OSVersionArchitecturePackageVersionFilename
Photon4.0x86_64expat< 2.2.9-7.ph4expat-2.2.9-7.ph4.x86_64.rpm
Photon4.0x86_64expat-docs< 2.2.9-7.ph4expat-docs-2.2.9-7.ph4.x86_64.rpm
Photon4.0x86_64cassandra< 4.0.3-1.ph4cassandra-4.0.3-1.ph4.x86_64.rpm
Photon4.0x86_64expat-libs< 2.2.9-7.ph4expat-libs-2.2.9-7.ph4.x86_64.rpm
Photon4.0x86_64expat-devel< 2.2.9-7.ph4expat-devel-2.2.9-7.ph4.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
Photon	4.0	x86_64	expat	< 2.2.9-7.ph4	expat-2.2.9-7.ph4.x86_64.rpm
Photon	4.0	x86_64	expat-docs	< 2.2.9-7.ph4	expat-docs-2.2.9-7.ph4.x86_64.rpm
Photon	4.0	x86_64	cassandra	< 4.0.3-1.ph4	cassandra-4.0.3-1.ph4.x86_64.rpm
Photon	4.0	x86_64	expat-libs	< 2.2.9-7.ph4	expat-libs-2.2.9-7.ph4.x86_64.rpm
Photon	4.0	x86_64	expat-devel	< 2.2.9-7.ph4	expat-devel-2.2.9-7.ph4.x86_64.rpm

photon 9

amazon 4

nessus 50

fedora 6

redhat 11

openvas 33

cve 4

oraclelinux 2

redhatcve 3

prion 4

checkpoint_advisories 2

osv 9

nvd 3

githubexploit 3

veracode 3

thn 1

cnvd 3

ibm 12

f5 1

hivepro 2

freebsd 1

cvelist 4

github 1

redos 1

suse 3

debian 3

alpinelinux 2

cbl_mariner 4

rocky 1

ubuntucve 2

mageia 2

slackware 1

threatpost 1

broadcom 2

almalinux 2

debiancve 2

vmware 2

photon

Critical Photon OS Security Update - PHSA-2022-0157

2022-02-21 00:00:00

Critical Photon OS Security Update - PHSA-2022-0444

2022-02-25 00:00:00

Critical Photon OS Security Update - PHSA-2022-0475

2022-02-25 00:00:00

amazon

Critical: expat

2022-03-09 22:48:00

Critical: expat

2022-03-09 22:13:00

Critical: xmlrpc-c

2022-05-20 22:12:00

nessus

Amazon Linux AMI : expat (ALAS-2022-1573)

2022-03-10 00:00:00

Amazon Linux 2 : expat (ALAS-2022-1764)

2022-03-10 00:00:00

RHEL 8 : expat (RHSA-2022:1068)

2022-03-29 00:00:00

fedora

[SECURITY] Fedora 34 Update: thunderbird-91.7.0-1.fc34

2022-03-18 19:15:01

[SECURITY] Fedora 37 Update: thunderbird-102.7.1-2.fc37

2023-02-03 01:29:38

[SECURITY] Fedora 36 Update: thunderbird-102.7.1-2.fc36

2023-02-03 01:42:19

redhat

(RHSA-2022:1070) Important: expat security update

2022-03-28 08:46:43

(RHSA-2022:1068) Important: expat security update

2022-03-28 08:40:33

(RHSA-2022:1309) Important: expat security update

2022-04-11 15:03:41

openvas

Huawei EulerOS: Security Advisory for expat (EulerOS-SA-2023-1707)

2023-05-08 00:00:00

Fedora: Security Advisory for thunderbird (FEDORA-2023-99ba1917da)

2023-02-03 00:00:00

Fedora: Security Advisory for thunderbird (FEDORA-2023-97a977a96a)

2023-02-03 00:00:00

cve

CVE-2021-44521

2022-02-11 13:15:07

CVE-2022-25235

2022-02-16 01:15:07

CVE-2022-25236

2022-02-16 01:15:07

oraclelinux

expat security update

2022-05-06 00:00:00

xmlrpc-c security update

2022-05-02 00:00:00

redhatcve

CVE-2021-44521

2022-02-12 02:23:21

CVE-2022-25235

2022-02-21 05:51:26

CVE-2022-25236

2022-02-21 05:51:26

prion

Code injection

2022-02-11 13:15:00

Design/Logic Flaw

2022-02-16 01:15:00

Design/Logic Flaw

2022-02-16 01:15:00

checkpoint_advisories

Apache Cassandra Remote Code Execution (CVE-2021-44521)

2022-03-10 00:00:00

Expat XML Parser Remote Code Execution (CVE-2022-25236)

