Lucene search

K
cvelistMitreCVELIST:CVE-2021-27918
HistoryMar 10, 2021 - 11:54 p.m.

CVE-2021-27918

2021-03-1023:54:43
mitre
www.cve.org

7.8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

40.1%

encoding/xml in Go before 1.15.9 and 1.16.x before 1.16.1 has an infinite loop if a custom TokenReader (for xml.NewTokenDecoder) returns EOF in the middle of an element. This can occur in the Decode, DecodeElement, or Skip method.