vulnerability context

CVE-2021-3541

CVSS 6.5 MEDIUMEPSS 77%CWE-776

A flaw was found in libxml2. Exponential entity expansion attack its possible bypassing all existing protection mechanisms and leading to denial of service.

Published 2021-07-09 · last modified 2026-06-17

details

CISA KEV status: Not in catalog
CVSS v3: 6.5 / MEDIUM
CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS: 77% percentile (score 0.0186)
CWE: CWE-776
OTX pulses: 0 total, 0 recent

View on NVD → · cve.org

source mentions 1

CVE-2026-6653: libxml2: use after free in xmlParseInternalSubset (>=2.9.11, <2.11.0)oss-security · 1d ago

source consensus

oss-security1×

Want the 3-bullet summary of CVE-2021-3541, plus webhook alerts when KEV is updated? Pro is $10/mo.

Open in reader See Pro →