Stack Buffer Overflow in Mini-XML v3.2: mxmlLoadString API Vulnerability

Stack Buffer Overflow in Mini-XML v3.2: mxmlLoadString API Vulnerability

CVE-2021-42860 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

A stack buffer overflow exists in Mini-XML v3.2. When inputting an unformed XML string to the mxmlLoadString API, it will cause a stack-buffer-overflow in mxml_string_getc:2611. NOTE: it is unclear whether this input is allowed by the API specification

Learn more about our Api Penetration Testing.