Filtered by vendor Tinyxml2 Project Subscriptions
Filtered by product Tinyxml2 Subscriptions
Total 3 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2018-11210 1 Tinyxml2 Project 1 Tinyxml2 2024-11-21 N/A
TinyXML2 6.2.0 has a heap-based buffer over-read in the XMLDocument::Parse function in libtinyxml2.so. NOTE: The tinyxml2 developers have determined that the reported overflow is due to improper use of the library and not a vulnerability in tinyxml2
CVE-2024-50615 1 Tinyxml2 Project 1 Tinyxml2 2024-10-30 6.5 Medium
TinyXML2 through 10.0.0 has a reachable assertion for UINT_MAX/digit, that may lead to application exit, in tinyxml2.cpp XMLUtil::GetCharacterRef.
CVE-2024-50614 1 Tinyxml2 Project 1 Tinyxml2 2024-10-30 6.5 Medium
TinyXML2 through 10.0.0 has a reachable assertion for UINT_MAX/16, that may lead to application exit, in tinyxml2.cpp XMLUtil::GetCharacterRef.