CVE-2022-23990

Published January 26th, 2022

View on NVD ↗

CVSS v3

7.5

HIGH

CVSS v2

5

MEDIUM

Affected

1

PROJECT

Description

Expat (aka libexpat) before 2.4.4 has an integer overflow in the doProlog function.

libexpat/libexpat

:herb: Fast streaming XML parser written in C99 with >90% test coverage; moved from SourceForge to GitHub

GitHub

1.34K