CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Apache: >> Xml Security For C++ >> 1.7.1 Security Vulnerabilities

CVE-2013-2210

Heap-based buffer overflow in the XML Signature Reference functionality in Apache Santuario XML Security for C++ (aka xml-security-c) before 1.7.2 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via malformed XPointer expressions. NOTE: this is due to an incorrect fix for CVE-2013-2154.

CVSS Score

7.5

EPSS Score

0.016

Published

2013-08-20

Page 1

Vulnerabilities

Vulnerable Software

Apache: >> Xml Security For C++ >> 1.7.1 Security Vulnerabilities

Products

Pricing

Contact Us