← back
CVE-2018-11210

CVE-2018-11210

EPSS 2.1%
TinyXML2 6.2.0 has a heap-based buffer over-read in the XMLDocument::Parse function in libtinyxml2.so. NOTE: The tinyxml2 developers have determined that the reported overflow is due to improper use of the library and not a vulnerability in tinyxml2
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/leethomason/tinyxml2/issues/675https://github.com/leethomason/tinyxml2/issues/675#issuecomment-439933437https://github.com/leethomason/tinyxml2/issues/675#issuecomment-462194018