Vulnerabilities (CVE)

Filtered by vendor Xml Library Project Subscribe
Filtered by product Xml Library
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-34411 1 Xml Library Project 1 Xml Library 2024-11-21 N/A 7.5 HIGH
The xml-rs crate before 0.8.14 for Rust and Crab allows a denial of service (panic) via an invalid <! token (such as <!DOCTYPEs/%<!A nesting) in an XML document. The earliest affected version is 0.8.9.