CVE-2025-24928: libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a stack-based buffer overflow in xmlSnprintfElements in valid.c. To exploit this, DTD...

7.8 CVSS

Description

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a stack-based buffer overflow in xmlSnprintfElements in valid.c. To exploit this, DTD validation must occur for an untrusted document or untrusted DTD. NOTE: this is similar to CVE-2017-9047.

Classification

CVE ID: CVE-2025-24928

CVSS Base Severity: HIGH

CVSS Base Score: 7.8

CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

Affected Products

Vendor: xmlsoft

Product: libxml2

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.01% (probability of being exploited)

EPSS Percentile: 0.34% (scored less or equal to compared to others)

EPSS Date: 2025-03-19 (when was this score calculated)

References

https://gitlab.gnome.org/GNOME/libxml2/-/issues/847
https://issues.oss-fuzz.com/issues/392687022

Timeline

2025-02-18 23:15:30 UTC
Github Advisory Database (RubyGems)

[nokogiri] Nokogiri updates packaged libxml2 to 2.13.6 to resolve CVE-2025-24928 and CVE-2024-56171
2025-02-19 00:31:38 UTC
CVE

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a stack-based buffer overflow in xmlSnprintfElements in valid.c. To exploit this, DTD...
2025-02-27 11:00:28 UTC
Tenable Plugins

CBL Mariner 2.0 Security Update: libxml2 (CVE-2025-24928)