OSVersionArchitecturePackageVersionFilename
Photon2.0x86_64expat< 2.2.9-6.ph2expat-2.2.9-6.ph2.x86_64.rpm
Photon2.0x86_64expat-libs< 2.2.9-6.ph2expat-libs-2.2.9-6.ph2.x86_64.rpm
Photon2.0x86_64expat-devel< 2.2.9-6.ph2expat-devel-2.2.9-6.ph2.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
Photon	2.0	x86_64	expat	< 2.2.9-6.ph2	expat-2.2.9-6.ph2.x86_64.rpm
Photon	2.0	x86_64	expat-libs	< 2.2.9-6.ph2	expat-libs-2.2.9-6.ph2.x86_64.rpm
Photon	2.0	x86_64	expat-devel	< 2.2.9-6.ph2	expat-devel-2.2.9-6.ph2.x86_64.rpm

photon 10

nessus 57

fedora 6

amazon 4

redhat 11

openvas 34

oraclelinux 2

ibm 10

f5 1

osv 11

suse 3

redos 1

ubuntucve 2

veracode 2

rocky 1

prion 3

cbl_mariner 4

cve 3

debian 3

alpinelinux 2

nvd 3

almalinux 2

cnvd 2

redhatcve 2

debiancve 2

checkpoint_advisories 1

broadcom 2

mageia 2

cvelist 3

githubexploit 2

slackware 1

zdt 2

vmware 2

hivepro 1

exploitdb 1

packetstorm 1

photon

Critical Photon OS Security Update - PHSA-2022-0475

2022-02-25 00:00:00

Critical Photon OS Security Update - PHSA-2022-4.0-0157

2022-03-01 00:00:00

Critical Photon OS Security Update - PHSA-2022-0157

2022-02-21 00:00:00

nessus

Photon OS 3.0: Expat PHSA-2022-3.0-0365

2024-07-24 00:00:00

Amazon Linux 2 : expat (ALAS-2022-1764)

2022-03-10 00:00:00

Photon OS 4.0: Expat PHSA-2022-4.0-0157

2024-07-23 00:00:00

fedora

[SECURITY] Fedora 35 Update: thunderbird-91.7.0-1.fc35

2022-03-17 15:49:04

[SECURITY] Fedora 36 Update: thunderbird-102.7.1-2.fc36

2023-02-03 01:42:19

[SECURITY] Fedora 34 Update: thunderbird-91.7.0-1.fc34

2022-03-18 19:15:01

amazon

Critical: expat

2022-03-09 22:48:00

Critical: expat

2022-03-09 22:13:00

Critical: xmlrpc-c

2022-05-20 22:12:00

redhat

(RHSA-2022:1070) Important: expat security update

2022-03-28 08:46:43

(RHSA-2022:1068) Important: expat security update

2022-03-28 08:40:33

(RHSA-2022:1012) Important: expat security update

2022-03-22 15:14:32

openvas

Fedora: Security Advisory for thunderbird (FEDORA-2022-f202d1a045)

2022-03-23 00:00:00

Fedora: Security Advisory for thunderbird (FEDORA-2022-01f0553b59)

2022-03-23 00:00:00

Huawei EulerOS: Security Advisory for expat (EulerOS-SA-2023-1707)

2023-05-08 00:00:00

oraclelinux

expat security update

2022-05-06 00:00:00

xmlrpc-c security update

2022-05-02 00:00:00

ibm

Security Bulletin: Multiple vulnerabilities in IBM HTTP Server shipped in IBM WebSphere Application Server Patterns due to Expat vulnerabilities

2022-04-29 19:27:25

Security Bulletin: Multiple Vulnerabilities have been identified in IBM HTTP Server shipped with IBM WebSphere Remote Server

2022-03-08 21:40:46

Security Bulletin: Multiple vulnerabilities in IBM HTTP Server used by IBM WebSphere Application Server due to Expat vulnerabilities

2022-03-15 15:35:35

K19473898 : Expat vulnerabilities CVE-2022-23852, CVE-2022-25235, CVE-2022-25236, and CVE-2022-25315

2022-04-30 00:00:00

osv

expat - security update

2022-02-22 00:00:00

expat - security update

2022-03-07 00:00:00

Important: xmlrpc-c security update

2022-04-28 14:07:17

suse

Security update for expat (important)

2022-03-04 00:00:00

Security update for expat (important)

