Lucene search

K
cvelistMitreCVELIST:CVE-2015-7942
HistoryNov 18, 2015 - 4:00 p.m.

CVE-2015-7942

2015-11-1816:00:00
mitre
www.cve.org
3

AI Score

7.1

Confidence

Low

EPSS

0.006

Percentile

78.9%

The xmlParseConditionalSections function in parser.c in libxml2 does not properly skip intermediary entities when it stops parsing invalid input, which allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via crafted XML data, a different vulnerability than CVE-2015-7941.

References