Undergoing Analysis
CVE has been recently published to the CVE List and has been received by the NVD.
CVE has been recently published to the CVE List and has been received by the NVD.
Products
libexpat
- before 2.6.3
Source
cve@mitre.org
Tags
CVE-2024-45491 details
Published : Aug. 30, 2024, 3:15 a.m.
Last Modified : Aug. 30, 2024, 2:35 p.m.
Last Modified : Aug. 30, 2024, 2:35 p.m.
Description
An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse.c can have an integer overflow for nDefaultAtts on 32-bit platforms (where UINT_MAX equals SIZE_MAX).
CVSS Score
1 | 2 | 3 | 4 | 5 | 6 | 7.3 | 8 | 9 | 10 |
---|
Weakness
Weakness | Name | Description |
---|---|---|
CWE-190 | Integer Overflow or Wraparound | The product performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be larger than the original value. This can introduce other weaknesses when the calculation is used for resource management or execution control. |
CVSS Data
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
Base Score
7.3
Exploitability Score
3.9
Impact Score
3.4
Base Severity
HIGH
Vector String : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
References
URL | Source |
---|---|
https://github.com/libexpat/libexpat/issues/888 | cve@mitre.org |
https://github.com/libexpat/libexpat/pull/891 | cve@mitre.org |
This website uses the NVD API, but is not approved or certified by it.