Sam Gross

1 exploit Active since Dec 2025
CVE-2025-12084 WRITEUP MEDIUM WRITEUP
Python < 3.13.11 - Denial of Service via Quadratic Complexity in xml.dom.minidom
When building nested elements using xml.dom.minidom methods such as appendChild() that have a dependency on _clear_id_cache() the algorithm is quadratic. Availability can be impacted when building excessively nested documents.
CVSS 5.3