Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5
CVE-2023-34194
- EPSS 0.63%
- Published 13.12.2023 14:15:43
- Last modified 21.11.2024 08:06:44
StringEqual in TiXmlDeclaration::Parse in tinyxmlparser.cpp in TinyXML through 2.6.2 has a reachable assertion (and application exit) via a crafted XML document with a '\0' located after whitespace.
7.5
CVE-2021-42260
- EPSS 0.36%
- Published 11.10.2021 20:15:07
- Last modified 21.11.2024 06:27:28
TinyXML through 2.6.2 has an infinite loop in TiXmlParsingData::Stamp in tinyxmlparser.cpp via the TIXML_UTF_LEAD_0 case. It can be triggered by a crafted XML message and leads to a denial of service.
1