CVE-2026-50219 | libexpat up to 2.8.1 use after free

Inserito da Angelo Barbosa | Giu 4, 2026 | CVE

A vulnerability was found in libexpat up to 2.8.1. It has been rated as critical. Impacted is the function XML_GetBuffer/XML_Parse/XML_ParseBuffer/XML_ParserFree/XML_ParserReset. This manipulation causes use after free.

This vulnerability appears as CVE-2026-50219. The attack requires local access. There is no available exploit.

Upgrading the affected component is advised.

CVE-2026-50219 | libexpat up to 2.8.1 use after free

Post correlati

CVE-2025-69232 | Free5GC up to 1.2.6 SMF denial of service (ID 745)

CVE-2024-0880 | Qidianbang qdbcrm 1.1.0 Password Reset /user/edit cross-site request forgery

CVE-2026-22750 | VMware Spring Cloud Gateway up to 4.2.0 SSL Bundle Configuration cryptographic issue

CVE-2024-41171 | Siemens SINUMERIK 828D/SINUMERIK ONE permission assignment (ssa-342438)