Vulnerabilities > Xmlsoft > Libxml2 > 2.4.5
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-04 | CVE-2024-25062 | Use After Free vulnerability in Xmlsoft Libxml2 An issue was discovered in libxml2 before 2.11.7 and 2.12.x before 2.12.5. | 7.5 |
| 2023-10-06 | CVE-2023-45322 | Use After Free vulnerability in Xmlsoft Libxml2 libxml2 through 2.11.5 has a use-after-free that can only occur after a certain memory allocation fails. | 6.5 |
| 2023-04-24 | CVE-2023-28484 | NULL Pointer Dereference vulnerability in multiple products In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a segfault. | 6.5 |
| 2023-04-24 | CVE-2023-29469 | Double Free vulnerability in multiple products An issue was discovered in libxml2 before 2.10.4. | 6.5 |
| 2022-11-23 | CVE-2022-40304 | Double Free vulnerability in multiple products An issue was discovered in libxml2 before 2.10.3. | 7.8 |
| 2022-11-23 | CVE-2022-40303 | Integer Overflow or Wraparound vulnerability in multiple products An issue was discovered in libxml2 before 2.10.3. | 7.5 |
| 2022-05-03 | CVE-2022-29824 | Integer Overflow or Wraparound vulnerability in multiple products In libxml2 before 2.9.14, several buffer handling functions in buf.c (xmlBuf*) and tree.c (xmlBuffer*) don't check for integer overflows. | 6.5 |
| 2022-02-26 | CVE-2022-23308 | Use After Free vulnerability in multiple products valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes. | 7.5 |
| 2021-07-09 | CVE-2021-3541 | XML Entity Expansion vulnerability in multiple products A flaw was found in libxml2. | 6.5 |
| 2021-05-19 | CVE-2021-3517 | There is a flaw in the xml entity encoding functionality of libxml2 in versions before 2.9.11. | 8.6 |