CVE-2024-45490
HIGH WAF: High
CVSS 7.5
Published: 2024-08-30
CWE-611
An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for XML_ParseBuffer.
WAF Coverage Analysis
XML External Entity (XXE)
High WAF Coverage
OWASP: A05:2021 Security Misconfiguration
941xxx - XSS / XXE
Affected Software
| Vendor | Product | Version |
|---|---|---|
| libexpat_project | libexpat | up to 2.6.3 |