5
CVE-2012-1148
- EPSS 1.44%
- Published 03.07.2012 19:55:02
- Last modified 11.04.2025 00:51:21
- Source secalert@redhat.com
- Teams watchlist Login
- Open Login
Memory leak in the poolGrow function in expat/lib/xmlparse.c in expat before 2.1.0 allows context-dependent attackers to cause a denial of service (memory consumption) via a large number of crafted XML files that cause improperly-handled reallocation failures when expanding entities.
Data is provided by the National Vulnerability Database (NVD)
Libexpat Project ≫ Libexpat Version <= 2.0.1
Libexpat Project ≫ Libexpat Version1.95.1
Libexpat Project ≫ Libexpat Version1.95.2
Libexpat Project ≫ Libexpat Version1.95.4
Libexpat Project ≫ Libexpat Version1.95.5
Libexpat Project ≫ Libexpat Version1.95.6
Libexpat Project ≫ Libexpat Version1.95.7
Libexpat Project ≫ Libexpat Version1.95.8
Libexpat Project ≫ Libexpat Version2.0.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.44% | 0.801 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:P
|