CVE Vulnerability
CVE-2021-28040
An issue was discovered in OSSEC 3.6.0. An uncontrolled recursion vulnerability in os_xml.c occurs when a large number of opening and closing XML tags is used. Because recursion is used in _ReadElem without restriction, an attacker can trigger a segmentation fault once unmapped memory is reached.
References
| Link | Resource |
|---|---|
| https://github.com/ossec/ossec-hids/issues/1953 | Exploit Issue Tracking |
Configurations
Configuration 1
|
Information
Published : 2021-03-05 06:15
Updated : 2021-03-09 03:41
NVD link : CVE-2021-28040
Mitre link : CVE-2021-28040
Products Affected
No products.
CWE
CWE-674
Uncontrolled Recursion