Latest Vulnerabilities Affecting Xmlsoft products

Date	CVE	Title	CVSS
2019-04-10	CVE-2019-11068	Improper Access Control vulnerability in multiple products	High
2018-08-28	CVE-2017-15412	Use After Free vulnerability in multiple products	Medium
2018-08-16	CVE-2018-14567	Uncontrolled Resource Consumption ('Resource Exhaustion') vulnerability in multiple products	Medium
2018-08-16	CVE-2016-9596	Resource Management Errors vulnerability in Redhat and Xmlsoft products	Medium
2018-08-16	CVE-2016-9598	Out-of-bounds Read vulnerability in Redhat and Xmlsoft products	Medium
2018-07-30	CVE-2016-9597	Buffer Errors vulnerability in multiple products	Medium
2018-07-19	CVE-2018-14404	NULL Pointer Dereference vulnerability in multiple products	Medium
2018-04-08	CVE-2017-18258	Resource Management Errors vulnerability in Xmlsoft Libxml2	Medium
2018-04-04	CVE-2018-9251	Uncontrolled Resource Consumption ('Resource Exhaustion') vulnerability in Debian and Xmlsoft products	Low
2018-02-19	CVE-2017-7376	Buffer Errors vulnerability in multiple products	High
2018-02-19	CVE-2017-7375	Improper Restriction of XML External Entity Reference ('XXE') vulnerability in multiple products	High
2018-02-07	CVE-2017-5130	Out-of-bounds Write vulnerability in multiple products	Medium
2017-11-23	CVE-2017-16932	Uncontrolled Resource Consumption ('Resource Exhaustion') vulnerability in Xmlsoft Libxml2 2.9.4	Medium
2017-11-23	CVE-2017-16931	Buffer Errors vulnerability in Xmlsoft Libxml2 2.9.4	High
2017-05-18	CVE-2017-9050	Buffer Errors vulnerability in Xmlsoft Libxml2 2.9.4	Medium

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.