CVE-2022-25235
CVSS v3.1
9.8 (Critical)
CVSS v2.0
7.5 (High)
EPSS
1.04 % (84th)
Affected Products
6
Advisories
43
xmltok_impl.c in Expat (aka libexpat) before 2.4.5 lacks certain validation of encoding, such as checks for whether a UTF-8 character is valid in a certain context.
Weaknesses
- CWE-116
- Improper Encoding or Escaping of Output
- CVE Status
- PUBLISHED
- CNA
- MITRE
- Published Date
-
2022-02-16 01:15:07
(2 years ago) - Updated Date
-
2023-11-07 03:44:44
(10 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Configuration #3
|
Configuration #4
|
Configuration #5
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...