According to the versions of the libxml2 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities :

  - An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the     XML_PARSE_HUGE parser option enabled, several integer counters can overflow. This results in an attempt to     access an array at a negative 2GB offset, typically leading to a segmentation fault. (CVE-2022-40303)

  - An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions can corrupt a     hash table key, potentially leading to subsequent logic errors. In one case, a double-free can be     provoked. (CVE-2022-40304)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:0338 advisory.

  - An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the     XML_PARSE_HUGE parser option enabled, several integer counters can overflow. This results in an attempt to     access an array at a negative 2GB offset, typically leading to a segmentation fault. (CVE-2022-40303)

  - An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions can corrupt a     hash table key, potentially leading to subsequent logic errors. In one case, a double-free can be     provoked. (CVE-2022-40304)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote SUSE Linux SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3692-1 advisory.

  - An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the     XML_PARSE_HUGE parser option enabled, several integer counters can overflow. This results in an attempt to     access an array at a negative 2GB offset, typically leading to a segmentation fault. (CVE-2022-40303)

  - An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions can corrupt a     hash table key, potentially leading to subsequent logic errors. In one case, a double-free can be     provoked. (CVE-2022-40304)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote SUSE Linux SLES12 / SLES_SAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3717-1 advisory.

  - Possible cross-site scripting vulnerability in libxml after commit 960f0e2. (CVE-2016-3709)

  - An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the     XML_PARSE_HUGE parser option enabled, several integer counters can overflow. This results in an attempt to     access an array at a negative 2GB offset, typically leading to a segmentation fault. (CVE-2022-40303)

  - An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions can corrupt a     hash table key, potentially leading to subsequent logic errors. In one case, a double-free can be     provoked. (CVE-2022-40304)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5271 advisory.

  -  Please review the referenced CVE identifiers for details.  (CVE-2022-40303, CVE-2022-40304)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2023:0173 advisory.

  - An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the     XML_PARSE_HUGE parser option enabled, several integer counters can overflow. This results in an attempt to     access an array at a negative 2GB offset, typically leading to a segmentation fault. (CVE-2022-40303)

  - An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions can corrupt a     hash table key, potentially leading to subsequent logic errors. In one case, a double-free can be     provoked. (CVE-2022-40304)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5760-1 advisory.

    It was discovered that libxml2 incorrectly handled certain XML files. An attacker could possibly use this     issue to cause a crash. (CVE-2022-2309)

    It was discovered that libxml2 incorrectly handled certain XML files. An attacker could possibly use this     issue to expose sensitive information or cause a crash. (CVE-2022-40303)

    It was discovered that libxml2 incorrectly handled certain XML files. An attacker could possibly use this     issue to execute arbitrary code. (CVE-2022-40304)

Tenable has extracted the preceding description block directly from the Ubuntu security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of libxml2 installed on the remote host is prior to 2.9.1-6.6.42. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2023-1743 advisory.

    parser.c in libxml2 before 2.9.5 mishandles parameter-entity references because the NEXTL macro calls the     xmlParserHandlePEReference function in the case of a '%' character in a DTD name. (CVE-2017-16931)

    GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at     libxml2/entities.c. The issue has been fixed in commit 50f06b3e. (CVE-2020-24977)

    There's a flaw in libxml2's xmllint. An attacker who is able to submit a crafted file to be processed by     xmllint could trigger a use-after-free. The greatest impact of this flaw is to confidentiality, integrity,     and availability. (CVE-2021-3516)

    There is a flaw in the xml entity encoding functionality of libxml2. An attacker who is able to supply a     crafted file to be processed by an application linked with the affected functionality of libxml2 could     trigger an out-of-bounds read. The most likely impact of this flaw is to application availability, with     some potential impact to confidentiality and integrity if an attacker is able to use memory information to     further exploit the application. (CVE-2021-3517)

    There's a flaw in libxml2. An attacker who is able to submit a crafted file to be processed by an     application linked with libxml2 could trigger a use-after-free. The greatest impact from this flaw is to     confidentiality, integrity, and availability. (CVE-2021-3518)

