Home > Vulnerability Database > CVE-2026-25210

Mend.io Vulnerability Database

CVE-2026-25210

Good to know:

Date: January 30, 2026

In libexpat before 2.7.4, the doContent function does not properly determine the buffer size bufSize because there is no integer overflow check for tag buffer reallocation.

Severity Score

6.9

Related Resources (4)

Url: https://github.com/libexpat/libexpat/pull/1075

Url: https://nvd.nist.gov/vuln/detail/CVE-2026-25210

Url: https://github.com/libexpat/libexpat/pull/1075/commits/9c2d990389e6abe2e44527eeaa8b39f16fe859c7

Url: https://www.mend.io/vulnerability-database/CVE-2026-25210

Severity Score

6.9

Weakness Type (CWE)

Integer Overflow or Wraparound

CWE-190

CVSS v3.1

Base Score:	6.9
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	HIGH
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	LOW

Mend.io Vulnerability Database

We found results for “”

CVE-2026-25210

Good to know:

Date: January 30, 2026

Severity Score

Related Resources (4)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?