OpenCVE

libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external parsers (created via XML_ExternalEntityParserCreate).

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact partial

Vendors	Products
Redhat	Enterprise Linux Rhel Eus

No data.

Package	CPE	Advisory	Released Date
Red Hat Enterprise Linux 9
expat-0:2.5.0-1.el9_3.1	cpe:/a:redhat:enterprise_linux:9	RHSA-2024:1530	2024-03-26T00:00:00Z
expat-0:2.5.0-1.el9_3.1	cpe:/o:redhat:enterprise_linux:9	RHSA-2024:1530	2024-03-26T00:00:00Z
Red Hat Enterprise Linux 9.2 Extended Update Support
expat-0:2.5.0-1.el9_2.1	cpe:/a:redhat:rhel_eus:9.2	RHSA-2024:3926	2024-06-13T00:00:00Z

References

Link	Providers
http://www.openwall.com/lists/oss-security/2024/03/15/1
https://github.com/libexpat/libexpat/issues/839
https://github.com/libexpat/libexpat/pull/842
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FPLC6WDSRDUYS7F7JWAOVOHFNOUQ43DD/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKJ7V5F6LJCEQJXDBWGT27J7NAP3E3N7/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VK2O34GH43NTHBZBN7G5Y6YKJKPUCTBE/
https://nvd.nist.gov/vuln/detail/CVE-2024-28757
https://security.netapp.com/advisory/ntap-20240322-0001/
https://www.cve.org/CVERecord?id=CVE-2024-28757

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2024-03-10T00:00:00

Updated: 2024-08-02T00:56:58.387Z

Reserved: 2024-03-10T00:00:00

Link: CVE-2024-28757

Vulnrichment

Updated: 2024-07-05T15:20:37.934Z

NVD

Status : Awaiting Analysis

Published: 2024-03-10T05:15:06.570

Modified: 2024-11-21T09:06:54.427

Link: CVE-2024-28757

Redhat

Severity : Moderate

Publid Date: 2024-03-10T00:00:00Z

Links: CVE-2024-28757 - Bugzilla

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2024-28757", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2024-08-02T00:56:58.387Z", "dateReserved": "2024-03-10T00:00:00", "datePublished": "2024-03-10T00:00:00"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2024-05-01T19:07:21.211670"}, "descriptions": [{"lang": "en", "value": "libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external parsers (created via XML_ExternalEntityParserCreate)."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://github.com/libexpat/libexpat/pull/842"}, {"url": "https://github.com/libexpat/libexpat/issues/839"}, {"name": "FEDORA-2024-4e6e660fae", "tags": ["vendor-advisory"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FPLC6WDSRDUYS7F7JWAOVOHFNOUQ43DD/"}, {"name": "FEDORA-2024-40b98c9ced", "tags": ["vendor-advisory"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKJ7V5F6LJCEQJXDBWGT27J7NAP3E3N7/"}, {"url": "https://security.netapp.com/advisory/ntap-20240322-0001/"}, {"name": "FEDORA-2024-afb73e6f62", "tags": ["vendor-advisory"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VK2O34GH43NTHBZBN7G5Y6YKJKPUCTBE/"}, {"name": "[oss-security] 20240315 Expat 2.6.2 released, includes security fixes", "tags": ["mailing-list"], "url": "http://www.openwall.com/lists/oss-security/2024/03/15/1"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-28757", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-03-11T13:15:18.395170Z"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-05T17:21:07.516Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T00:56:58.387Z"}, "title": "CVE Program Container", "references": [{"url": "https://github.com/libexpat/libexpat/pull/842", "tags": ["x_transferred"]}, {"url": "https://github.com/libexpat/libexpat/issues/839", "tags": ["x_transferred"]}, {"name": "FEDORA-2024-4e6e660fae", "tags": ["vendor-advisory", "x_transferred"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FPLC6WDSRDUYS7F7JWAOVOHFNOUQ43DD/"}, {"name": "FEDORA-2024-40b98c9ced", "tags": ["vendor-advisory", "x_transferred"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKJ7V5F6LJCEQJXDBWGT27J7NAP3E3N7/"}, {"url": "https://security.netapp.com/advisory/ntap-20240322-0001/", "tags": ["x_transferred"]}, {"name": "FEDORA-2024-afb73e6f62", "tags": ["vendor-advisory", "x_transferred"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VK2O34GH43NTHBZBN7G5Y6YKJKPUCTBE/"}, {"name": "[oss-security] 20240315 Expat 2.6.2 released, includes security fixes", "tags": ["mailing-list", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2024/03/15/1"}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-28757", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-03-11T13:15:18.395170Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-05T15:20:37.934Z"}}], "cna": {"affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "references": [{"url": "https://github.com/libexpat/libexpat/pull/842"}, {"url": "https://github.com/libexpat/libexpat/issues/839"}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FPLC6WDSRDUYS7F7JWAOVOHFNOUQ43DD/", "name": "FEDORA-2024-4e6e660fae", "tags": ["vendor-advisory"]}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKJ7V5F6LJCEQJXDBWGT27J7NAP3E3N7/", "name": "FEDORA-2024-40b98c9ced", "tags": ["vendor-advisory"]}, {"url": "https://security.netapp.com/advisory/ntap-20240322-0001/"}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VK2O34GH43NTHBZBN7G5Y6YKJKPUCTBE/", "name": "FEDORA-2024-afb73e6f62", "tags": ["vendor-advisory"]}, {"url": "http://www.openwall.com/lists/oss-security/2024/03/15/1", "name": "[oss-security] 20240315 Expat 2.6.2 released, includes security fixes", "tags": ["mailing-list"]}], "descriptions": [{"lang": "en", "value": "libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external parsers (created via XML_ExternalEntityParserCreate)."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "n/a"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2024-05-01T19:07:21.211670"}}}, "cveMetadata": {"cveId": "CVE-2024-28757", "state": "PUBLISHED", "dateUpdated": "2024-07-05T17:21:07.516Z", "dateReserved": "2024-03-10T00:00:00", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2024-03-10T00:00:00", "assignerShortName": "mitre"}, "dataVersion": "5.1"}

