CVE-2025-59375
published 2025-09-15CVE-2025-59375: libexpat in Expat before 2.7.2 allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing.
high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
libexpat in Expat before 2.7.2 allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing.
Affected
26 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios_18.7.5_and_ipados | — | — |
| apple | ios_26.3_and_ipados | — | — |
| apple | macos_sequoia | — | — |
| apple | macos_sonoma | — | — |
| apple | macos_tahoe | — | — |
| apple | tvos | — | — |
| apple | visionos | — | — |
| apple | watchos | — | — |
| debian | expat | < expat 2.7.2-1 (forky) | expat 2.7.2-1 (forky) |
| debian | firefox | < expat 2.7.2-1 (forky) | expat 2.7.2-1 (forky) |
| debian | firefox-esr | < expat 2.7.2-1 (forky) | expat 2.7.2-1 (forky) |
| debian | thunderbird | < expat 2.7.2-1 (forky) | expat 2.7.2-1 (forky) |
| libexpat_project | libexpat | < 2.7.2 | 2.7.2 |
| mozilla | firefox | — | — |
| mozilla | thunderbird | >= 0 < 1:140.9.0esr-1~deb11u1 | 1:140.9.0esr-1~deb11u1 |
| mozilla | thunderbird | >= 0 < 1:140.9.0esr-1~deb12u1 | 1:140.9.0esr-1~deb12u1 |
| mozilla | thunderbird | >= 0 < 1:140.9.0esr-1~deb13u1 | 1:140.9.0esr-1~deb13u1 |
| mozilla | thunderbird | >= 0 < 1:140.9.0esr-1 | 1:140.9.0esr-1 |
| msrc | azl3_cmake_3.30.3-9_on_azure_linux_3.0 | — | — |
| msrc | azl3_expat_2.6.4-1_on_azure_linux_3.0 | — | — |
| msrc | azl3_expat_2.6.4-2_on_azure_linux_3.0 | — | — |
| msrc | azl3_python3_3.12.9-4_on_azure_linux_3.0 | — | — |
| msrc | cbl2_cmake_3.21.4-18_on_cbl_mariner_2.0 | — | — |
| msrc | cbl2_expat_2.6.4-1_on_cbl_mariner_2.0 | — | — |
| msrc | cbl2_expat_2.6.4-2_on_cbl_mariner_2.0 | — | — |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
osv7.5HIGH