PT-2016-3449 · Xmlsoft+9 · Libxml2+9

Patrick Toomey

Published

2016-08-11

Updated

2024-09-05

CVE-2016-3709

CVSS v2.0

6.4

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:N

Name of the Vulnerable Software and Affected Versions libxml2 (affected versions not specified)

Description The issue is related to a possible cross-site scripting vulnerability in libxml2. This vulnerability may allow a remote attacker to access and compromise confidential data. The vulnerability is associated with the lack of protection measures for the structure of web pages.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

ALSA-2022:7715

ALT-PU-2021-2057

ALT-PU-2021-3332

AZL-10442

BDU:2023-07602

CESA-2022_7715

CVE-2016-3709

DLA-3878-1

MGASA-2022-0290

OESA-2022-1828

OESA-2022-1829

OPENSUSE-SU-2022_3871-1

RHSA-2022:7715

RHSA-2022_7715

RHSA-2023:4767

RLSA-2022:7715

SUSE-SU-2022:3717-1

SUSE-SU-2022:3871-1

SUSE-SU-2022_3717-1

SUSE-SU-2022_3871-1

SUSE-SU-2023:3665-1

SUSE-SU-2023_3665-1

USN-5548-1

Affected Products

Alt Linux

Almalinux

Astra Linux

Centos

Linuxmint

Red Hat

Rocky Linux

Suse

Ubuntu

Libxml2

PT-2016-3449 · Xmlsoft+9 · Libxml2+9

CVE-2016-3709

Weakness Enumeration

Related Identifiers

Affected Products

References · 59