Exponential Entity Expansion Attack in libxml2: Bypassing Protections and Causing Denial of Service

Exponential Entity Expansion Attack in libxml2: Bypassing Protections and Causing Denial of Service

CVE-2021-3541 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

A flaw was found in libxml2. Exponential entity expansion attack its possible bypassing all existing protection mechanisms and leading to denial of service.

Learn more about our Web Application Penetration Testing UK.