Sign in Get started

← All advisories

Unrated severityOSV Advisory· Published Jan 23, 2026· Updated Jan 23, 2026

CVE-2026-24515

CVE-2026-24515

Description

In libexpat before 2.7.4, XML_ExternalEntityParserCreate does not copy unknown encoding handler user data.

Affected products

1

Libexpat/LibexpatOSV
Range: REC1_0, R_1_95_0, R_1_95_2, …

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

github.com/libexpat/libexpat/pull/1131mitre

News mentions

0

No linked articles in our index yet.