RHEL 8 : xmlrpc-c (RHSA-2022:1644)
Discription

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:1644 advisory.

– expat: Malformed 2- and 3-byte UTF-8 sequences can lead to arbitrary code execution (CVE-2022-25235)

Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.Read More

References

https://access.redhat.com/security/cve/CVE-2022-25235https://access.redhat.com/errata/RHSA-2022:1644http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-25235https://bugzilla.redhat.com/2056366https://cwe.mitre.org/data/definitions/838.html

Back to Main
Subscribe for the latest news: