CVE-2021-28040 Archives - RedPacket Security

CVE-2021-28040

March 9, 2021 admin CVE, CVE-2021-28040, exploit, MISC, vulnerability

An issue was discovered in OSSEC 3.6.0. An uncontrolled recursion vulnerability in os_xml.c occurs when a large number of opening and closing XML tags is used. Because recursion is used in _ReadElem without restriction, an attacker can trigger a segmentation fault once unmapped memory is reached.