libxml2
Security Risk Profile
31
/100
lowSecurity Risk Score
Comprehensive risk assessment based on 13 vulnerabilities, EPSS scores, exploitation status, and remediation availability.
📅 Data spans from February 18, 2013 to present
13
Total CVEs
4
Critical+High
0
Exploited
2
Unpatched
Threat Assessment
Avg CVSS
5.6
Base severity
Avg EPSS
0%
Exploit probability
Unpatched
2
Critical/High
Risk Level
31/100
low
Severity Distribution
Critical
1High
3Medium
7Low
1Exploit Likelihood
>50% chance
020-50%
05-20%
0<5%
3Age Distribution
Common Weaknesses (CWE)
1
Use After Free
3
2
Buffer Overflow
2
3
Integer Overflow
1
Most Affected Products
1. libxml2 libxml29
2. redhat OpenShift Container Platform8
3. redhat Enterprise Linux8
4. redhat Openshift Container Platform For Arm646
5. redhat Openshift Container Platform For Ibm Z6
Recent Vulnerabilities
See more →CVE-2026-1757
CVSS 6.2medium
Libxml2: memory leak leading to local denial of service in xmllint interactive shell
2/2/2026🔧 No Patch
CVE-2026-0990
CVSS 5.9EPSS 0%medium
Libxml2: libxml2: denial of service via uncontrolled recursion in xml catalog processing
1/15/2026
REDHAT-BUG-2379274
CVSS 7.0high
7/10/2025🔧 No Patch
CVE-2025-6170
CVSS 2.5EPSS 0%low
Libxml2: stack buffer overflow in xmllint interactive shell command handling
6/16/2025🔧 No Patch
CVE-2025-6021
CVSS 7.5EPSS 0%high
Libxml2: integer overflow in xmlbuildqname() leads to stack buffer overflow in libxml2
6/12/2025🔧 No Patch
https://seclists.org/oss-sec/2025/q1/136
unknown
[musl] CVE-2025-26519: musl libc: input-controlled out-of-bounds write primitive in iconv()
2/14/2025🔧 No Patch
REDHAT-BUG-2342118
CVSS 4.0medium
1/26/2025🔧 No Patch
CVE-2022-49043
CVSS 10.0critical
1/26/2025
CVE-2024-34459
CVSS 7.5high
5/13/2024
REDHAT-BUG-1437311
CVSS 4.0medium
3/30/2017🔧 No Patch
Monitor libxml2 in Real-Time
Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.