Question 1

What is CVE-2026-56409 — CVE-2026-56409?

Accepted Answer

xmlwf in libexpat before 2.8.2 has an integer overflow for the output filename when -d outputDir is used.

Question 2

What is the authoritative source for CVE-2026-56409?

Accepted Answer

CVE-2026-56409 (CVE-2026-56409) is catalogued in NVD + CISA KEV + FIRST EPSS and curated for EU compliance use cases by SQUR.

CVE-2026-56409CVE-2026-56409

Description