Known Vulnerabilities for Libxslt by Xmlsoft
Listed below are 10 of the newest known vulnerabilities associated with "Libxslt" by "Xmlsoft".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-11731 json | A flaw was found in the exsltFuncResultComp() function of libxslt, which handles EXSLT |
Not Provided | 2025-10-14 | 2026-04-13 |
| CVE-2025-7425 json | A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory manage... | Not Provided | 2025-07-10 | 2026-04-14 |
| CVE-2025-7424 json | A flaw was found in the libxslt library. The same memory field, psvi, is used for both stylesheet and input data, which can l... | Not Provided | 2025-07-10 | 2026-04-14 |
| CVE-2022-29824 json | In libxml2 before 2.9.14, several buffer handling functions in buf.c (xmlBuf*) and tree.c (xmlBuffer*) don't check for intege... | 6.5 - MEDIUM | 2022-05-03 | 2023-11-07 |
| CVE-2021-30560 json | Use after free in Blink XSLT in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap co... | 8.8 - HIGH | 2021-08-03 | 2024-03-27 |
| CVE-2019-18197 json | In xsltCopyText in transform.c in libxslt 1.1.33, a pointer variable isn't reset under certain circumstances. If the relevant... | 7.5 - HIGH | 2019-10-18 | 2020-08-24 |
| CVE-2019-13118 json | In numbers.c in libxslt 1.1.33, a type holding grouping characters of an xsl:number instruction was too narrow and an invalid... | 5.3 - MEDIUM | 2019-07-01 | 2023-11-07 |
| CVE-2019-13117 json | In numbers.c in libxslt 1.1.33, an xsl:number with certain format strings could lead to a uninitialized read in xsltNumberFor... | 5.3 - MEDIUM | 2019-07-01 | 2023-11-07 |
| CVE-2019-11068 json | libxslt through 1.1.33 allows bypass of a protection mechanism because callers of xsltCheckRead and xsltCheckWrite permit acc... | 9.8 - CRITICAL | 2019-04-10 | 2023-11-07 |
| CVE-2019-5815 json | Type confusion in xsltNumberFormatGetMultipleLevel prior to libxslt 1.1.33 could allow attackers to potentially exploit heap ... | 7.5 - HIGH | 2019-12-11 | 2023-11-07 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Xmlsoft | Libxslt | 1.1.9 | |||
| Application | Xmlsoft | Libxslt | 1.1.8 | |||
| Application | Xmlsoft | Libxslt | 1.1.7 | |||
| Application | Xmlsoft | Libxslt | 1.1.6 | |||
| Application | Xmlsoft | Libxslt | 1.1.5 | |||
| Application | Xmlsoft | Libxslt | 1.1.4 | |||
| Application | Xmlsoft | Libxslt | 1.1.33 | |||
| Application | Xmlsoft | Libxslt | 1.1.33 | |||
| Application | Xmlsoft | Libxslt | 1.1.33 | |||
| Application | Xmlsoft | Libxslt | 1.1.32 | |||
| Application | Xmlsoft | Libxslt | 1.1.32 | |||
| Application | Xmlsoft | Libxslt | 1.1.32 | |||
| Application | Xmlsoft | Libxslt | 1.1.31 | |||
| Application | Xmlsoft | Libxslt | 1.1.31 | |||
| Application | Xmlsoft | Libxslt | 1.1.31 | |||
| Application | Xmlsoft | Libxslt | 1.1.30 | |||
| Application | Xmlsoft | Libxslt | 1.1.30 | |||
| Application | Xmlsoft | Libxslt | 1.1.30 | |||
| Application | Xmlsoft | Libxslt | 1.1.3 | |||
| Application | Xmlsoft | Libxslt | 1.1.29 |