2022-03-15 00:00:00

Security update for expat (important)

2022-07-06 00:00:00

redos

ROS-20220225-01

2022-02-25 00:00:00

ubuntucve

CVE-2022-25235

2022-02-15 00:00:00

CVE-2022-25236

2022-02-15 00:00:00

veracode

Cross-Site Scripting (XSS)

2022-02-17 08:28:38

Privilege Escalation

2022-02-17 09:52:08

rocky

xmlrpc-c security update

2022-04-28 14:07:17

prion

Design/Logic Flaw

2022-02-16 01:15:00

Design/Logic Flaw

2022-02-16 01:15:00

Authentication flaw

2023-11-14 21:15:00

cbl_mariner

CVE-2022-25235 affecting package expat 2.4.4-1

2022-03-09 18:31:42

CVE-2022-25235 affecting package expat for versions less than 2.4.8-1

2022-04-26 20:17:03

CVE-2022-25236 affecting package expat 2.4.4-1

2022-03-09 18:31:42

cve

CVE-2022-25235

2022-02-16 01:15:07

CVE-2022-25236

2022-02-16 01:15:07

CVE-2023-34060

2023-11-14 21:15:09

debian

[SECURITY] [DSA 5085-2] expat regression update

2022-03-13 15:15:49

[SECURITY] [DSA 5085-1] expat security update

2022-02-22 20:17:14

[SECURITY] [DLA 2935-1] expat security update

2022-03-07 13:35:55

alpinelinux

CVE-2022-25236

2022-02-16 01:15:07

CVE-2022-25235

2022-02-16 01:15:07

nvd

CVE-2022-25236

2022-02-16 01:15:07

CVE-2022-25235

2022-02-16 01:15:07

CVE-2023-34060

2023-11-14 21:15:09

almalinux

Important: xmlrpc-c security update

2022-04-28 14:07:17

Important: mingw-expat security update

2022-11-08 00:00:00

cnvd

Expat has an unspecified vulnerability (CNVD-2022-18356)

2022-02-21 00:00:00

Expat has an unspecified vulnerability (CNVD-2022-18357)

2022-02-21 00:00:00

redhatcve

CVE-2022-25236

2022-02-21 05:51:26

CVE-2022-25235

2022-02-21 05:51:26

debiancve

CVE-2022-25236

2022-02-16 01:15:07

CVE-2022-25235

2022-02-16 01:15:07

checkpoint_advisories

Expat XML Parser Remote Code Execution (CVE-2022-25236)

2022-08-15 00:00:00

broadcom

xmlparse.c in Expat (aka libexpat) before 2.4.5 allows attackers to insert namespace-separator characters into namespace URIs.

2023-08-01 00:00:00

xmltok_impl.c in Expat (aka libexpat) before 2.4.5 lacks certain validation (CVE-2022-25235)

2023-08-01 00:00:00

mageia

Updated xmlrpc-c packages fix security vulnerability

2022-05-15 13:06:40

Updated expat packages fix security vulnerability

2022-02-22 23:15:16

cvelist

CVE-2022-25235

2022-02-16 00:40:20

CVE-2022-25236

2022-02-16 00:39:16

CVE-2023-34060

2023-11-14 20:20:51

githubexploit

Exploit for Improper Encoding or Escaping of Output in Libexpat Project Libexpat

2022-05-24 07:00:24

Exploit for Exposure of Resource to Wrong Sphere in Libexpat Project Libexpat

2022-05-06 05:19:11

slackware

[slackware-security] expat

2022-02-20 05:16:42

zdt

VMware Cloud Director 10.5 - Bypass identity verification Exploit

2024-03-12 00:00:00

VMware Cloud Director - Bypass identity verification Exploit

2023-12-08 00:00:00

vmware

VMware Cloud Director Appliance contains an authentication bypass vulnerability (CVE-2023-34060).

2023-11-14 00:00:00

VMware Cloud Director Appliance contains an authentication bypass vulnerability (CVE-2023-34060).

2023-11-14 00:00:00

hivepro

VMware Unveils Critical Authentication Bypass Vulnerability in VCD Appliance

2023-11-17 08:07:39

exploitdb

VMware Cloud Director 10.5 - Bypass identity verification

2024-03-12 00:00:00

packetstorm

VMware Cloud Director 10.5 Authentication Bypass

2024-03-13 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.05

Percentile

93.0%

JSON

Related for PHSA-2022-0444