Search Results | AttackerKB

Show filters

Topics 74 Users 9,708

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

74 Total Results

Displaying 41-50 of 74

Attacker Value

Unknown

CVE-2022-23990

Disclosure Date: January 26, 2022 (last updated November 08, 2023)

Expat (aka libexpat) before 2.4.4 has an integer overflow in the doProlog function.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-23852

Disclosure Date: January 24, 2022 (last updated November 28, 2024)

Expat (aka libexpat) before 2.4.4 has a signed integer overflow in XML_GetBuffer, for configurations with a nonzero XML_CONTEXT_BYTES.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-22827

Disclosure Date: January 10, 2022 (last updated October 07, 2023)

storeAtts in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.

Attack Vector: Network Privileges: None User Interaction: Required

0

Attacker Value

Unknown

CVE-2022-22826

Disclosure Date: January 10, 2022 (last updated October 07, 2023)

nextScaffoldPart in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.

Attack Vector: Network Privileges: None User Interaction: Required

0

Attacker Value

Unknown

CVE-2022-22825

Disclosure Date: January 10, 2022 (last updated October 07, 2023)

lookup in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.

Attack Vector: Network Privileges: None User Interaction: Required

0

Attacker Value

Unknown

CVE-2022-22824

Disclosure Date: January 10, 2022 (last updated October 07, 2023)

defineAttribute in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-22823

Disclosure Date: January 10, 2022 (last updated October 07, 2023)

build_model in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-22822

Disclosure Date: January 10, 2022 (last updated October 07, 2023)

addBinding in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2021-46143

Disclosure Date: January 06, 2022 (last updated October 07, 2023)

In doProlog in xmlparse.c in Expat (aka libexpat) before 2.4.3, an integer overflow exists for m_groupSize.

Attack Vector: Local Privileges: None User Interaction: Required

0

Attacker Value

Unknown

CVE-2021-45960

Disclosure Date: January 01, 2022 (last updated October 07, 2023)

In Expat (aka libexpat) before 2.4.3, a left shift by 29 (or more) places in the storeAtts function in xmlparse.c can lead to realloc misbehavior (e.g., allocating too few bytes, or only freeing memory).

Attack Vector: Network Privileges: Low User Interaction: None

0