    A NULL pointer dereference flaw was found in libxml2, where it did not propagate errors while parsing XML     mixed content. This flaw causes the application to crash if an untrusted XML document is parsed in     recovery mode and post validated. The highest threat from this vulnerability is to system availability.
    (CVE-2021-3537)

    A flaw was found in libxml2. Exponential entity expansion attack its possible bypassing all existing     protection mechanisms and leading to denial of service. (CVE-2021-3541)

    valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes. (CVE-2022-23308)

    A flaw was found in the libxml2 library in functions used to manipulate the xmlBuf and the xmlBuffer     types. A substantial input causes values to calculate buffer sizes to overflow, resulting in an out-of-     bounds write. (CVE-2022-29824)

    An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the     XML_PARSE_HUGE parser option enabled, several integer counters can overflow. This results in an attempt to     access an array at a negative 2GB offset, typically leading to a segmentation fault. (CVE-2022-40303)

    An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions can corrupt a     hash table key, potentially leading to subsequent logic errors. In one case, a double-free can be     provoked. (CVE-2022-40304)

    A NULL pointer dereference exists when parsing (invalid) XML schemas in libxml2     xmlSchemaCheckCOSSTDerivedOK (CVE-2023-28484)

    libxml2 Hashing of empty dict strings isn't deterministic. When hashing empty strings which aren't null-     terminated, xmlDictComputeFastKey could produce inconsistent results. This could lead to various logic or     memory errors, including double frees. (CVE-2023-29469)

Tenable has extracted the preceding description block directly from the tested product security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote host is running a version of macOS / Mac OS X that is 12.x prior to 12.6.2. It is, therefore, affected by multiple vulnerabilities:

  - The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.6.2, macOS     Ventura 13.1. An app may be able to disclose kernel memory. (CVE-2022-42854)

  - A logic issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.6.2, macOS Big     Sur 11.7.2, macOS Ventura 13. An app may bypass Gatekeeper checks. (CVE-2022-42821)

  - An access issue was addressed with improved access restrictions. This issue is fixed in macOS Ventura     13.1. An app may be able to modify protected parts of the file system. (CVE-2022-42853)

  - The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.6.2, macOS     Ventura 13.1, macOS Big Sur 11.7.2. An app may be able to execute arbitrary code with kernel privileges.
    (CVE-2022-32942)

  - This issue was addressed with improved checks. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS     Monterey 12.6.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2. An app may be able to break out of its     sandbox. (CVE-2022-42861)

  - A race condition was addressed with improved state handling. This issue is fixed in tvOS 16.2, macOS     Monterey 12.6.2, macOS Ventura 13.1, macOS Big Sur 11.7.2, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and     iPadOS 16.2, watchOS 9.2. An app may be able to execute arbitrary code with kernel privileges.
    (CVE-2022-42864)

  - A race condition was addressed with additional validation. This issue is fixed in tvOS 16.2, macOS     Monterey 12.6.2, macOS Ventura 13.1, macOS Big Sur 11.7.2, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and     iPadOS 16.2, watchOS 9.2. An app may be able to execute arbitrary code with kernel privileges.
    (CVE-2022-46689)

  - The issue was addressed with improved memory handling. This issue is fixed in tvOS 16.2, macOS Monterey     12.6.2, macOS Ventura 13.1, macOS Big Sur 11.7.2, iOS 16.2 and iPadOS 16.2, watchOS 9.2. An app with root     privileges may be able to execute arbitrary code with kernel privileges. (CVE-2022-42845)

  - The issue was addressed with improved memory handling. This issue is fixed in tvOS 16.2, macOS Monterey     12.6.2, macOS Ventura 13.1, macOS Big Sur 11.7.2, iOS 16.2 and iPadOS 16.2, watchOS 9.2. A remote user may     be able to cause kernel code execution. (CVE-2022-42842)