{"descriptions": [{"lang": "en", "value": "libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external parsers (created via XML_ExternalEntityParserCreate)."}, {"lang": "es", "value": "libexpat hasta 2.6.1 permite un ataque de expansi\u00f3n de entidad XML cuando hay un uso aislado de analizadores externos (creados a trav\u00e9s de XML_ExternalEntityParserCreate)."}], "id": "CVE-2024-28757", "lastModified": "2024-11-21T09:06:54.427", "metrics": {}, "published": "2024-03-10T05:15:06.570", "references": [{"source": "cve@mitre.org", "url": "http://www.openwall.com/lists/oss-security/2024/03/15/1"}, {"source": "cve@mitre.org", "url": "https://github.com/libexpat/libexpat/issues/839"}, {"source": "cve@mitre.org", "url": "https://github.com/libexpat/libexpat/pull/842"}, {"source": "cve@mitre.org", "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FPLC6WDSRDUYS7F7JWAOVOHFNOUQ43DD/"}, {"source": "cve@mitre.org", "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKJ7V5F6LJCEQJXDBWGT27J7NAP3E3N7/"}, {"source": "cve@mitre.org", "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VK2O34GH43NTHBZBN7G5Y6YKJKPUCTBE/"}, {"source": "cve@mitre.org", "url": "https://security.netapp.com/advisory/ntap-20240322-0001/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.openwall.com/lists/oss-security/2024/03/15/1"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://github.com/libexpat/libexpat/issues/839"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://github.com/libexpat/libexpat/pull/842"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FPLC6WDSRDUYS7F7JWAOVOHFNOUQ43DD/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKJ7V5F6LJCEQJXDBWGT27J7NAP3E3N7/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VK2O34GH43NTHBZBN7G5Y6YKJKPUCTBE/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://security.netapp.com/advisory/ntap-20240322-0001/"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Awaiting Analysis"}

{"affected_release": [{"advisory": "RHSA-2024:1530", "cpe": "cpe:/a:redhat:enterprise_linux:9", "package": "expat-0:2.5.0-1.el9_3.1", "product_name": "Red Hat Enterprise Linux 9", "release_date": "2024-03-26T00:00:00Z"}, {"advisory": "RHSA-2024:1530", "cpe": "cpe:/o:redhat:enterprise_linux:9", "package": "expat-0:2.5.0-1.el9_3.1", "product_name": "Red Hat Enterprise Linux 9", "release_date": "2024-03-26T00:00:00Z"}, {"advisory": "RHSA-2024:3926", "cpe": "cpe:/a:redhat:rhel_eus:9.2", "package": "expat-0:2.5.0-1.el9_2.1", "product_name": "Red Hat Enterprise Linux 9.2 Extended Update Support", "release_date": "2024-06-13T00:00:00Z"}], "bugzilla": {"description": "expat: XML Entity Expansion", "id": "2268766", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268766"}, "csaw": false, "cvss3": {"cvss3_base_score": "7.5", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "status": "verified"}, "cwe": "CWE-776", "details": ["libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external parsers (created via XML_ExternalEntityParserCreate).", "An XML Entity Expansion flaw was found in libexpat. This flaw allows an attacker to cause a denial of service when there is an isolated use of external parsers."], "name": "CVE-2024-28757", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Not affected", "package_name": "compat-expat1", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Not affected", "package_name": "expat", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "expat", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "expat", "product_name": "Red Hat Enterprise Linux 8"}], "public_date": "2024-03-10T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2024-28757\nhttps://nvd.nist.gov/vuln/detail/CVE-2024-28757\nhttps://github.com/libexpat/libexpat/issues/839"], "statement": "Direct recursion of parameter entities repeatedly referenced themselves, creating a loop that was not detected in the external subset. This is against XML rules and caused unpredictable behaviour during runtime, which could lead to a denial of service (DoS) attack", "threat_severity": "Moderate", "upstream_fix": "expat 2.6.2"}