leethomason/tinyxml2

leethomason/tinyxml2

Releases20

Frequency6 months 4 weeks

Last Release about 1 year ago

Stars5.77K

TinyXML2 is a simple, small, efficient, C++ XML parser that can be easily integrated into other programs.

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-50614 ↗	Oct 27, 2024Sunday, 27 October 2024, 22:15	6.5 MEDIUM	—
TinyXML2 through 10.0.0 has a reachable assertion for UINT_MAX/16, that may lead to application exit, in tinyxml2.cpp XMLUtil::GetCharacterRef.
CVE-2024-50615 ↗	Oct 27, 2024Sunday, 27 October 2024, 22:15	6.5 MEDIUM	—
TinyXML2 through 10.0.0 has a reachable assertion for UINT_MAX/digit, that may lead to application exit, in tinyxml2.cpp XMLUtil::GetCharacterRef.
CVE-2018-11210 ↗	May 16, 2018Wednesday, 16 May 2018, 15:29	—	7.5 HIGH
TinyXML2 6.2.0 has a heap-based buffer over-read in the XMLDocument::Parse function in libtinyxml2.so. NOTE: The tinyxml2 developers have determined that the reported overflow is due to improper use of the library and not a vulnerability in tinyxml2