2022-08-15 00:00:00

osv

BIT-cassandra-2021-44521

2024-03-06 10:50:58

Apache Cassandra vulnerable to Code Injection due to unsafe configuration

2022-02-12 00:00:48

expat - security update

2022-03-07 00:00:00

nvd

CVE-2021-44521

2022-02-11 13:15:07

CVE-2022-25236

2022-02-16 01:15:07

CVE-2022-25235

2022-02-16 01:15:07

githubexploit

Exploit for Code Injection in Apache Cassandra

2022-02-24 11:07:34

Exploit for Improper Encoding or Escaping of Output in Libexpat Project Libexpat

2022-05-24 07:00:24

Exploit for Exposure of Resource to Wrong Sphere in Libexpat Project Libexpat

2022-05-06 05:19:11

veracode

Remote Code Execution (RCE)

2022-02-14 04:33:14

Privilege Escalation

2022-02-17 09:52:08

Cross-Site Scripting (XSS)

2022-02-17 08:28:38

thn

High-Severity RCE Security Bug Reported in Apache Cassandra Database Software

2022-02-16 05:18:00

cnvd

Apache Cassandra Code Injection Vulnerability

2022-02-15 00:00:00

Expat has an unspecified vulnerability (CNVD-2022-18356)

2022-02-21 00:00:00

Expat has an unspecified vulnerability (CNVD-2022-18357)

2022-02-21 00:00:00

ibm

Security Bulletin: Multiple vulnerabilities in IBM HTTP Server shipped in IBM WebSphere Application Server Patterns due to Expat vulnerabilities

2022-04-29 19:27:25

Security Bulletin: Multiple vulnerabilities in IBM HTTP Server used by IBM WebSphere Application Server due to Expat vulnerabilities

2022-03-15 15:35:35

Security Bulletin: Multiple Vulnerabilities have been identified in IBM HTTP Server shipped with IBM WebSphere Remote Server

2022-03-08 21:40:46

K19473898 : Expat vulnerabilities CVE-2022-23852, CVE-2022-25235, CVE-2022-25236, and CVE-2022-25315

2022-04-30 00:00:00

hivepro

Apache Cassandra database affected by easily exploitable Remote code execution

2022-02-18 12:40:54

VMware Unveils Critical Authentication Bypass Vulnerability in VCD Appliance

2023-11-17 08:07:39

freebsd

cassandra3 -- arbitrary code execution

2022-02-11 00:00:00

cvelist

CVE-2021-44521 Remote code execution for scripted UDFs

2022-02-11 12:20:12

CVE-2022-25235

2022-02-16 00:40:20

CVE-2022-25236

2022-02-16 00:39:16

github

Apache Cassandra vulnerable to Code Injection due to unsafe configuration

2022-02-12 00:00:48

redos

ROS-20220225-01

2022-02-25 00:00:00

suse

Security update for expat (important)

2022-03-04 00:00:00

Security update for expat (important)

2022-07-06 00:00:00

Security update for expat (important)

2022-03-15 00:00:00

debian

[SECURITY] [DSA 5085-2] expat regression update

2022-03-13 15:15:49

[SECURITY] [DLA 2935-1] expat security update

2022-03-07 13:35:55

[SECURITY] [DSA 5085-1] expat security update

2022-02-22 20:17:14

alpinelinux

CVE-2022-25236

2022-02-16 01:15:07

CVE-2022-25235

2022-02-16 01:15:07

cbl_mariner

CVE-2022-25236 affecting package expat 2.4.4-1

2022-03-09 18:31:42

CVE-2022-25235 affecting package expat 2.4.4-1

2022-03-09 18:31:42

CVE-2022-25235 affecting package expat for versions less than 2.4.8-1

2022-04-26 20:17:03

rocky

xmlrpc-c security update

2022-04-28 14:07:17

ubuntucve

CVE-2022-25235

2022-02-15 00:00:00

CVE-2022-25236

2022-02-15 00:00:00

mageia

Updated expat packages fix security vulnerability

2022-02-22 23:15:16

Updated xmlrpc-c packages fix security vulnerability

2022-05-15 13:06:40

slackware

[slackware-security] expat

2022-02-20 05:16:42

threatpost

High-Severity RCE Bug Found in Popular Apache Cassandra Database

2022-02-16 16:03:32

broadcom

xmltok_impl.c in Expat (aka libexpat) before 2.4.5 lacks certain validation (CVE-2022-25235)

2023-08-01 00:00:00

xmlparse.c in Expat (aka libexpat) before 2.4.5 allows attackers to insert namespace-separator characters into namespace URIs.

2023-08-01 00:00:00

almalinux

Important: xmlrpc-c security update

2022-04-28 14:07:17

Important: mingw-expat security update

2022-11-08 00:00:00

debiancve

CVE-2022-25236

2022-02-16 01:15:07

CVE-2022-25235

2022-02-16 01:15:07

vmware

VMware Cloud Director Appliance contains an authentication bypass vulnerability (CVE-2023-34060).

2023-11-14 00:00:00

VMware Cloud Director Appliance contains an authentication bypass vulnerability (CVE-2023-34060).

2023-11-14 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

8.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:S/C:C/I:C/A:C

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

10 High

AI Score

Confidence

High

0.05 Low

EPSS

Percentile

92.9%

JSON

Related for PHSA-2022-4.0-0157