All vulnerabilities
CVE-2022-23308
Description
valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes.
Patch Available
Fix available through Seal Security.
No upgrade required, protect your application instantly.
Fix without upgrading
Score
7.5
Severity
High
Ecosystem
RPM
Publish Date
February 26, 2022
Modified Date
April 16, 2026
Score Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Versions
