- Description
- An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for XML_ParseBuffer.
- Source
- cve@mitre.org
- NVD status
- Modified
- Products
- libexpat
CVSS 3.1
- Type
- Primary
- Base score
- 7.5
- Impact score
- 3.6
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
- Severity
- HIGH
- Hype score
- Not currently trending
๐จ Critical vuln alert: CVE-2024-45490 (MOZJS52-SUSE-2025-4512-1). Memory corruption in Mozilla's JavaScript engine (mozjs52) on #SUSE Linux. Could lead to arbitrary code execution. Read more: ๐ https://t.co/wprJMacnPZ #Security https://t.co/urBERQ6BfN
@Cezar_H_Linux
24 Dec 2025
35 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
๐จ Critical vuln alert: CVE-2024-45490 (MOZJS52-SUSE-2025-4512-1). Memory corruption in Mozilla's JavaScript engine (mozjs52) on #SUSE Linux. Could lead to arbitrary code execution. Patch now! Read more: ๐ https://t.co/AXsbyUumtS #Security https://t.co/6SeNFGp44h
@Cezar_H_Linux
24 Dec 2025
37 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
๐จ Lambda Watchdog detected a new HIGH severity CVE ๐จ CVE-2024-45490 was detected in the latest AWS Lambda image scan affecting the expat package in 10 images. Check the full report ๐ https://t.co/6EUGaPyRZk #AWS #Lambda #CVE #CloudSecurity #Serverless
@LambdaWatchdog
21 Dec 2024
42 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:libexpat_project:libexpat:*:*:*:*:*:*:*:*",
"matchCriteriaId": "FDDF6E7A-AF1C-4370-B0B0-29A35C454FFB",
"versionEndExcluding": "2.6.3",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
]