ID CVE-2018-20005
Summary An issue has been found in Mini-XML (aka mxml) 2.12. It is a use-after-free in mxmlWalkNext in mxml-search.c, as demonstrated by mxmldoc.
References
Vulnerable Configurations
  • cpe:2.3:a:msweet:mini-xml:2.12:*:*:*:*:*:*:*
    cpe:2.3:a:msweet:mini-xml:2.12:*:*:*:*:*:*:*
  • cpe:2.3:o:fedoraproject:fedora:28:*:*:*:*:*:*:*
    cpe:2.3:o:fedoraproject:fedora:28:*:*:*:*:*:*:*
  • cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*
    cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*
CVSS
Base: 4.3 (as of 03-04-2019 - 12:45)
Impact:
Exploitability:
CWE CWE-416
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:M/Au:N/C:N/I:N/A:P
refmap via4
fedora
  • FEDORA-2019-d333d01e08
  • FEDORA-2019-f99619e34d
misc
Last major update 03-04-2019 - 12:45
Published 10-12-2018 - 06:29
Last modified 03-04-2019 - 12:45
Back to Top