Show filters
6 Total Results
Displaying 1-6 of 6
Sort by:
Attacker Value
Unknown
CVE-2022-30045
Disclosure Date: May 17, 2022 (last updated February 23, 2025)
An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezxml_decode() performs incorrect memory handling while parsing crafted XML files, leading to a heap out-of-bounds read.
0
Attacker Value
Unknown
CVE-2021-31598
Disclosure Date: April 24, 2021 (last updated February 22, 2025)
An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezxml_decode() performs incorrect memory handling while parsing crafted XML files, leading to a heap-based buffer overflow.
0
Attacker Value
Unknown
CVE-2021-31347
Disclosure Date: April 16, 2021 (last updated February 22, 2025)
An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezxml_parse_str() performs incorrect memory handling while parsing crafted XML files (writing outside a memory region created by mmap).
0
Attacker Value
Unknown
CVE-2021-31348
Disclosure Date: April 16, 2021 (last updated February 22, 2025)
An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezxml_parse_str() performs incorrect memory handling while parsing crafted XML files (out-of-bounds read after a certain strcspn failure).
0
Attacker Value
Unknown
CVE-2021-31229
Disclosure Date: April 15, 2021 (last updated February 22, 2025)
An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezxml_internal_dtd() performs incorrect memory handling while parsing crafted XML files, which leads to an out-of-bounds write of a one byte constant.
0
Attacker Value
Unknown
CVE-2021-30485
Disclosure Date: April 11, 2021 (last updated February 22, 2025)
An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezxml_internal_dtd(), while parsing a crafted XML file, performs incorrect memory handling, leading to a NULL pointer dereference while running strcmp() on a NULL pointer.
0
