CVE-2026-11979 | Xmlsoft libxml2 up to 2.15.3 Xmlcatalog Utility usershell stack-based overflow

Inserito da Angelo Barbosa | Giu 29, 2026 | CVE

A vulnerability labeled as critical has been found in Xmlsoft libxml2 up to 2.15.3. The affected element is the function usershell of the component Xmlcatalog Utility. The manipulation results in stack-based buffer overflow.

This vulnerability is reported as CVE-2026-11979. The attack can be launched remotely. No exploit exists.

The presence of this vulnerability remains uncertain at this time.

The affected component should be upgraded.

CVE-2026-11979 | Xmlsoft libxml2 up to 2.15.3 Xmlcatalog Utility usershell stack-based overflow

Post correlati

CVE-2024-39473 | Linux Kernel up to 6.6.33/6.9.4 ipc4-topology null pointer dereference (e3ae00ee238b/9e16f17a2a0e/ffa077b2f6ad)

CVE-2025-40986 | PideTuCita 6.0.52 URL cookies/indes.php cross site scripting

CVE-2023-1932 | hibernate-validator 6.1.2 cross site scripting

CVE-2026-9972 | Google Chrome up to 148.0.7778.179 on macOS Gamepad uninitialized variable (ID 508463)