Lucene search

K
cvelistMitreCVELIST:CVE-2015-8317
HistoryDec 15, 2015 - 9:00 p.m.

CVE-2015-8317

2015-12-1521:00:00
mitre
www.cve.org
4

AI Score

8.5

Confidence

High

EPSS

0.01

Percentile

83.3%

The xmlParseXMLDecl function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to obtain sensitive information via an (1) unterminated encoding value or (2) incomplete XML declaration in XML data, which triggers an out-of-bounds heap read.

References