  - An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the     XML_PARSE_HUGE parser option enabled, several integer counters can overflow. This results in an attempt to     access an array at a negative 2GB offset, typically leading to a segmentation fault. (CVE-2022-40303)

  - An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions can corrupt a     hash table key, potentially leading to subsequent logic errors. In one case, a double-free can be     provoked. (CVE-2022-40304)

  - A logic issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.1,     macOS Big Sur 11.7.2, macOS Monterey 12.6.2. An app may be able to modify protected parts of the file     system. (CVE-2022-46704)

  - The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.6.2, macOS     Ventura 13.1, macOS Big Sur 11.7.2, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and iPadOS 16.2. An app may be     able to execute arbitrary code with kernel privileges. (CVE-2022-42840)

  - A logic issue was addressed with improved state management. This issue is fixed in tvOS 16.2, macOS     Monterey 12.6.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and iPadOS 16.2. An app may be     able to use arbitrary entitlements. (CVE-2022-42855)

  - A logic issue was addressed with improved restrictions. This issue is fixed in iOS 15.7.2 and iPadOS     15.7.2, macOS Ventura 13.1, macOS Big Sur 11.7.2, macOS Monterey 12.6.2. An app may be able to read     sensitive location information (CVE-2022-46718)

  - A logic issue was addressed with improved restrictions. This issue is fixed in iOS 15.7.2 and iPadOS     15.7.2, macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2. An app may be able to read sensitive location     information (CVE-2022-46703)

  - A type confusion issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.6.2,     macOS Ventura 13.1, macOS Big Sur 11.7.2. Processing a maliciously crafted package may lead to arbitrary     code execution. (CVE-2022-42841)

Note that Nessus has not tested for these issues but has instead relied only on the operating system's self-reported version number.

The remote host is running a version of macOS / Mac OS X that is 11.x prior to 11.7.2. It is, therefore, affected by multiple vulnerabilities:

  - This issue was addressed by enabling hardened runtime. This issue is fixed in iOS 16.2 and iPadOS 16.2,     macOS Ventura 13.1, tvOS 16.2, watchOS 9.2. An app may be able to bypass Privacy preferences.
    (CVE-2022-42865)

  - A logic issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.6.2, macOS Big     Sur 11.7.2, macOS Ventura 13. An app may bypass Gatekeeper checks. (CVE-2022-42821)

  - The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.6.2, macOS     Ventura 13.1, macOS Big Sur 11.7.2. An app may be able to execute arbitrary code with kernel privileges.
    (CVE-2022-32942)

  - A race condition was addressed with improved state handling. This issue is fixed in tvOS 16.2, macOS     Monterey 12.6.2, macOS Ventura 13.1, macOS Big Sur 11.7.2, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and     iPadOS 16.2, watchOS 9.2. An app may be able to execute arbitrary code with kernel privileges.
    (CVE-2022-42864)

  - A race condition was addressed with additional validation. This issue is fixed in tvOS 16.2, macOS     Monterey 12.6.2, macOS Ventura 13.1, macOS Big Sur 11.7.2, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and     iPadOS 16.2, watchOS 9.2. An app may be able to execute arbitrary code with kernel privileges.
    (CVE-2022-46689)

  - The issue was addressed with improved memory handling. This issue is fixed in tvOS 16.2, macOS Monterey     12.6.2, macOS Ventura 13.1, macOS Big Sur 11.7.2, iOS 16.2 and iPadOS 16.2, watchOS 9.2. An app with root     privileges may be able to execute arbitrary code with kernel privileges. (CVE-2022-42845)

  - The issue was addressed with improved memory handling. This issue is fixed in tvOS 16.2, macOS Monterey     12.6.2, macOS Ventura 13.1, macOS Big Sur 11.7.2, iOS 16.2 and iPadOS 16.2, watchOS 9.2. A remote user may     be able to cause kernel code execution. (CVE-2022-42842)

  - An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the     XML_PARSE_HUGE parser option enabled, several integer counters can overflow. This results in an attempt to     access an array at a negative 2GB offset, typically leading to a segmentation fault. (CVE-2022-40303)

