CVE-2022-23852

Опубликовано: 28 янв. 2022

Источник: msrc

CVSS3: 9.8

EPSS Низкий

Описание

Expat (aka libexpat) before 2.4.4 has a signed integer overflow in XML_GetBuffer for configurations with a nonzero XML_CONTEXT_BYTES.

EPSS

Процентиль: 82%

0.01707

Низкий

9.8 Critical

CVSS3

CVE-2022-23852

CVSS3: 9.8

ubuntu

почти 4 года назад

Expat (aka libexpat) before 2.4.4 has a signed integer overflow in XML_GetBuffer, for configurations with a nonzero XML_CONTEXT_BYTES.

CVE-2022-23852

CVSS3: 9.8

redhat

почти 4 года назад

Expat (aka libexpat) before 2.4.4 has a signed integer overflow in XML_GetBuffer, for configurations with a nonzero XML_CONTEXT_BYTES.

CVE-2022-23852

CVSS3: 9.8

nvd

почти 4 года назад

Expat (aka libexpat) before 2.4.4 has a signed integer overflow in XML_GetBuffer, for configurations with a nonzero XML_CONTEXT_BYTES.

CVE-2022-23852

CVSS3: 9.8

debian

почти 4 года назад

Expat (aka libexpat) before 2.4.4 has a signed integer overflow in XML ...

GHSA-h83g-c7g2-6r9h

CVSS3: 9.8

github

почти 4 года назад

Expat (aka libexpat) before 2.4.4 has a signed integer overflow in XML_GetBuffer, for configurations with a nonzero XML_CONTEXT_BYTES.

EPSS

Процентиль: 82%

0.01707

Низкий

9.8 Critical

CVSS3