VulnerableCode Package Details - pkg:rpm/redhat/expat@2.2.10-1?arch=el8_2

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:rpm/redhat/expat@2.2.10-1?arch=el8_2

Essentials
History (18)

purl	pkg:rpm/redhat/expat@2.2.10-1?arch=el8_2

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	4.5

Vulnerabilities affecting this package (18)

Vulnerability	Summary	Fixed by
VCID-1fms-7y9v-dfc5 Aliases: CVE-2013-0340	Multiple vulnerabilities have been found in Expat, the worst of which may allow execution of arbitrary code.	There are no reported fixed by versions.
VCID-28yc-wkq6-c7hb Aliases: CVE-2022-25313	Multiple vulnerabilities have been discovered in Expat, the worst of which could result in arbitrary code execution.	There are no reported fixed by versions.
VCID-4c32-p11r-zud5 Aliases: CVE-2021-45960	Multiple vulnerabilities have been discovered in Expat, the worst of which could result in arbitrary code execution.	There are no reported fixed by versions.
VCID-77y6-jskt-qucb Aliases: CVE-2025-59375	libexpat in Expat before 2.7.2 allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing.	There are no reported fixed by versions.
VCID-7ndj-4zn8-cqa4 Aliases: CVE-2023-52425	expat: parsing large tokens can trigger a denial of service	There are no reported fixed by versions.
VCID-9ern-6htc-p7c4 Aliases: CVE-2022-22826	Multiple vulnerabilities have been discovered in Expat, the worst of which could result in arbitrary code execution.	There are no reported fixed by versions.
VCID-dy3x-vd1y-dbbn Aliases: CVE-2022-22825	Multiple vulnerabilities have been discovered in Expat, the worst of which could result in arbitrary code execution.	There are no reported fixed by versions.
VCID-gf3f-k2be-67e2 Aliases: CVE-2022-22824	Multiple vulnerabilities have been discovered in Expat, the worst of which could result in arbitrary code execution.	There are no reported fixed by versions.
VCID-kp8z-47q5-n7es Aliases: CVE-2022-22827	Multiple vulnerabilities have been discovered in Expat, the worst of which could result in arbitrary code execution.	There are no reported fixed by versions.
VCID-naf7-p1jf-z3ds Aliases: CVE-2018-20843	Improper Restriction of XML External Entity Reference `libexpat` in Expat, XML input including XML names that contain many colons could make the XML parser consume a high amount of RAM and CPU resources while processing, leading to a possible denial-of-service attack.	There are no reported fixed by versions.
VCID-nguf-68jf-ryaz Aliases: CVE-2024-8176	libexpat: expat: Improper Restriction of XML Entity Expansion Depth in libexpat	There are no reported fixed by versions.
VCID-nmh4-zpeh-4bcr Aliases: CVE-2019-15903	Multiple vulnerabilities have been found in Expat, the worst of which could result in a Denial of Service condition.	There are no reported fixed by versions.
VCID-rjbn-1a88-87cj Aliases: CVE-2022-43680	A vulnerability has been found in Expat which could result in denial of service.	There are no reported fixed by versions.
VCID-th9f-gg4v-bbbe Aliases: CVE-2022-25314	Multiple vulnerabilities have been discovered in Expat, the worst of which could result in arbitrary code execution.	There are no reported fixed by versions.
VCID-tt7m-c9zc-1kem Aliases: CVE-2022-23990	Multiple vulnerabilities have been discovered in Expat, the worst of which could result in arbitrary code execution.	There are no reported fixed by versions.
VCID-u2yw-sybk-uug8 Aliases: CVE-2022-22822	Multiple vulnerabilities have been discovered in Expat, the worst of which could result in arbitrary code execution.	There are no reported fixed by versions.
VCID-uw5p-szmd-8qcm Aliases: CVE-2022-22823	Multiple vulnerabilities have been discovered in Expat, the worst of which could result in arbitrary code execution.	There are no reported fixed by versions.
VCID-x8gp-vvxg-13cw Aliases: CVE-2021-46143	Multiple vulnerabilities have been discovered in Expat, the worst of which could result in arbitrary code execution.	There are no reported fixed by versions.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T14:52:16.463366+00:00	RedHat Importer	Affected by	VCID-1fms-7y9v-dfc5	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-0340.json	38.0.0
2026-04-01T14:18:35.062663+00:00	RedHat Importer	Affected by	VCID-naf7-p1jf-z3ds	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20843.json	38.0.0
2026-04-01T14:16:31.808072+00:00	RedHat Importer	Affected by	VCID-nmh4-zpeh-4bcr	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15903.json	38.0.0
2026-04-01T14:00:29.338400+00:00	RedHat Importer	Affected by	VCID-kp8z-47q5-n7es	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22827.json	38.0.0
2026-04-01T14:00:29.197108+00:00	RedHat Importer	Affected by	VCID-9ern-6htc-p7c4	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22826.json	38.0.0
2026-04-01T14:00:29.048942+00:00	RedHat Importer	Affected by	VCID-dy3x-vd1y-dbbn	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22825.json	38.0.0
2026-04-01T14:00:28.893769+00:00	RedHat Importer	Affected by	VCID-gf3f-k2be-67e2	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22824.json	38.0.0
2026-04-01T14:00:28.615136+00:00	RedHat Importer	Affected by	VCID-uw5p-szmd-8qcm	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22823.json	38.0.0
2026-04-01T14:00:28.333048+00:00	RedHat Importer	Affected by	VCID-u2yw-sybk-uug8	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22822.json	38.0.0
2026-04-01T14:00:28.058304+00:00	RedHat Importer	Affected by	VCID-x8gp-vvxg-13cw	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-46143.json	38.0.0
2026-04-01T14:00:27.872890+00:00	RedHat Importer	Affected by	VCID-4c32-p11r-zud5	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-45960.json	38.0.0
2026-04-01T13:59:48.703660+00:00	RedHat Importer	Affected by	VCID-tt7m-c9zc-1kem	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-23990.json	38.0.0
2026-04-01T13:59:32.794701+00:00	RedHat Importer	Affected by	VCID-th9f-gg4v-bbbe	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-25314.json	38.0.0
2026-04-01T13:59:32.668532+00:00	RedHat Importer	Affected by	VCID-28yc-wkq6-c7hb	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-25313.json	38.0.0
2026-04-01T13:56:32.699884+00:00	RedHat Importer	Affected by	VCID-rjbn-1a88-87cj	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-43680.json	38.0.0
2026-04-01T13:50:00.403223+00:00	RedHat Importer	Affected by	VCID-7ndj-4zn8-cqa4	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-52425.json	38.0.0
2026-04-01T13:41:56.203348+00:00	RedHat Importer	Affected by	VCID-nguf-68jf-ryaz	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-8176.json	38.0.0
2026-04-01T13:36:57.587853+00:00	RedHat Importer	Affected by	VCID-77y6-jskt-qucb	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-59375.json	38.0.0