CVE-2018-20843
Published
CVSS v3
7.5
HIGH
CVSS v2
7.8
HIGH
Affected
1
PROJECT
Description
In libexpat in Expat before 2.2.7, XML input including XML names that contain a large number of colons could make the XML parser consume a high amount of RAM and CPU resources while processing (enough to be usable for denial-of-service attacks).
:herb: Fast streaming XML parser written in C99 with >90% test coverage; moved from SourceForge to GitHub
GitHub