CVE-2022-23852 Blast Radius

CRITICAL • CVSS 9.8Expat (aka libexpat) before 2.4.4 has a signed integer overflow in XML_GetBuffer, for configurations with a nonzero XML_CONTEXT_BYTES.

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2022-23852.

Start Free Scan →← Back to CVE-2022-23852