Description

In libxml2 before 2.13.8 and 2.14.x before 2.14.2, xmlSchemaIDCFillNodeTables in xmlschemas.c has a heap-based buffer under-read. To exploit this, a crafted XML document must be validated against an XML schema with certain identity constraints, or a crafted XML schema must be used.

INFO

Published Date :

2025-04-17T00:00:00.000Z

Last Modified :

2025-04-17T18:38:30.600Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2025-32415 vulnerability.

No data.

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-32415.

URL Resource
https://gitlab.gnome.org/GNOME/libxml2/-/issues/890 cve-icon cve-icon cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-32415 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-32415 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact