CVE-2023-34194

HIGH

TinyXML <2.6.2 - Info Disclosure

Title source: llm

Description

StringEqual in TiXmlDeclaration::Parse in tinyxmlparser.cpp in TinyXML through 2.6.2 has a reachable assertion (and application exit) via a crafted XML document with a '\0' located after whitespace.

Exploits (1)

nomisec WRITEUP 1 stars

by vm2mv · poc

https://github.com/vm2mv/tinyxml

View Code ZIP pw:eip

References (7)

[Patch] https://sourceforge.net/p/tinyxml/git/ci/master/tree/tinyxmlparser.cpp

[Third Party Advisory] https://www.forescout.com/resources/sierra21-vulnerabilities

[Mailing List, Third Party Advisory] https://lists.fedoraproject.org/archives/list/[email protected]/message/4QCR5PIOBGDIDS6SYRESTMDJSEDFSCOE/

[Mailing List, Third Party Advisory] https://lists.fedoraproject.org/archives/list/[email protected]/message/HOMBSHRIW5Q34SQSXYURYAOYDZD2NQF6/

[Mailing List] https://lists.debian.org/debian-lts-announce/2023/12/msg00024.html

[Mailing List, Third Party Advisory] https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4QCR5PIOBGDIDS6SYRESTMDJSEDFSCOE/

[Mailing List, Third Party Advisory] https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HOMBSHRIW5Q34SQSXYURYAOYDZD2NQF6/

Scores

CVSS v3 7.5

EPSS 0.0095

EPSS Percentile 76.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-617

Status published

Products (1)

tinyxml_project/tinyxml < 2.6.2

Published Dec 13, 2023

Tracked Since Feb 18, 2026