CVE-2022-40304

HIGH EXPLOITED

libxml2 < 2.10.3 - Use-After-Free via Corrupted Hash Table Key

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2022-40304 has been observed exploited in the wild (reported by VulnCheck KEV).

Description

An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions can corrupt a hash table key, potentially leading to subsequent logic errors. In one case, a double-free can be provoked.

References (14)

Core 14
Core References
Release Notes, Third Party Advisory
https://gitlab.gnome.org/GNOME/libxml2/-/tags
Patch, Release Notes, Third Party Advisory
https://gitlab.gnome.org/GNOME/libxml2/-/tags/v2.10.3
Mailing List, Third Party Advisory mailing-list
http://seclists.org/fulldisclosure/2022/Dec/21
Mailing List, Third Party Advisory mailing-list
http://seclists.org/fulldisclosure/2022/Dec/25
Mailing List, Third Party Advisory mailing-list
http://seclists.org/fulldisclosure/2022/Dec/26
Mailing List, Third Party Advisory mailing-list
http://seclists.org/fulldisclosure/2022/Dec/24

Scores

CVSS v3 7.8
EPSS 0.0022
EPSS Percentile 44.3%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

VulnCheck KEV 2022-12-13
CWE
CWE-415
Status published
Products (17)
apple/ipados < 15.7.2
apple/iphone_os < 15.7.2
apple/macos 11.0 - 11.7.2
apple/tvos < 16.2
apple/watchos < 9.2
netapp/active_iq_unified_manager
netapp/clustered_data_ontap
netapp/clustered_data_ontap_antivirus_connector
netapp/h300s_firmware
netapp/h410c_firmware
... and 7 more
Published Nov 23, 2022
Tracked Since Feb 18, 2026