CVE-2022-25314

CWE-190 — Integer Overflow11 documents9 sources

Severity

7.5HIGH

EPSS

0.4%

top 41.49%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Platform External/expat Libexpat Project Libexpat Siemens Sinema Remote Connect Server +4 more

Timeline

PublishedFeb 18

Latest updateSep 1

Description

In Expat (aka libexpat) before 2.4.5, there is an integer overflow in copyString.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages6 packages

▶NVDlibexpat_project/libexpat< 2.4.5

▶Androidplatform/external/expat10:0 — 10:2022-09-01+3

▶Debianexpat< 2.2.10-2+deb11u2+3

▶NVDsiemens/sinema_remote_connect_server< 3.1

▶NVDoracle/http_server12.2.1.3.0, 12.2.1.4.0+1

Also affects: Debian Linux 10.0, 11.0, Fedora 34, 35

Patches

Patch: www.oracle.com ↗Patch: www.oracle.com ↗

🔴Vulnerability Details

OSV

CVE-2022-25314: (from https://nvd↗2022-09-01

▶

OSV

expat vulnerabilities and regression↗2022-03-10

▶

GHSA

GHSA-3qc2-95g6-46cj: In Expat (aka libexpat) before 2↗2022-02-19

▶

OSV

CVE-2022-25314: In Expat (aka libexpat) before 2↗2022-02-18

▶

CVEList

CVE-2022-25314: In Expat (aka libexpat) before 2↗2022-02-18

▶

📋Vendor Advisories

Android

CVE-2022-25314: Android Security Bulletin 2022-09-01 CVE: CVE-2022-25314 Severity: HIGH Type: EoP Affected AOSP versions: 10, 11, 12, 12L References: A-221384482↗2022-09-01

▶

Ubuntu

Expat vulnerabilities and regression↗2022-03-10

▶

Red Hat

expat: Integer overflow in copyString()↗2022-02-19

▶

Microsoft

In Expat (aka libexpat) before 2.4.5 there is an integer overflow in copyString.↗2022-02-08

▶

Debian

CVE-2022-25314: expat - In Expat (aka libexpat) before 2.4.5, there is an integer overflow in copyString...↗2022

▶