CVE-2025-27113

Summary

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a NULL pointer dereference in xmlPatMatch in pattern.c.

Affected Software

VendorProductVersion RangeStatus
xmlsoftlibxml20 < 2.12.10affected
xmlsoftlibxml22.13.0 < 2.13.6affected

Weaknesses

  • CWE-476: CWE-476 NULL Pointer Dereference

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References