Skip to main content
Version: latest

CVE-2024-45492

CVE Details

CVE-2024-45492

Last Update

9/5/24

NIST CVE Summary

An issue was discovered in libexpat before 2.6.3. nextScaffoldPart in xmlparse.c can have an integer overflow for m_groupSize on 32-bit platforms (where UINT_MAX equals SIZE_MAX).

Our Official Summary

Investigation is ongoing to determine how this vulnerability affects any of our products.

CVE Severity

9.8

Status

Ongoing

Affected Products & Versions

  • Palette VerteX 4.4.14

Revision History

  • 1.0 09/05/2024 Initial Publication
  • 2.0 09/05/2024 Added Palette VerteX 4.4.14 to Affected Products