Pyxml CVEs and Security Vulnerabilities

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2009-3720	5 A M Kuchling, Apache, Libexpat Project and 2 more	7 Pyxml, Http Server, Libexpat and 4 more	2025-04-09	N/A
The updatePosition function in lib/xmltok_impl.c in libexpat in Expat 2.0.1, as used in Python, PyXML, w3c-libwww, and other software, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with crafted UTF-8 sequences that trigger a buffer over-read, a different vulnerability than CVE-2009-2625.
CVE-2012-0877	2 Python, Redhat	3 Pyxml, Enterprise Linux, Enterprise Virtualization Hypervisor	2024-11-21	7.5 High
PyXML: Hash table collisions CPU usage Denial of Service

Page 1 of 1.