Libexpat CVE Vulnerabilities
By Libexpat Project — 3 known vulnerabilities
Critical
0
High
0
Medium
1
Low
2
None
0
All Libexpat CVEs
CVE-2026-25210
6.9
medium
In libexpat before 2.7.4, the doContent function does not properly determine the buffer size bufSize because there is no integer overflow check for tag buffer reallocation.
Jan 30, 2026
CVE-2026-24515
2.9
low
In libexpat before 2.7.4, XML_ExternalEntityParserCreate does not copy unknown encoding handler user data.
Jan 23, 2026
CVE-2025-66382
2.9
low
In libexpat through 2.7.3, a crafted file with an approximate size of 2 MiB can lead to dozens of seconds of processing time.
Nov 28, 2025