Description In Expat (aka libexpat) before 2.4.5, there is an integer overflow in copyString. Remediation References CVE-2022-25314 Related Vulnerabilities XOOPS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2002-2391) Jenkins Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-7537) Undertow Insertion of Sensitive Information into Log File Vulnerability (CVE-2019-10212) TYPO3 Insertion of Sensitive Information into Log File Vulnerability (CVE-2022-31047) concrete5 CVE-2020-14961 Vulnerability (CVE-2020-14961) Severity High Classification CVE-2022-25314 CWE-190 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Tags Missing Update Known Vulnerabilities