Lucene search
F5F5:K03244804HistoryMar 27, 2019 - 12:00 a.m.
K03244804 : XML vulnerability CVE-2017-9233
2019-03-2700:00:00
my.f5.com
14
Security Advisory Description
XML External Entity vulnerability in libexpat 2.2.0 and earlier (Expat XML Parser Library) allows attackers to put the parser in an infinite loop using a malformed external entity definition from an external DTD. (CVE-2017-9233)
Impact
BIG-IP
Administrative interfaces, such as iControl SOAP, are vulnerable to a denial-of-service (DoS) attack if a malicious XML document is uploaded to and processed by the BIG-IP system. The XML process in the data plane is not affected.
BIG-IQ
This XML external entity vulnerability may allow attackers to put the parser in an infinite loop using a malformed external entity definition.
Related
osv
osv
expat - security update
2017-06-25 00:00:00
expat - security update
2017-06-18 00:00:00
Expat 2.2.1
2017-07-25 20:00:00
nessus
nessus
EulerOS 2.0 SP5 : expat (EulerOS-SA-2019-1896)
2019-09-16 00:00:00
F5 Networks BIG-IP : XML vulnerability (K03244804)
2019-04-22 00:00:00
Ubuntu 14.04 LTS / 16.04 LTS : Expat vulnerability (USN-3356-1)
2017-07-20 00:00:00
ubuntu
ubuntu
Expat vulnerability
2017-07-19 00:00:00
Expat vulnerability
2017-07-19 00:00:00
Coin3D vulnerability
2021-03-15 00:00:00
cvelist
cvelist
CVE-2017-9233
2017-07-25 20:00:00
cloudfoundry
cloudfoundry
USN-3356-1: Expat vulnerability | Cloud Foundry
2017-08-04 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-990-1)
2018-01-28 00:00:00
Slackware: Security Advisory (SSA:2017-199-01)
2022-04-21 00:00:00
Ubuntu: Security Advisory (USN-3356-2)
2022-08-26 00:00:00
ubuntucve
ubuntucve
CVE-2017-9233
2017-06-21 00:00:00
veracode
veracode
Denial Of Service (DoS) Through Infinite Loop
2017-06-27 07:36:23
nvd
nvd
CVE-2017-9233
2017-07-25 20:29:00
cve
cve
CVE-2017-9233
2017-07-25 20:29:00
debian
debian
[SECURITY] [DLA 990-1] expat security update
2017-06-18 01:54:29
[SECURITY] [DSA 3898-1] expat security update
2017-06-25 13:32:58
[SECURITY] [DSA 3898-1] expat security update
2017-06-25 13:32:58
redhatcve
redhatcve
CVE-2017-9233
2017-06-19 12:52:03
debiancve
debiancve
CVE-2017-9233
2017-07-25 20:29:00
slackware
slackware
[slackware-security] expat
2017-07-18 23:13:45
[slackware-security] python
2017-09-23 06:33:04
[slackware-security] python
2018-05-04 20:53:50
prion
prion
Xxe
2017-07-25 20:29:00
alpinelinux
alpinelinux
CVE-2017-9233
2017-07-25 20:29:00
mageia
mageia
Updated expat packages fix security vulnerabilities
2017-07-23 22:58:56
fedora
fedora
[SECURITY] Fedora 24 Update: expat-2.2.1-1.fc24
2017-07-12 01:56:31
[SECURITY] Fedora 26 Update: expat-2.2.1-1.fc26
2017-07-14 13:26:21
[SECURITY] Fedora 25 Update: expat-2.2.1-1.fc25
2017-07-12 03:29:46
freebsd
freebsd
expat -- multiple vulnerabilities
2016-10-27 00:00:00
Python 2.7 -- multiple vulnerabilities
2017-08-26 00:00:00
python 2.7 -- multiple vulnerabilities
2018-05-01 00:00:00
ibm
ibm
archlinux
archlinux
[ASA-201706-32] expat: denial of service
2017-06-26 00:00:00
[ASA-201707-27] lib32-expat: denial of service
2017-07-26 00:00:00
suse
suse
Security update for CaaS Platform 1.0 images (important)
2017-09-14 21:11:54
Security update for SLES 12-SP2 Docker image (important)
2017-10-11 03:08:09
Security update for SLES 12-SP1 Docker image (important)
2017-10-11 03:07:32
apple
apple
About the security content of watchOS 4 - Apple Support
2019-04-03 09:47:52
About the security content of watchOS 4
2017-09-19 00:00:00
About the security content of tvOS 11
2017-09-19 00:00:00