CVE-2024-45492 | libexpat up to 2.6.2 xmlparse.c m_groupSize UINT_MAX integer overflow (ID 889)

Inserito da Angelo Barbosa | Ago 30, 2024 | CVE

A vulnerability classified as problematic has been found in libexpat up to 2.6.2. This affects the function m_groupSize of the file xmlparse.c. The manipulation of the argument UINT_MAX leads to integer overflow.

This vulnerability is uniquely identified as CVE-2024-45492. The attack can only be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-45492 | libexpat up to 2.6.2 xmlparse.c m_groupSize UINT_MAX integer overflow (ID 889)

Post correlati

CVE-2023-46175 | IBM Cloud Pak for Multicloud Management up to 2.3 FP8 log file

CVE-2024-3762 | Emlog Pro 2.2.10 Whisper Page /admin/twitter.php cross site scripting

CVE-2023-40680 | Yoast SEO Plugin up to 21.0 on WordPress cross site scripting

CVE-2023-41972 | Zscaler Client Connector prior 4.3.0.121 on Windows Password Type privileges management