CVE-2025-66382

Опубликовано: 28 нояб. 2025

Источник: nvd

CVSS3: 2.9

CVSS3: 5.5

EPSS Низкий

Описание

In libexpat through 2.7.3, a crafted file with an approximate size of 2 MiB can lead to dozens of seconds of processing time.

Ссылки

https://github.com/libexpat/libexpat/issues/1076
Issue Tracking
http://www.openwall.com/lists/oss-security/2025/12/02/1
Mailing List

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:libexpat_project:libexpat:*:*:*:*:*:*:*:*

Версия до 2.7.3 (включая)

EPSS

Процентиль: 3%

0.00016

Низкий

2.9 Low

CVSS3

5.5 Medium

CVSS3

Дефекты

CWE-407

Связанные уязвимости

CVE-2025-66382

CVSS3: 2.9

ubuntu

2 месяца назад

In libexpat through 2.7.3, a crafted file with an approximate size of 2 MiB can lead to dozens of seconds of processing time.

CVE-2025-66382

msrc

2 месяца назад

In libexpat through 2.7.3, a crafted file with an approximate size of 2 MiB can lead to dozens of seconds of processing time.

CVE-2025-66382

CVSS3: 2.9

debian

2 месяца назад

In libexpat through 2.7.3, a crafted file with an approximate size of ...

GHSA-93q9-crcw-vwgq

CVSS3: 2.9

github

2 месяца назад

In libexpat through 2.7.3, a crafted file with an approximate size of 2 MiB can lead to dozens of seconds of processing time.

EPSS

Процентиль: 3%

0.00016

Низкий

2.9 Low

CVSS3

5.5 Medium

CVSS3

Дефекты

CWE-407