Lucene search

K
cvelistRedhatCVELIST:CVE-2021-3516
HistoryJun 01, 2021 - 1:38 p.m.

CVE-2021-3516

2021-06-0113:38:13
CWE-416
redhat
www.cve.org

8.2 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

51.5%

There’s a flaw in libxml2’s xmllint in versions before 2.9.11. An attacker who is able to submit a crafted file to be processed by xmllint could trigger a use-after-free. The greatest impact of this flaw is to confidentiality, integrity, and availability.

CNA Affected

[
  {
    "product": "libxml2",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "libxml2 2.9.11"
      }
    ]
  }
]