Уязвимость CVE-2025-24928

CVE-2025-24928

CVSS3: 7.8

ubuntu

10 месяцев назад

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a stack-based buffer overflow in xmlSnprintfElements in valid.c. To exploit this, DTD validation must occur for an untrusted document or untrusted DTD. NOTE: this is similar to CVE-2017-9047.

CVE-2025-24928

CVSS3: 7.8

redhat

10 месяцев назад

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a stack-based buffer overflow in xmlSnprintfElements in valid.c. To exploit this, DTD validation must occur for an untrusted document or untrusted DTD. NOTE: this is similar to CVE-2017-9047.

CVE-2025-24928

CVSS3: 7.8

nvd

10 месяцев назад

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a stack-based buffer overflow in xmlSnprintfElements in valid.c. To exploit this, DTD validation must occur for an untrusted document or untrusted DTD. NOTE: this is similar to CVE-2017-9047.

CVE-2025-24928

CVSS3: 7.8

debian

10 месяцев назад

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a stack-based buff ...

GHSA-fgfv-9xqc-v794

CVSS3: 7.8

github

10 месяцев назад

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a stack-based buffer overflow in xmlSnprintfElements in valid.c. To exploit this, DTD validation must occur for an untrusted document or untrusted DTD. NOTE: this is similar to CVE-2017-9047.

exploitDog

CVE-2025-24928

Описание

Связанные уязвимости