CVE-2025-8732
published 2025-08-08CVE-2025-8732: A vulnerability was found in libxml2 up to 2.14.5. It has been declared as problematic. This vulnerability affects the function xmlParseSGMLCatalog of the…
PriorityP413low3.3CVSS 3.1
AVLACLPRLUINSUCNINAL
EPSS
0.14%
3.3th percentile
A vulnerability was found in libxml2 up to 2.14.5. It has been declared as problematic. This vulnerability affects the function xmlParseSGMLCatalog of the component xmlcatalog. The manipulation leads to uncontrolled recursion. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The real existence of this vulnerability is still doubted at the moment. The code maintainer explains, that "[t]he issue can only be triggered with untrusted SGML catalogs and it makes absolutely no sense to use untrusted catalogs. I also doubt that anyone is still using SGML catalogs at all."
Affected
29 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | libxml2 | — | — |
| ibm | aix | — | — |
| ibm | aix | >= 7.2.5 < 7.2.5.12 | 7.2.5.12 |
| ibm | aix | >= 7.3.2 < 7.3.3.3 | 7.3.3.3 |
| ibm | vios | — | — |
| ibm | vios | >= 4.1.0 < 4.1.1.30 | 4.1.1.30 |
| msrc | azl3_libxml2_2.11.5-6_on_azure_linux_3.0 | — | — |
| msrc | azl3_libxml2_2.11.5-7_on_azure_linux_3.0 | — | — |
| msrc | azl3_libxml2_2.11.5-8_on_azure_linux_3.0 | — | — |
| msrc | azl3_libxml2_2.11.5-9_on_azure_linux_3.0 | — | — |
| msrc | cbl2_libxml2_2.10.4-10_on_cbl_mariner_2.0 | — | — |
| msrc | cbl2_libxml2_2.10.4-11_on_cbl_mariner_2.0 | — | — |
| msrc | cbl2_libxml2_2.10.4-8_on_cbl_mariner_2.0 | — | — |
| msrc | cbl2_libxml2_2.10.4-9_on_cbl_mariner_2.0 | — | — |
| siemens | ruggedcom_rst2428p_firmware | < 4.0 | 4.0 |
| xmlsoft | libxml2 | < 2.15.2 | 2.15.2 |
| xmlsoft | libxml2 | — | — |
| xmlsoft | libxml2 | — | — |
| xmlsoft | libxml2 | — | — |
| xmlsoft | libxml2 | — | — |
| xmlsoft | libxml2 | — | — |
| xmlsoft | libxml2 | — | — |
| xmlsoft | libxml2 | >= 0 < 2.9.13+dfsg-1ubuntu0.11 | 2.9.13+dfsg-1ubuntu0.11 |
| xmlsoft | libxml2 | >= 0 < 2.9.14+dfsg-1.3ubuntu3.7 | 2.9.14+dfsg-1.3ubuntu3.7 |
| xmlsoft | libxml2 | >= 0 < 2.14.5+dfsg-0.2ubuntu0.1 | 2.14.5+dfsg-0.2ubuntu0.1 |
CVSS provenance
nvdv3.13.3LOWCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
nvdv4.01.9LOWCVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
nvdv2.01.7LOWAV:L/AC:L/Au:S/C:N/I:N/A:P
osv4.8MEDIUM
vendor_debian4.8LOW
vendor_redhat4.8MEDIUM
vendor_msrc3.3LOW
vendor_ubuntu3.3LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
libxml2 vulnerabilities
osv·2026-01-22·CVSS 4.8
CVE-2025-8732 [MEDIUM] libxml2 vulnerabilities
libxml2 vulnerabilities
It was discovered that libxml2 incorrectly handled maliciously crafted SGML
catalog files. An attacker could possibly use this issue to cause libxml2
to consume excessive resources, leading to a denial of service.
(CVE-2025-8732)
It was discovered that libxml2 incorrectly handled recursive include
directories with the RelaxNG parser. An attacker could possibly use this
issue to cause libxml2 to consume excessive resources, leading to a denial
of service. (CVE-2026-0989)
Nick Wellnhofer discovered that libxml2 incorrectly parsed catalogs with
self-referencing URI delegates. An attacker could possibly use this issue
to cause libxml2 to consume excessive resources, leading to a denial of
service. (CVE-2026-0990)
Nick Wellnhofer discovered that libxml2 inefficiently
GHSA
GHSA-vr42-4x2q-392x: A vulnerability was found in libxml2 up to 2
ghsa_unreviewed·2025-08-08
CVE-2025-8732 [MEDIUM] CWE-404 GHSA-vr42-4x2q-392x: A vulnerability was found in libxml2 up to 2
A vulnerability was found in libxml2 up to 2.14.5. It has been declared as problematic. This vulnerability affects the function xmlParseSGMLCatalog of the component xmlcatalog. The manipulation leads to uncontrolled recursion. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The real existence of this vulnerability is still doubted at the moment. The code maintainer explains, that "[t]he issue can only be triggered with untrusted SGML catalogs and it makes absolutely no sense to use untrusted catalogs. I also doubt that anyone is still using SGML catalogs at all."
