Every CVE whose affected-product data names Att Xmill, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (13)
CVE-2022-26507 — CVSS 9.8 (critical): A heap-based buffer overflow exists in XML Decompression DecodeTreeBlock in AT&T Labs Xmill 0.7. A crafted input file can lead to remote…
CVE-2021-21811 — CVSS 9.8 (critical): A memory corruption vulnerability exists in the XML-parsing CreateLabelOrAttrib functionality of AT&T Labs’ Xmill 0.7. A specially…
CVE-2021-21828 — CVSS 9.8 (critical): A heap-based buffer overflow vulnerability exists in the XML Decompression DecodeTreeBlock functionality of AT&T Labs Xmill 0.7. In the…
CVE-2021-21829 — CVSS 9.8 (critical): A heap-based buffer overflow vulnerability exists in the XML Decompression EnumerationUncompressor::UncompressItem functionality of AT&T…
CVE-2021-21830 — CVSS 9.8 (critical): A heap-based buffer overflow vulnerability exists in the XML Decompression LabelDict::Load functionality of AT&T Labs’ Xmill 0.7. A…
CVE-2021-21810 — CVSS 9.8 (critical): A memory corruption vulnerability exists in the XML-parsing ParseAttribs functionality of AT&T Labs’ Xmill 0.7. A specially crafted XML…
CVE-2021-21825 — CVSS 9.8 (critical): A heap-based buffer overflow vulnerability exists in the XML Decompression PlainTextUncompressor::UncompressItem functionality of AT&T…
CVE-2021-21826 — CVSS 9.8 (critical): A heap-based buffer overflow vulnerability exists in the XML Decompression DecodeTreeBlock functionality of AT&T Labs Xmill 0.7. Within…
CVE-2021-21827 — CVSS 9.8 (critical): A heap-based buffer overflow vulnerability exists in the XML Decompression DecodeTreeBlock functionality of AT&T Labs Xmill 0.7. Within…
CVE-2021-21812 — CVSS 7.8 (high): A stack-based buffer overflow vulnerability exists in the command-line-parsing HandleFileArg functionality of AT&T Labs’ Xmill 0.7…
CVE-2021-21813 — CVSS 7.8 (high): Within the function HandleFileArg the argument filepattern is under control of the user who passes it in from the command line. filepattern…
CVE-2021-21814 — CVSS 7.8 (high): Within the function HandleFileArg the argument filepattern is under control of the user who passes it in from the command line. filepattern…
CVE-2021-21815 — CVSS 7.8 (high): A stack-based buffer overflow vulnerability exists in the command-line-parsing HandleFileArg functionality of AT&T Labs' Xmill 0.7. Within…