CVE-2024-23807 | Apache Xerces C++ up to 3.2.2 External DTD Scanning use after free

Inserito da Angelo Barbosa | Feb 16, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in Apache Xerces C++ up to 3.2.2. This issue affects some unknown processing of the component External DTD Scanning. The manipulation leads to use after free.

The identification of this vulnerability is CVE-2024-23807. The attack needs to be approached within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-23807 | Apache Xerces C++ up to 3.2.2 External DTD Scanning use after free

Post correlati

CVE-2024-34959 | DedeCMS 5.7.113 sys_data_replace.php cross site scripting

CVE-2023-49936 | SchedMD Slurm up to 22.05.10/23.02.6/23.11.0 null pointer dereference

CVE-2024-1069 | Contact Form Entries Plugin up to 1.3.2 on WordPress unrestricted upload

CVE-2024-26978 | Linux Kernel up to 6.8.2 max310x new_device null pointer dereference