Description In Expat (aka libexpat) before 2.4.5, there is an integer overflow in storeRawNames. Remediation References CVE-2022-25315 Related Vulnerabilities Ruby Cryptographic Issues Vulnerability (CVE-2011-2686) PHP Other Vulnerability (CVE-2007-1649) WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2017-5645) MySQL CVE-2016-3477 Vulnerability (CVE-2016-3477) Next.js Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2026-27978) Severity Critical Classification CVE-2022-25315 CWE-190 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities