Vulnerabilities > Libexpat Project > Libexpat > 2.4.9
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-02-04 | CVE-2023-52425 | Resource Exhaustion vulnerability in Libexpat Project Libexpat libexpat through 2.5.0 allows a denial of service (resource consumption) because many full reparsings are required in the case of a large token for which multiple buffer fills are needed. | 7.5 |
2024-02-04 | CVE-2023-52426 | XML Entity Expansion vulnerability in Libexpat Project Libexpat libexpat through 2.5.0 allows recursive XML Entity Expansion if XML_DTD is undefined at compile time. | 5.5 |