DevGuard Logo

🛡️ DevGuard
Group
/🗄️ Devguard Postgresql
Repository

Overview
Compliance
Artifacts
Code Risks
Dependency Risks
License Risks
Dependencies

CVE-2024-25062

An issue was discovered in libxml2 before 2.11.7 and 2.12.x before 2.12.5. When using the XML Reader interface with DTD validation and XInclude expansion enabled, processing crafted XML documents can lead to an xmlValidatePopElement use-after-free.

Open
MEDIUM (4.3)
  • T

    Tim Bastin detected CVE-2024-25062 with a risk of 4.25

    0.8.3
  • logo

    System updated the risk assessment to 2.12

    0.8.3

    System recalculated raw risk assessment

  • T

    Tim Bastin detected CVE-2024-25062 with a risk of 2.12

    0.9.1
  • logo

    System updated the risk assessment from 2.12 to 1.41

    0.9.1

    System recalculated raw risk assessment

  • logo

    System updated the risk assessment from 1.41 to 4.25

    0.9.1

    System recalculated raw risk assessment

  • logo

    System updated the risk assessment from 2.12 to 4.25

    0.8.3

    System recalculated raw risk assessment

  • T

    Tim Bastin detected CVE-2024-25062 with a risk of 4.25

    0.10.1
  • T

    Tim Bastin detected CVE-2024-25062 with a risk of 4.25

    0.11.1
  • logo

    System fixed CVE-2024-25062

    0.10.1
  • logo

    System fixed CVE-2024-25062

    0.9.1
  • logo

    System fixed CVE-2024-25062

    0.8.3
  • logo

    System fixed CVE-2024-25062

    0.11.1
  • logo

    System detected CVE-2024-25062 with a risk of 4.25

    0.11.1

Add a comment

Mark as False Positive
Last calculated at:

Affected component

debian/libxml2

Installed version:
2.9.14
Fixed in:
no patch available
Show in dependency graph

Management decisions across the organization

GitHubImprintTerms of UsePrivacy
Copyright © 2025 L3montree GmbH and the DevGuard Contributors. All rights reserved. Version 2ab7b793efd72421aea8c3a994ac60202bf1b3a5