OSV
CVE-2025-8732: A vulnerability was found in libxml2 up to 2
osv·2025-08-08·CVSS 4.8
CVE-2025-8732 [MEDIUM] CVE-2025-8732: A vulnerability was found in libxml2 up to 2
A vulnerability was found in libxml2 up to 2.14.5. It has been declared as problematic. This vulnerability affects the function xmlParseSGMLCatalog of the component xmlcatalog. The manipulation leads to uncontrolled recursion. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The real existence of this vulnerability is still doubted at the moment. The code maintainer explains, that "[t]he issue can only be triggered with untrusted SGML catalogs and it makes absolutely no sense to use untrusted catalogs. I also doubt that anyone is still using SGML catalogs at all."
Ubuntu
libxml2 vulnerabilities
vendor_ubuntu·2026-01-22·CVSS 3.3
CVE-2026-0990 [LOW] libxml2 vulnerabilities
Title: libxml2 vulnerabilities
Summary: Several security issues were fixed in libxml2.
It was discovered that libxml2 incorrectly handled maliciously crafted SGML
catalog files. An attacker could possibly use this issue to cause libxml2
to consume excessive resources, leading to a denial of service.
(CVE-2025-8732)
It was discovered that libxml2 incorrectly handled recursive include
directories with the RelaxNG parser. An attacker could possibly use this
issue to cause libxml2 to consume excessive resources, leading to a denial
of service. (CVE-2026-0989)
Nick Wellnhofer discovered that libxml2 incorrectly parsed catalogs with
self-referencing URI delegates. An attacker could possibly use this issue
to cause libxml2 to consume excessive resources, leading to a denial of
service. (CVE-2
Microsoft
libxml2 xmlcatalog xmlParseSGMLCatalog recursion
vendor_msrc·2025-08-12·CVSS 3.3
CVE-2025-8732 [MEDIUM] CWE-674 libxml2 xmlcatalog xmlParseSGMLCatalog recursion
libxml2 xmlcatalog xmlParseSGMLCatalog recursion
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed to transparency in this work which is why we began publishing CSAF/VEX in October 2025. See this blog post for more information. If impact to additional products is identified, we will update the CVE to reflect this.
Mariner: Mariner
VulDB: VulDB
Customer Action Required: Yes
Remediation: CBL-Mariner Releases
Reference: https://learn.micros
Red Hat
libxml2: libxml2: Uncontrolled Recursion Vulnerability
vendor_redhat·2025-08-08·CVSS 4.8
CVE-2025-8732 [MEDIUM] CWE-776 libxml2: libxml2: Uncontrolled Recursion Vulnerability
libxml2: libxml2: Uncontrolled Recursion Vulnerability
A vulnerability was found in libxml2 up to 2.14.5. It has been declared as problematic. This vulnerability affects the function xmlParseSGMLCatalog of the component xmlcatalog. The manipulation leads to uncontrolled recursion. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The real existence of this vulnerability is still doubted at the moment. The code maintainer explains, that "[t]he issue can only be triggered with untrusted SGML catalogs and it makes absolutely no sense to use untrusted catalogs. I also doubt that anyone is still using SGML catalogs at all."
A flaw was found in libxml2. The `xmlParseSGMLCatalog` function within the `xmlcatalog` component exhibits uncontrolled rec
Debian
CVE-2025-8732: libxml2 - A vulnerability was found in libxml2 up to 2.14.5. It has been declared as probl...
vendor_debian·2025·CVSS 4.8
CVE-2025-8732 [MEDIUM] CVE-2025-8732: libxml2 - A vulnerability was found in libxml2 up to 2.14.5. It has been declared as probl...
A vulnerability was found in libxml2 up to 2.14.5. It has been declared as problematic. This vulnerability affects the function xmlParseSGMLCatalog of the component xmlcatalog. The manipulation leads to uncontrolled recursion. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The real existence of this vulnerability is still doubted at the moment. The code maintainer explains, that "[t]he issue can only be triggered with untrusted SGML catalogs and it makes absolutely no sense to use untrusted catalogs. I also doubt that anyone is still using SGML catalogs at all."
Scope: local
bookworm: open
bullseye: open
forky: open
sid: open
trixie: open
No detection rules found.
No public exploits indexed.
https://drive.google.com/file/d/1woIeYVcSQB_NwfEhaVnX6MedpWJ_nqWl/view?usp=drive_linkhttps://gitlab.gnome.org/GNOME/libxml2/-/issues/958https://gitlab.gnome.org/GNOME/libxml2/-/issues/958#note_2505853https://vuldb.com/?ctiid.319228https://vuldb.com/?id.319228https://vuldb.com/?submit.622285https://cert-portal.siemens.com/productcert/html/ssa-253495.html
2025-08-08
Published