CVE-2022-23990

HIGH

libexpat < 2.4.4 - Integer Overflow in doProlog Function

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-23990. PoCs published by Satheesh575555.

AI-analyzed exploit summary This repository appears to be a fork or snapshot of the Expat library (version 2.2.6) with no explicit exploit code or proof-of-concept for CVE-2022-23990. The files listed are standard library and build configuration files, lacking any offensive security techniques or demonstration of the vulnerability.

Description

Expat (aka libexpat) before 2.4.4 has an integer overflow in the doProlog function.

Exploits (1)

nomisec STUB

by Satheesh575555 · poc

https://github.com/Satheesh575555/external_expat_AOSP10_r33_CVE-2022-23990

View Code ZIP pw:eip

This repository appears to be a fork or snapshot of the Expat library (version 2.2.6) with no explicit exploit code or proof-of-concept for CVE-2022-23990. The files listed are standard library and build configuration files, lacking any offensive security techniques or demonstration of the vulnerability.

Classification

Stub 90%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: Expat (libexpat) 2.2.6

No auth needed

Prerequisites: None identified

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (8)

Core 8

Core References

Issue Tracking, Patch, Third Party Advisory x_refsource_misc

https://github.com/libexpat/libexpat/pull/551

Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/R7FF2UH7MPXKTADYSJUAHI2Y5UHBSHUH/

Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/34NXVL2RZC2YZRV74ZQ3RNFB7WCEUP7D/

Mailing List, Third Party Advisory vendor-advisory x_refsource_debian

https://www.debian.org/security/2022/dsa-5073

Third Party Advisory x_refsource_misc

https://www.oracle.com/security-alerts/cpuapr2022.html

Third Party Advisory x_refsource_confirm

https://www.tenable.com/security/tns-2022-05

Patch, Third Party Advisory x_refsource_confirm

https://cert-portal.siemens.com/productcert/pdf/ssa-484086.pdf

Third Party Advisory vendor-advisory x_refsource_gentoo

https://security.gentoo.org/glsa/202209-24

Scores

CVSS v3 7.5

EPSS 0.0396

EPSS Percentile 89.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-190

Status published

Products (8)

debian/debian_linux 10.0

debian/debian_linux 11.0

fedoraproject/fedora 34

fedoraproject/fedora 35

libexpat_project/libexpat < 2.4.4

oracle/communications_metasolv_solution 6.3.1

siemens/sinema_remote_connect_server < 3.1

tenable/nessus < 8.15.3

Published Jan 26, 2022

Tracked Since Feb 18, 2026