CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 6 days ago•6 views

EUVD-2026-38186

xmlwf in libexpat before 2.8.2 has an integer overflow for the output filename when -d outputDir is used...

6.5CVSS5.9AI score0.00098EPSS

Cvelist•added 6 days ago•26 views

CVE-2026-56408

libexpat before 2.8.2 has an integer overflow in copyString...

EUVD•added 6 days ago•7 views

EUVD-2026-38185

libexpat before 2.8.2 has an integer overflow in copyString...

CVE•added 6 days ago•14 views

CVE-2026-56408

Vulnerability: libexpat prior to 2.8.2 has an integer overflow in copyString. Root cause: integer overflow in the copyString function. Impact: confidentiality and integrity may be affected with a CVSSv3.1 base score 6.9 (Local attack, high complexity, no user interaction). Remediation: upgrade to...

EUVD•added 6 days ago•6 views

EUVD-2026-38184

libexpat before 2.8.2 has an integer overflow in doProlog that is related to storeEntityValue and entity textLen...

CVE•added 6 days ago•15 views

CVE-2026-56407

CVE-2026-56407 affects libexpat prior to 2.8.2, with an integer overflow in doProlog related to storeEntityValue and entity textLen. The NVD entries confirm the issue and describe the vulnerability as an integer overflow in doProlog. The CVE entry indicates a medium base score (CVSS 3.1: AV=L, AC...

Debian CVE•added 6 days ago•4 views

CVE-2026-56407

libexpat before 2.8.2 has an integer overflow in doProlog that is related to storeEntityValue and entity textLen...

Cvelist•added 6 days ago•29 views

Exploits0

CVE-2026-56406

libexpat before 2.8.2 has an integer overflow in XMLParseBuffer because it lacked a check that was present in XMLParse...

EUVD•added 6 days ago•7 views

EUVD-2026-38183

libexpat before 2.8.2 has an integer overflow in XMLParseBuffer because it lacked a check that was present in XMLParse...

CVE•added 6 days ago•18 views

CVE-2026-56406

CVE-2026-56406 affects libexpat up to version 2.8.1; the root cause is an integer overflow in XML_ParseBuffer due to a missing check that XML_Parse had. The CVSSv3.1 vector indicates Local attack, high complexity, no privileges required, no user interaction, with Confidentiality and Integrity imp...

Debian CVE•added 6 days ago•4 views

CVE-2026-56406

libexpat before 2.8.2 has an integer overflow in XMLParseBuffer because it lacked a check that was present in XMLParse...

Cvelist•added 6 days ago•26 views

Exploits0

CVE-2026-56405

libexpat before 2.8.2 has an integer overflow in getAttributeId...

ATTACKERKB•added 6 days ago•6 views

CVE-2026-56405

libexpat before 2.8.2 has an integer overflow in getAttributeId...

EUVD•added 6 days ago•6 views

Exploits0References2

EUVD-2026-38182

libexpat before 2.8.2 has an integer overflow in getAttributeId...

CVE•added 6 days ago•14 views

CVE-2026-56405

The connected sources specify a vulnerability in libexpat up to version 2.8.2, caused by an integer overflow in getAttributeId. The CVE entry lists this as CVE-2026-56405 with a CVSS v3.1 base score of 6.9 (Medium) and a Local attack vector, requiring high attack complexity, no privileges, and no...

Debian CVE•added 6 days ago•4 views

CVE-2026-56405

libexpat before 2.8.2 has an integer overflow in getAttributeId...

Cvelist•added 6 days ago•31 views

Exploits0

CVE-2026-56404

libexpat before 2.8.2 has an integer overflow in addBinding...