Known Vulnerabilities for Libexpat by Libexpat Project
Listed below are 10 of the newest known vulnerabilities associated with "Libexpat" by "Libexpat Project".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-23990 | Expat (aka libexpat) before 2.4.4 has an integer overflow in the doProlog function. | 7.5 - HIGH | 2022-01-26 | 2023-11-07 |
| CVE-2022-23852 | Expat (aka libexpat) before 2.4.4 has a signed integer overflow in XML_GetBuffer, for configurations with a nonzero XML_CONTE... | 9.8 - CRITICAL | 2022-01-24 | 2022-10-29 |
| CVE-2022-22827 | storeAtts in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow. | 8.8 - HIGH | 2022-01-10 | 2022-10-06 |
| CVE-2022-22826 | nextScaffoldPart in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow. | 8.8 - HIGH | 2022-01-10 | 2022-10-06 |
| CVE-2022-22825 | lookup in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow. | 8.8 - HIGH | 2022-01-10 | 2022-10-06 |
| CVE-2022-22824 | defineAttribute in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow. | 9.8 - CRITICAL | 2022-01-10 | 2022-10-06 |
| CVE-2022-22823 | build_model in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow. | 9.8 - CRITICAL | 2022-01-10 | 2022-10-06 |
| CVE-2022-22822 | addBinding in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow. | 9.8 - CRITICAL | 2022-01-10 | 2022-10-06 |
| CVE-2019-15903 | In libexpat before 2.2.8, crafted XML input could fool the parser into changing from DTD parsing to document parsing too earl... | 7.5 - HIGH | 2019-09-04 | 2023-11-07 |
| CVE-2018-20843 | In libexpat in Expat before 2.2.7, XML input including XML names that contain a large number of colons could make the XML par... | 7.5 - HIGH | 2019-06-24 | 2023-11-07 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Libexpat Project | Libexpat | 2.2.9 | All | All | All |
| Application | Libexpat Project | Libexpat | 2.2.8 | All | All | All |
| Application | Libexpat Project | Libexpat | 2.2.7 | All | All | All |
| Application | Libexpat Project | Libexpat | 2.2.6 | All | All | All |
| Application | Libexpat Project | Libexpat | 2.2.5 | All | All | All |
| Application | Libexpat Project | Libexpat | 2.2.4 | All | All | All |
| Application | Libexpat Project | Libexpat | 2.2.3 | All | All | All |
| Application | Libexpat Project | Libexpat | 2.2.2 | All | All | All |
| Application | Libexpat Project | Libexpat | 2.2.10 | All | All | All |
| Application | Libexpat Project | Libexpat | 2.2.1 | All | All | All |
| Application | Libexpat Project | Libexpat | 2.2.0 | All | All | All |
| Application | Libexpat Project | Libexpat | 2.1.1 | All | All | All |
| Application | Libexpat Project | Libexpat | 2.1.0 | All | All | All |
| Application | Libexpat Project | Libexpat | 2.0.1 | All | All | All |
| Application | Libexpat Project | Libexpat | 2.0.0 | All | All | All |
| Application | Libexpat Project | Libexpat | 1.95.8 | All | All | All |
| Application | Libexpat Project | Libexpat | 1.95.7 | All | All | All |
| Application | Libexpat Project | Libexpat | 1.95.6 | All | All | All |
| Application | Libexpat Project | Libexpat | 1.95.5 | All | All | All |
| Application | Libexpat Project | Libexpat | 1.95.4 | All | All | All |