cbcvebase.
CVE-2025-49796
published 2025-06-16

CVE-2025-49796: A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger a memory corruption issue. This flaw allows an…

PriorityP351critical9.1CVSS 3.1
AVNACLPRNUINSUCNIHAH
EPSS
1.44%
69.8th percentile
A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger a memory corruption issue. This flaw allows an attacker to craft a malicious XML input file that can lead libxml to crash, resulting in a denial of service or other possible undefined behavior due to sensitive data being corrupted in memory.

Affected

15 ranges
VendorProductVersion rangeFixed in
debianlibxml2< libxml2 2.9.14+dfsg-1.3~deb12u3 (bookworm)libxml2 2.9.14+dfsg-1.3~deb12u3 (bookworm)
msrcazl3_libxml2_2.11.5-6_on_azure_linux_3.0
msrccbl2_libxml2_2.10.4-8_on_cbl_mariner_2.0
msrccm2_libxml2_2.10.4-8_on_cbl_mariner_2.0
nokogirinokogiri>= 0 < 1.18.91.18.9
xmlsoftlibxml2>= 0 < 2.9.10+dfsg-6.7+deb11u82.9.10+dfsg-6.7+deb11u8
xmlsoftlibxml2>= 0 < 2.9.14+dfsg-1.3~deb12u32.9.14+dfsg-1.3~deb12u3
xmlsoftlibxml2>= 0 < 2.12.7+dfsg+really2.9.14-22.12.7+dfsg+really2.9.14-2
xmlsoftlibxml2>= 0 < 2.12.7+dfsg+really2.9.14-22.12.7+dfsg+really2.9.14-2
xmlsoftlibxml2>= 0 < 2.9.13+dfsg-1ubuntu0.82.9.13+dfsg-1ubuntu0.8
xmlsoftlibxml2>= 0 < 2.9.14+dfsg-1.3ubuntu3.42.9.14+dfsg-1.3ubuntu3.4
xmlsoftlibxml2>= 0 < 2.9.1+dfsg1-3ubuntu4.13+esm82.9.1+dfsg1-3ubuntu4.13+esm8
xmlsoftlibxml2>= 0 < 2.9.3+dfsg1-1ubuntu0.7+esm92.9.3+dfsg1-1ubuntu0.7+esm9
xmlsoftlibxml2>= 0 < 2.9.4+dfsg1-6.1ubuntu1.9+esm42.9.4+dfsg1-6.1ubuntu1.9+esm4
xmlsoftlibxml2>= 0 < 2.9.10+dfsg-5ubuntu0.20.04.10+esm12.9.10+dfsg-5ubuntu0.20.04.10+esm1

CVSS provenance

nvdv3.19.1CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
ghsa9.1CRITICAL
osv9.1CRITICAL
vendor_debian9.1CRITICAL
vendor_msrc9.1CRITICAL
vendor_oracle9.1CRITICAL
vendor_redhat9.1CRITICAL
vendor_ubuntu9.1CRITICAL
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.