CVE-2026-25210EPSS p8.4%

CVE-2026-25210CVE-2026-25210

libexpat_project / libexpat

Description

In libexpat before 2.7.4, the doContent function does not properly determine the buffer size bufSize because there is no integer overflow check for tag buffer reallocation.

Scoring

CVSS 6.9 ()
VectorCVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:L
EPSS0.19% probability of exploitation · percentile 8.4% · 2026-06-18T12:00:27Z
Last modified2026-06-02

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-50219
CVE
CVE-2026-24515
CVE
CVE-2026-4224
CVE
CVE-2025-66382
CVE
CVE-2026-7210
CVE
CVE-2026-2369
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.