Skip to main content
Echelon
Graph
Product
Directory
Enterprise
Compliance
Pulse
Exposures
AI Analyst
Compare
Docs
Login
Start Free
Pulse
›
Vendor Advisories
›
Microsoft Security Response Center (MSRC)
›
CVE-2026-56407
CVE-2026-56407
Medium
CVSS
6.9
libexpat before 2.8.2 has an integer overflow in doProlog that is related to storeEntityValue and entity textLen.
Vendor
Microsoft Security Response Center (MSRC)
Published
June 30, 2026
Last Modified
—
🔗 CVE IDs covered (1)
CVE-2026-56407 →