CVE-2025-6170

Low CVSS: 2.5

A flaw was found in the interactive shell of the xmllint command-line tool, used for parsing XML files. When a user inputs an overly long command, the program does not check the input size properly, which can cause it to crash. This issue might allow attackers to run harmful code in rare configurations without modern protections.

Vendor

Redhat

Product

Jboss Core Services

CWE

CWE-121

Yayın Tarihi

2025-06-16 16:15:20

Güncelleme

2026-03-24 05:16:23

Source Identifier

secalert@redhat.com

KEV Date Added

Kategoriler

CWE-121 Jboss Core Services LOW Redhat 2025

Referanslar

https://access.redhat.com/security/cve/CVE-2025-6170 https://bugzilla.redhat.com/show_bug.cgi?id=2372952 https://gitlab.gnome.org/GNOME/libxml2/-/issues/941 https://lists.debian.org/debian-lts-announce/2025/07/msg00014.html

Benzer Kayıtlar

High

CVE-2026-28369

A flaw was found in Undertow. When Undertow receives an HTTP request where the first header line starts with one or more…

High

CVE-2026-28368

A flaw was found in Undertow. This vulnerability allows a remote attacker to construct specially crafted requests where…

Medium

CVE-2026-3121

A flaw was found in Keycloak. An administrator with `manage-clients` permission can exploit a misconfiguration where thi…

Medium

CVE-2026-3190

A flaw was found in Keycloak. The User-Managed Access (UMA) 2.0 Protection API endpoint for permission tickets fails to…

Low

CVE-2026-4874

A flaw was found in Keycloak. An authenticated attacker can perform Server-Side Request Forgery (SSRF) by manipulating t…

Low

CVE-2026-4633

A flaw was found in Keycloak. A remote attacker can exploit differential error messages during the identity-first login…