VYPR

mxml

by Mini-XML

CVEs (2)

  • CVE-2018-20004HigDec 10, 2018
    risk 0.57cvss 8.8epss 0.02

    An issue has been found in Mini-XML (aka mxml) 2.12. It is a stack-based buffer overflow in mxml_write_node in mxml-file.c via vectors involving a double-precision floating point number and the '' substring, as demonstrated by testmxml.

  • CVE-2018-20593MedDec 30, 2018
    risk 0.36cvss 5.5epss 0.01

    In Mini-XML (aka mxml) v2.12, there is stack-based buffer overflow in the scan_file function in mxmldoc.c.