CVE-2019-20388 vulnerability in Xmlsoft and Other Products
Published on January 21, 2020

xmlSchemaPreRun in xmlschemas.c in libxml2 2.9.10 allows an xmlSchemaValidateStream memory leak.

Github Repository Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2019-20388

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2019-20388 are published in these products:

Xmlsoft Libxml2

Canonical Ubuntu Linux

Debian Linux

NetApp Cloud Backup

NetApp Clustered Data Ontap

NetApp Ontap Select Deploy Administration Utility

NetApp Plug In For Symantec Netbackup

NetApp Smi S Provider

NetApp Snapdrive

NetApp Steelstore Cloud Integrated Storage

Oracle Enterprise Manager Ops Center

Oracle Mysql Workbench

Oracle Real User Experience Insight

OpenSuse Leap

Fedora Project Fedora

Oracle Peoplesoft Enterprise Peopletools

Oracle Enterprise Manager Base Platform

Oracle Communications Cloud Native Core Network Function Cloud Native Environment

Vulnerable Packages

The following package name and versions may be associated with CVE-2019-20388

Package Manager	Vulnerable Package	Versions	Fixed In
rubygems	nokogiri	< 1.11.4	1.11.4

Exploit Probability

EPSS

0.56%

Percentile

67.61%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2019-20388 vulnerability in Xmlsoft and Other ProductsPublished on January 21, 2020

Products Associated with CVE-2019-20388

Vulnerable Packages

Exploit Probability

CVE-2019-20388 vulnerability in Xmlsoft and Other Products
Published on January 21, 2020