vulnerability
Ubuntu: USN-7753-1 (CVE-2025-9375): xmltodict vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:N/I:P/A:N) | Sep 1, 2025 | Sep 17, 2025 | Dec 17, 2025 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:P/A:N)
Published
Sep 1, 2025
Added
Sep 17, 2025
Modified
Dec 17, 2025
Description
Camilo Vera discovered that xmltodict parsed maliciously crafted XML input,
contrary to expectations. An attacker could possibly use this issue to
cause a denial of service, obtain sensitive information, or execute
arbitrary code.
Solutions
ubuntu-pro-upgrade-python-xmltodictubuntu-pro-upgrade-python3-xmltodict
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.