GHSA-4hvh-m426-wv8w

Опубликовано: 30 авг. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for XML_ParseBuffer.

Ссылки

EPSS

Процентиль: 22%

0.0007

Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2024-45490

Дефекты

CWE-190

CWE-611

Связанные уязвимости

CVE-2024-45490

CVSS3: 7.5

ubuntu

11 месяцев назад

An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for XML_ParseBuffer.

CVE-2024-45490

CVSS3: 7.5

redhat

11 месяцев назад

An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for XML_ParseBuffer.

CVE-2024-45490

CVSS3: 7.5

nvd

11 месяцев назад

An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for XML_ParseBuffer.

CVE-2024-45490

CVSS3: 7.5

msrc

10 месяцев назад

Описание отсутствует

CVE-2024-45490

CVSS3: 7.5

debian

11 месяцев назад

An issue was discovered in libexpat before 2.6.3. xmlparse.c does not ...

EPSS

Процентиль: 22%

0.0007

Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2024-45490

Дефекты

CWE-190

CWE-611