QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2021-3518

Back to search

CVE-2021-3518

Published: May 18, 2021

Modified: Aug 3, 2024

PUBLISHED

Description

There's a flaw in libxml2 in versions before 2.9.11. An attacker who is able to submit a crafted file to be processed by an application linked with libxml2 could trigger a use-after-free. The greatest impact from this flaw is to confidentiality, integrity, and availability.

VendorProductVersions

n/a

libxml2

affected
libxml2 2.9.11

Weaknesses (CWE)

CWE-416

References

FEDORA-2021-e3ed1ba38b
vendor-advisory
x_refsource_FEDORA
FEDORA-2021-b950000d2b
vendor-advisory
x_refsource_FEDORA
GLSA-202107-05
vendor-advisory
x_refsource_GENTOO
20210723 APPLE-SA-2021-07-21-5 watchOS 7.6
mailing-list
x_refsource_FULLDISC
20210723 APPLE-SA-2021-07-21-6 tvOS 14.7
mailing-list
x_refsource_FULLDISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now