CNVD-2022-18356 — Vulnetix

CNVD-2022-18356 PUBLISHED

Expat是一款使用C语言编写的快速流式XML解析器。 Expat 2.4.5之前存在安全漏洞，该漏洞源于xmltok_impl.c缺少某些编码验证。目前没有详细漏洞细节提供。

Affected Products

Vendor	Product	Versions
	Expat Expat <2.4.5

Exploit Intelligence

Satheesh575555/external_expat_AOSP10_r33_CVE-2022-25235 (github-poc)

Timeline

Feb 21, 2022 CVE ID Reserved
Mar 11, 2022 CVE Published

References

https://github.com/libexpat/libexpa url
CVE-2022-25235 url

Open in Interactive Console →

$ Console Community · 100/wk Open console ›