CVE-2026-32776MediumCVSS 4.0

libexpat before 2.7.5 allows a NULL pointer dereference with empty external parameter entity content.

Published
May 31, 2026
Last Modified

🔗 CVE IDs covered (1)