7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.005 Low
EPSS
Percentile
75.8%
A vulnerability in the libxml2 XML document parsing library is related to an integer overflow in parse.c during
content processing when the XML_PARSE_HUGE parameter is set. Exploitation of the vulnerability could allow
an attacker acting remotely to pass specially crafted data to the application, cause an
integer overflow and execute arbitrary code on the target system
A vulnerability in the libxml2 XML document parsing library is related to the fact that the contents of an object can be
extracted from a dictionary, and clears it when a cyclic reference is detected, setting its first byte
to zero. Exploitation of the vulnerability could allow an attacker acting remotely to cause
memory corruption and cause a denial of service