Skip to main content
Echelon
Graph
Product
Directory
Enterprise
Compliance
Pulse
Exposures
AI Analyst
Compare
Docs
Login
Start Free
Pulse
›
Vendor Advisories
›
Microsoft Security Response Center (MSRC)
›
CVE-2026-56409
CVE-2026-56409
Medium
CVSS
6.5
xmlwf in libexpat before 2.8.2 has an integer overflow for the output filename when -d outputDir is used.
Vendor
Microsoft Security Response Center (MSRC)
Published
June 30, 2026
Last Modified
—
🔗 CVE IDs covered (1)
CVE-2026-56409 →