Vulnetix
Try Vulnetix Request Demo
CVE-2017-9233 PUBLISHED

XML External Entity vulnerability in libexpat 2.2.0 and earlier (Expat XML Parser Library) allows attackers to put the parser in an infinite loop using a malformed external entity definition from an external DTD.

EPSS 0.25% · 48.4th percentile

Risk Scores

EPSS Score
0.25%
48.4th percentile

Affected Products

VendorProductVersions
Ubuntu:20.04:LTSswish-e2.4.7-6build1, 2.4.7-6build2, 0
Ubuntu:16.04:LTSmatanza0, 0.13+ds1-5
Ubuntu:24.04:LTSmatanza0, 0.13+ds2-1build1, 0.13+ds2-1
Ubuntu:25.10sitecopy1:0.16.6-16build1, 0, 1:0.16.6-16
Ubuntu:25.10swish-e2.4.7-6.3build1, 2.4.7-7, 0
Ubuntu:16.04:LTSinsighttoolkit44.8.1-1ubuntu4, 0, 4.8.1-1ubuntu3
Ubuntu:18.04:LTSswish-e2.4.7-5ubuntu1, 0
Ubuntu:14.04:LTSexpat2.1.0-4ubuntu1.1, 0, 2.1.0-4ubuntu1.3
Ubuntu:18.04:LTSmatanza0, 0.13+ds1-6, 0.13+ds1-5build1
Ubuntu:16.04:LTSexpat2.1.0-7ubuntu0.16.04.1, 2.1.0-7, 0
Ubuntu:Pro:14.04:LTSvnc40, 4.1.1+xorg4.3.0-37ubuntu5.0.1, 4.1.1+xorg4.3.0-37ubuntu5
Ubuntu:24.04:LTSswish-e2.4.7-6.2build2, 0, 2.4.7-6.2
Ubuntu:22.04:LTSswish-e2.4.7-6build3, 2.4.7-6.1build1, 2.4.7-6.1
Ubuntu:20.04:LTSmatanza0.13+ds1-6, 0.13+ds2-1, 0
Ubuntu:16.04:LTScableswig0, 0.1.0+git20150808-1, 0.1.0+git20150808-2
Ubuntu:18.04:LTSvnc40, 4.1.1+xorg4.3.0-37.3ubuntu2
Ubuntu:Pro:16.04:LTScoin33.1.4~abc9f50+dfsg1-1, 0
Ubuntu:Pro:16.04:LTSvnc44.1.1+xorg4.3.0-37.3ubuntu2, 4.1.1+xorg4.3.0-37.3ubuntu2.1+esm1, 0
Ubuntu:18.04:LTScoin30, 3.1.4~abc9f50+dfsg3-2, 3.1.4~abc9f50+dfsg3-1
Ubuntu:25.10matanza0, 0.13+ds2-2

…and 3 more

Timeline

References

Open in Interactive Console →