GHSA-3gf2-723m-w3fv

Опубликовано: 19 фев. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

In Expat (aka libexpat) before 2.4.5, an attacker can trigger stack exhaustion in build_model via a large nesting depth in the DTD element.

Ссылки

EPSS

Процентиль: 27%

0.00091

Низкий

6.5 Medium

CVSS3

CVE ID

CVE-2022-25313

Дефекты

CWE-400

CWE-674

Связанные уязвимости

CVE-2022-25313

CVSS3: 6.5

ubuntu

больше 3 лет назад

In Expat (aka libexpat) before 2.4.5, an attacker can trigger stack exhaustion in build_model via a large nesting depth in the DTD element.

CVE-2022-25313

CVSS3: 6.5

redhat

больше 3 лет назад

In Expat (aka libexpat) before 2.4.5, an attacker can trigger stack exhaustion in build_model via a large nesting depth in the DTD element.

CVE-2022-25313

CVSS3: 6.5

nvd

больше 3 лет назад

In Expat (aka libexpat) before 2.4.5, an attacker can trigger stack exhaustion in build_model via a large nesting depth in the DTD element.

CVE-2022-25313

CVSS3: 6.5

msrc

больше 3 лет назад

Описание отсутствует

CVE-2022-25313

CVSS3: 6.5

debian

больше 3 лет назад

In Expat (aka libexpat) before 2.4.5, an attacker can trigger stack ex ...

EPSS

Процентиль: 27%

0.00091

Низкий

6.5 Medium

CVSS3

CVE ID

CVE-2022-25313

Дефекты

CWE-400

CWE-674