  - An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions can corrupt a     hash table key, potentially leading to subsequent logic errors. In one case, a double-free can be     provoked. (CVE-2022-40304)

  - A logic issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.1,     macOS Big Sur 11.7.2, macOS Monterey 12.6.2. An app may be able to modify protected parts of the file     system. (CVE-2022-46704)

  - The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.6.2, macOS     Ventura 13.1, macOS Big Sur 11.7.2, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and iPadOS 16.2. An app may be     able to execute arbitrary code with kernel privileges. (CVE-2022-42840)

  - A logic issue was addressed with improved restrictions. This issue is fixed in iOS 15.7.2 and iPadOS     15.7.2, macOS Ventura 13.1, macOS Big Sur 11.7.2, macOS Monterey 12.6.2. An app may be able to read     sensitive location information (CVE-2022-46718)

  - A type confusion issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.6.2,     macOS Ventura 13.1, macOS Big Sur 11.7.2. Processing a maliciously crafted package may lead to arbitrary     code execution. (CVE-2022-42841)

Note that Nessus has not tested for these issues but has instead relied only on the operating system's self-reported version number.

According to its banner, the version of Apple TV on the remote device is prior to 16.2. It is therefore affected by multiple vulnerabilities as described in the HT213535

An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the XML_PARSE_HUGE parser option enabled, several integer counters can overflow. This results in an attempt to access an array at a negative 2GB offset, typically leading to a segmentation fault.

This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.

ID	Name	Product	Family	Published	Updated	Severity
175778	EulerOS Virtualization 2.10.1 : libxml2 (EulerOS-SA-2023-1893)	Nessus	Huawei Local Security Checks	5/16/2023	5/16/2023	high
178854	EulerOS Virtualization 3.0.6.6 : libxml2 (EulerOS-SA-2023-2412)	Nessus	Huawei Local Security Checks	7/26/2023	7/26/2023	high
185073	Rocky Linux 9 : libxml2 (RLSA-2023:0338)	Nessus	Rocky Linux Local Security Checks	11/7/2023	11/7/2023	high
166422	SUSE SLED15 / SLES15 Security Update : libxml2 (SUSE-SU-2022:3692-1)	Nessus	SuSE Local Security Checks	10/22/2022	7/14/2023	high
166526	SUSE SLES12 Security Update : libxml2 (SUSE-SU-2022:3717-1)	Nessus	SuSE Local Security Checks	10/26/2022	7/14/2023	high
167046	Debian DSA-5271-1 : libxml2 - security update	Nessus	Debian Local Security Checks	11/6/2022	3/22/2023	high
190175	CentOS 8 : libxml2 (CESA-2023:0173)	Nessus	CentOS Local Security Checks	2/8/2024	2/8/2024	high
168460	Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS : libxml2 vulnerabilities (USN-5760-1)	Nessus	Ubuntu Local Security Checks	12/7/2022	8/29/2024	high
175091	Amazon Linux AMI : libxml2 (ALAS-2023-1743)	Nessus	Amazon Linux Local Security Checks	5/4/2023	12/11/2024	critical
168669	macOS 12.x < 12.6.2 Multiple Vulnerabilities (HT213533)	Nessus	MacOS X Local Security Checks	12/13/2022	6/25/2024	critical
168670	macOS 11.x < 11.7.2 Multiple Vulnerabilities (HT213534)	Nessus	MacOS X Local Security Checks	12/13/2022	5/28/2024	critical
169649	Apple TV < 16.2 Multiple Vulnerabilities (HT213535)	Nessus	Misc.	1/6/2023	2/1/2024	critical
502905	Siemens SCALANCE W700 Integer Overflow or Wraparound (CVE-2022-40303)	Tenable OT Security	Tenable.ot	2/24/2025	2/25/2025	high

Detections

Analytics

Plugins Search

high

high

high

high

high

high

high

high

critical

critical

critical

critical

high