A vulnerability in the XML_ExternalEntityParserCreate function of the XML parser library libexpat
is related to a post-release exploit. Exploitation of the vulnerability could allow
an attacker acting remotely to cause a denial of service.

OSVersionArchitecturePackageVersionFilename
redos7.3x86_64expat<= 2.5.0-1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
redos	7.3	x86_64	expat	<= 2.5.0-1	UNKNOWN

nessus 60

f5 1

almalinux 2

rocky 2

openvas 35

githubexploit 5

cvelist 1

debian 2

suse 2

osv 11

slackware 2

fedora 6

redhat 15

wolfi 1

ibm 22

oraclelinux 2

aix 1

cgr 1

cbl_mariner 2

cloudlinux 1

cve 1

veracode 1

prion 1

ubuntu 3

amazon 2

redhatcve 1

alpinelinux 1

debiancve 1

ubuntucve 1

gentoo 1

nvd 1

cloudfoundry 2

mageia 2

ics 2

photon 4

kaspersky 1

nessus

EulerOS Virtualization 2.11.1 : expat (EulerOS-SA-2023-2036)

2023-06-07 00:00:00

Rocky Linux 9 : expat (RLSA-2023:0337)

2023-11-07 00:00:00

CentOS 9 : expat-2.5.0-1.el9

2024-02-29 00:00:00

K000139525: Libexpat vulnerability CVE-2022-43680

2024-05-25 00:00:00

almalinux

Moderate: expat security update

2023-01-23 00:00:00

Moderate: expat security update

2023-01-12 00:00:00

rocky

expat security update

2023-01-23 14:30:30

expat security update

2023-01-12 08:25:33

openvas

Fedora: Security Advisory for mingw-expat (FEDORA-2022-5f1e2e9016)

2022-11-14 00:00:00

SUSE: Security Advisory (SUSE-SU-2022:3874-1)

2022-11-07 00:00:00

Fedora: Security Advisory for mingw-expat (FEDORA-2022-c43235716e)

2022-11-13 00:00:00

githubexploit

Exploit for Use After Free in Libexpat Project Libexpat

2023-04-04 06:31:47

Exploit for Use After Free in Libexpat Project Libexpat

2022-12-19 05:09:12

Exploit for Use After Free in Libexpat Project Libexpat

2022-12-02 08:26:04

cvelist

CVE-2022-43680

2022-10-24 00:00:00

debian

[SECURITY] [DLA 3165-1] expat security update

2022-10-28 01:43:45

[SECURITY] [DSA 5266-1] expat security update

2022-10-30 14:03:23

suse

Security update for expat (important)

2022-11-07 00:00:00

Security update for expat (important)

2022-11-08 00:00:00

osv

Moderate: expat security update

2023-01-12 08:25:33

expat vulnerability

2022-11-23 15:09:26

Vulnerability: Package libexpat affected by CVE-2022-43680 affecting GitOnBorg::android::platform::external::expat

2023-02-01 00:00:00

slackware

[slackware-security] expat

2022-10-25 18:53:10

[slackware-security] python3

2022-12-07 18:52:09

fedora

[SECURITY] Fedora 35 Update: mingw-expat-2.5.0-1.fc35

2022-11-13 01:20:59

[SECURITY] Fedora 37 Update: mingw-expat-2.5.0-1.fc37

2022-11-14 01:14:14

[SECURITY] Fedora 36 Update: mingw-expat-2.5.0-1.fc36

2022-11-13 01:19:40

redhat

(RHSA-2023:0103) Moderate: expat security update

2023-01-12 08:25:33

(RHSA-2024:0421) Moderate: expat security update

2024-01-24 14:40:27

(RHSA-2023:0337) Moderate: expat security update

2023-01-23 14:30:30

wolfi

CVE-2022-43680 vulnerabilities

2024-02-07 01:47:52

ibm

Security Bulletin: AIX is affected by a denial of service (CVE-2022-43680) due to Python

2022-12-22 17:08:47

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a denial of service in libexpat (CVE-2022-43680).

2023-03-31 18:00:44

Security Bulletin: Vulnerability in libexpat (CVE-2022-43680) affects Power HMC

2023-06-03 10:21:20

oraclelinux

expat security update

2023-01-24 00:00:00

expat security update

2023-01-12 00:00:00

aix

AIX is affected by a denial of service due to Python

2022-12-22 10:15:28

cgr

CVE-2022-43680 vulnerabilities

2024-02-06 23:19:33

cbl_mariner

CVE-2022-43680 affecting package expat for versions less than 2.5.0-1

2022-11-03 20:37:47

CVE-2022-43680 affecting package expat 2.4.9-1

2022-11-03 00:44:53

cloudlinux

expat: Fix of CVE-2022-43680

2022-11-03 16:42:42

cve

CVE-2022-43680

2022-10-24 14:15:53

veracode

Use After Free

2022-10-25 05:03:57

prion

Design/Logic Flaw

2022-10-24 14:15:00

ubuntu

Expat vulnerability

2022-11-23 00:00:00

Expat vulnerabilities

2023-02-28 00:00:00

Expat vulnerabilities

2022-11-17 00:00:00

amazon

Important: expat

2022-12-01 20:31:00

Important: expat

2022-12-01 17:34:00

redhatcve

CVE-2022-43680

2022-11-04 10:26:43

alpinelinux

CVE-2022-43680

2022-10-24 14:15:53

debiancve

CVE-2022-43680

2022-10-24 14:15:53

ubuntucve

CVE-2022-43680

2022-10-24 00:00:00

gentoo

Expat: Denial of Service

2022-10-31 00:00:00

nvd

CVE-2022-43680

2022-10-24 14:15:53

cloudfoundry

USN-5638-3: Expat vulnerability | Cloud Foundry

2022-12-07 00:00:00

USN-5638-2: Expat vulnerabilities | Cloud Foundry

2022-12-07 00:00:00

mageia

Updated expat packages fix security vulnerability

2022-11-05 00:16:03

Updated firefox packages fix security vulnerability

2022-11-17 23:45:15

ics

Hitachi Energy’s AFS65x, AFS67x, AFR67x and AFF66x Products

2023-05-23 12:00:00

Siemens SINEC NMS Third-Party

2023-05-11 12:00:00

photon

Critical Photon OS Security Update - PHSA-2022-0534

2022-10-29 00:00:00

Important Photon OS Security Update - PHSA-2022-3.0-0480

2022-10-29 00:00:00

Critical Photon OS Security Update - PHSA-2022-0271

2022-10-28 00:00:00

kaspersky

KLA62621 Multiple vulnerabilities in OpenOffice

2023-12-22 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.004 Low

EPSS

Percentile

74.1%

JSON

Related for ROS-20230911-03