CVE-2019-11068 vulnerability in Xmlsoft and Other Products
Published on April 10, 2019

libxslt through 1.1.33 allows bypass of a protection mechanism because callers of xsltCheckRead and xsltCheckWrite permit access even upon receiving a -1 error code. xsltCheckRead can return -1 for a crafted URL that is not actually invalid and is subsequently loaded.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2019-11068

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2019-11068 are published in these products:

Xmlsoft Libxslt

Canonical Ubuntu Linux

Debian Linux

Fedora Project Fedora

Oracle Jdk

NetApp Cloud Backup

NetApp Element Software

NetApp Steelstore Cloud Integrated Storage

NetApp Snapmanager

NetApp Oncommand Workflow Automation

NetApp Oncommand Insight

NetApp E Series Santricity Web Services Proxy

NetApp E Series Santricity Storage Manager

NetApp E Series Santricity Unified Manager

NetApp Solidfire

NetApp Hci Management Node

NetApp Active Iq Unified Manager

NetApp Santricity Unified Manager

NetApp E Series Santricity Management Plug Ins

NetApp Plug In For Symantec Netbackup

NetApp E Series Santricity Os Controller

OpenSuse Leap

Exploit Probability

EPSS

0.99%

Percentile

76.55%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2019-11068 vulnerability in Xmlsoft and Other ProductsPublished on April 10, 2019

Products Associated with CVE-2019-11068

Exploit Probability

CVE-2019-11068 vulnerability in Xmlsoft and Other Products
Published on April 10, 2019