VYPR
High severity7.5NVD Advisory· Published Mar 5, 2021· Updated Jun 17, 2026

CVE-2021-28040

CVE-2021-28040

Description

An issue was discovered in OSSEC 3.6.0. An uncontrolled recursion vulnerability in os_xml.c occurs when a large number of opening and closing XML tags is used. Because recursion is used in _ReadElem without restriction, an attacker can trigger a segmentation fault once unmapped memory is reached.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • OSSEC/OSSECdescription
  • Ossec/Ossecllm-fuzzy
    Range: =3.6.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.