Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2017-16931

Disclosure Date: November 23, 2017 (last updated October 05, 2023)
parser.c in libxml2 before 2.9.5 mishandles parameter-entity references because the NEXTL macro calls the xmlParserHandlePEReference function in the case of a '%' character in a DTD name.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0