Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:25270
HistoryMay 10, 2020 - 11:23 p.m.

Denial Of Service (DoS)

2020-05-1023:23:13
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
15

EPSS

0.005

Percentile

77.6%

libxml2 is vulnerable to denial of service (DoS). The vulnerability exists when used in recover mode, allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted XML document. NOTE: The maintainer states “I would disagree of a CVE with the Recover parsing option which should only be used for manual recovery at least for XML parser.”