Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:11465
HistoryJan 15, 2019 - 9:02 a.m.

Denial Of Service (DoS)

2019-01-1509:02:26
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
21

EPSS

0.01

Percentile

83.6%

JSON

libxml2.so is vulnerable to denial of service (DoS). parser.c does not prevent entity expansion properly which would allow a remote attacker to provide a specially crafted XML file to cause excessive entity substitutions even if entity substituion was disabled, causing a denial of service condition.

References

Related

openvas 26
fedora 5
f5 3
amazon 1
nessus 39
cve 2
debian 6
ubuntucve 2
redhat 2
osv 39
securityvulns 6
veracode 1
prion 2
ubuntu 1
centos 2
gentoo 1
oraclelinux 5
cvelist 2
freebsd 1
nvd 2
debiancve 2
mageia 1
ibm 6
archlinux 1
github 1
kaspersky 1
vmware 2
rubygems 1
apple 2
tenable 1
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2014:1440-1)
2021-06-09 00:00:00
Debian: Security Advisory (DLA-80-1)
2023-03-08 00:00:00
Ubuntu: Security Advisory (USN-2389-1)
2014-10-28 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: libxml2-2.9.1-2.fc19
2014-11-22 12:42:36
[SECURITY] Fedora 21 Update: libxml2-2.9.1-6.fc21
2014-11-01 17:15:32
[SECURITY] Fedora 20 Update: libxml2-2.9.1-3.fc20
2014-10-18 16:58:16
f5
f5
K15872 : libxml2 vulnerability CVE-2014-3660
2015-09-16 00:00:00
SOL15872 - libxml2 vulnerability CVE-2014-3660
2014-12-04 00:00:00
K61570943 : Multiple libXML2 vulnerabilities
2016-02-15 00:00:00
amazon
amazon
Medium: libxml2
2014-11-11 10:26:00
nessus
nessus
GLSA-201412-06 : libxml2: Denial of Service
2014-12-15 00:00:00
Scientific Linux Security Update : libxml2 on SL6.x, SL7.x i386/x86_64 (20141016)
2014-10-23 00:00:00
Amazon Linux AMI : libxml2 (ALAS-2014-444)
2014-11-18 00:00:00
cve
cve
CVE-2014-3660
2014-11-04 16:55:06
CVE-2015-5312
2015-12-15 21:59:00
debian
debian
[SECURITY] [DSA 3057-2] libxml2 regression update
2015-04-07 18:58:44
[SECURITY] [DSA 3057-2] libxml2 regression update
2015-04-07 18:58:44
[SECURITY] [DSA 3057-1] libxml2 security update
2014-10-26 21:19:20
ubuntucve
ubuntucve
CVE-2014-3660
2014-10-16 00:00:00
CVE-2015-5312
2015-11-26 00:00:00
redhat
redhat
(RHSA-2014:1885) Moderate: libxml2 security update
2014-11-20 00:00:00
(RHSA-2014:1655) Moderate: libxml2 security update
2014-10-16 00:00:00
osv
osv
libxml2 - security update
2014-10-29 00:00:00
libxml2 - regression update
2014-10-26 00:00:00
libxml2 - security update
2014-10-26 00:00:00
securityvulns
securityvulns
libxml DoS
2014-10-27 00:00:00
[ MDVSA-2014:204 ] libxml2
2014-10-27 00:00:00
Apple iOS multiple security vulnerabilities
2015-08-17 00:00:00
veracode
veracode
Denial Of Service (DoS)
2018-08-13 07:27:07
prion
prion
Privilege escalation
2014-11-04 16:55:00
Code injection
2015-12-15 21:59:00
ubuntu
ubuntu
libxml2 vulnerability
2014-10-27 00:00:00
centos
centos
libxml2 security update
2014-10-21 15:08:38
libxml2 security update
2014-11-20 21:10:50
gentoo
gentoo
libxml2: Denial of service
2014-12-10 00:00:00
oraclelinux
oraclelinux
libxml2 security update
2014-11-20 00:00:00
libxml2 security update
2014-10-16 00:00:00
libxml2 security and bug fix update
2015-07-29 00:00:00
cvelist
cvelist
CVE-2014-3660
2014-11-04 16:00:00
CVE-2015-5312
2015-12-15 21:00:00
freebsd
freebsd
libxml2 -- Denial of service
2014-10-16 00:00:00
nvd
nvd
CVE-2014-3660
2014-11-04 16:55:06
CVE-2015-5312
2015-12-15 21:59:00
debiancve
debiancve
CVE-2014-3660
2014-11-04 16:55:06
CVE-2015-5312
2015-12-15 21:59:00
mageia
mageia
Updated libxml2 packages fix security vulnerability
2014-10-23 17:27:57
ibm
ibm
Security Bulletin: Vulnerabilities in Libxml2 affect System x Integrated Management Module (IMM) (CVE-2014-0191, CVE-2014-3660)
2023-04-14 14:32:25
Security Bulletin: Integrated Management Module II (IMM2) affected by vulnerabilities in libxml2 (CVE-2014-0191, CVE-2014-3660)
2019-01-31 01:55:01
Security Bulletin: Vulnerabilities in libxml2 affect System Networking Products (CVE-2014-0191, CVE-2013-2877, CVE-2014-3660)
2019-01-31 01:55:01
archlinux
archlinux
libxml2: Denial of service
2014-10-24 00:00:00
github
github
Nokogiri subject to DoS via libxml2 vulnerability
2018-08-21 19:03:04
kaspersky
kaspersky
KLA10452 Multiple vulnerabilities in VMware products
2015-01-27 00:00:00
vmware
vmware
VMware vCenter Server, ESXi, Workstation, Player, and Fusion updates address security issues
2015-01-27 00:00:00
VMware vCenter Server, ESXi, Workstation, Player, and Fusion updates address security issues
2015-01-27 00:00:00
rubygems
rubygems
Nokogiri gem contains several vulnerabilities in libxml2
2015-12-14 21:00:00
apple
apple
About the security content of Apple TV 7.2.1 - Apple Support
2017-01-23 03:54:31
About the security content of Apple TV 7.2.1
2016-02-25 00:00:00
tenable
tenable
[R1] Nessus Network Monitor 6.2.2 Fixes Multiple Vulnerabilities
2023-06-29 10:45:47

EPSS

0.01

Percentile

83.6%

JSON
Related for VERACODE:11465
openvas26fedora5f53amazon1nessus39cve2debian6ubuntucve2redhat2osv39securityvulns6veracode1prion2ubuntu1centos2gentoo1oraclelinux5cvelist2freebsd1nvd2debiancve2mageia1ibm6archlinux1github1kaspersky1vmware2rubygems1apple2tenable1