7 matches found
EUVD-2026-14434
A flaw was found in the github.com/antchfx/xpath component. A remote attacker could exploit this vulnerability by submitting crafted Boolean XPath expressions that evaluate to true. This can cause an infinite loop in the logicalQuery.Select function, leading to 100% CPU utilization and a Denial o...
CVE-2026-32287
CVE-2026-32287 affects the Go library github.com/antchfx/xpath. Boolean XPath expressions that evaluate to true can trigger an infinite loop in logicalQuery.Select, causing 100% CPU usage. This can be triggered by top-level selectors such as 1=1 or true(). The provided connected records confirm t...
SUSE CVE-2026-4645
Duplicate of CVE-2026-32287...
UBUNTU-CVE-2026-4645
A flaw was found in the github.com/antchfx/xpath component. A remote attacker could exploit this vulnerability by submitting crafted Boolean XPath expressions that evaluate to true. This can cause an infinite loop in the logicalQuery.Select function, leading to 100% CPU utilization and a Denial o...
CVE-2026-4645
Removed by vendor...
CVE-2026-4645
...
CVE-2026-4645
Duplicate of CVE-2026-32287...