiri (CVE-2019-18197)
vulnerability in nokogiri (CVE-2019-18197). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `1.10.5` or later.
CVE-2019-13117 Vulnerability in nokogiri (CVE-2019-13117)
vulnerability in nokogiri (CVE-2019-13117). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.10.5` or later.
CVE-2019-13118 Vulnerability in nokogiri (CVE-2019-13118)
vulnerability in nokogiri (CVE-2019-13118). Confidential information can be exposed externally. Exploitable via ``numbers.c``. Mitigation: upgrade to `1.10.5` or later.
CVE-2019-11068 Vulnerability in nokogiri (CVE-2019-11068)
vulnerability in nokogiri (CVE-2019-11068). Successful exploitation can lead to full system takeover. Exploitable via ``xsltCheckRead``. Mitigation: upgrade to `1.10.3` or later.
CVE-2017-16931 Buffer Overflow in c (CVE-2017-16931)
vulnerability in c (CVE-2017-16931). Successful exploitation can lead to full system takeover.
CVE-2017-16932 parser.c in libxml2 before 2.9.5 does not prevent infinite recursion in parameter entities.
parser.c in libxml2 before 2.9.5 does not prevent infinite recursion in parameter entities.
CVE-2017-9049 Out-of-Bounds Read in c (CVE-2017-9049)
vulnerability in c (CVE-2017-9049). Risk of unauthorized operations or information disclosure.
CVE-2017-9050 Out-of-Bounds Read in c (CVE-2017-9050)
vulnerability in c (CVE-2017-9050). Risk of unauthorized operations or information disclosure.
CVE-2017-9048 Buffer Overflow in c (CVE-2017-9048)
vulnerability in c (CVE-2017-9048). Risk of unauthorized operations or information disclosure.
CVE-2017-9047 Buffer Overflow in c (CVE-2017-9047)
vulnerability in c (CVE-2017-9047). Risk of unauthorized operations or information disclosure.
CVE-2017-8872 Out-of-Bounds Read in c (CVE-2017-8872)
vulnerability in c (CVE-2017-8872). Confidential information can be exposed externally.
CVE-2017-5029 Out-of-Bounds Write in c (CVE-2017-5029)
out-of-bounds write in c (CVE-2017-5029). Successful exploitation can lead to full system takeover.
CVE-2017-5969 Vulnerability in dos (CVE-2017-5969)
vulnerability in dos (CVE-2017-5969). Risk of unauthorized operations or information disclosure.
CVE-2016-4483 Unsafe Deserialization in c (CVE-2016-4483)
vulnerability in c (CVE-2016-4483). Risk of unauthorized operations or information disclosure.
CVE-2015-9019 Vulnerability in xmlsoft (CVE-2015-9019)
vulnerability in xmlsoft (CVE-2015-9019). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →