cvedb.io
CVE-2021-42860
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2022-05-26T12:15:07.693 · Last modified 2026-06-17T04:10:13.353

Summary

A stack buffer overflow exists in Mini-XML v3.2. When inputting an unformed XML string to the mxmlLoadString API, it will cause a stack-buffer-overflow in mxml_string_getc:2611. NOTE: it is unclear whether this input is allowed by the API specification

Affected products

mini-xml_project — mini-xml

Does this affect you?

Add your gear to cvedb and we'll alert you only when mini-xml_project ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.