Security Advisory

CVE-2022-25235

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-02-16 00:40:20

Last updated 2025-05-05 16:23:52

Assigner mitre

State PUBLISHED

Description

xmltok_impl.c in Expat (aka libexpat) before 2.4.5 lacks certain validation of encoding, such as checks for whether a UTF-8 character is valid in a certain context.

← Browse all CVEs View on cve.org ↗