CVE-2021-28040
EUVD-2021-1474705.03.2021, 18:15
An issue was discovered in OSSEC 3.6.0. An uncontrolled recursion vulnerability in os_xml.c occurs when a large number of opening and closing XML tags is used. Because recursion is used in _ReadElem without restriction, an attacker can trigger a segmentation fault once unmapped memory is reached.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| ossec | ossec | 3.6.0 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration