{
  "threat_severity" : "Important",
  "public_date" : "2026-05-10T06:36:16Z",
  "bugzilla" : {
    "description" : "libexpat: denial of service via crafted XML input",
    "id" : "2468575",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2468575"
  },
  "cvss3" : {
    "cvss3_base_score" : "7.5",
    "cvss3_scoring_vector" : "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
    "status" : "verified"
  },
  "cwe" : "CWE-407",
  "details" : [ "In libexpat before 2.8.1, the computational complexity of attribute name collision checks allows a denial of service via moderately sized crafted XML input.", "A flaw was found in libexpat. When processing a specially crafted XML input containing a specific pattern of attributes, the parsing time increases quadratically due to checks for attribute name collisions. This consumes excessive CPU resources and eventually results in a denial of service." ],
  "statement" : "To exploit this issue, an attacker needs to be able to process a specially crafted XML file or input with an application linked to the libexpat library. Also, the only security impact of this flaw is a high consumption of CPU resources that can eventually cause a denial of service. Due to this reason, this vulnerability has been rated with an important severity.",
  "affected_release" : [ {
    "product_name" : "Red Hat Enterprise Linux 10",
    "release_date" : "2026-06-03T00:00:00Z",
    "advisory" : "RHSA-2026:22715",
    "cpe" : "cpe:/o:redhat:enterprise_linux:10.2",
    "package" : "expat-0:2.7.3-1.el10_2.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "release_date" : "2026-06-03T00:00:00Z",
    "advisory" : "RHSA-2026:22721",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8",
    "package" : "expat-0:2.5.0-2.el8_10"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "release_date" : "2026-06-04T00:00:00Z",
    "advisory" : "RHSA-2026:23230",
    "cpe" : "cpe:/a:redhat:enterprise_linux:9",
    "package" : "expat-0:2.5.0-6.el9_8.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "release_date" : "2026-06-04T00:00:00Z",
    "advisory" : "RHSA-2026:23230",
    "cpe" : "cpe:/o:redhat:enterprise_linux:9",
    "package" : "expat-0:2.5.0-6.el9_8.1"
  }, {
    "product_name" : "Red Hat JBoss Core Services 2.4.62.SP4",
    "release_date" : "2026-06-22T00:00:00Z",
    "advisory" : "RHSA-2026:27201",
    "cpe" : "cpe:/a:redhat:jboss_core_services:1",
    "package" : "libexpat-2.dll"
  }, {
    "product_name" : "Red Hat Update Infrastructure 5",
    "release_date" : "2026-06-16T00:00:00Z",
    "advisory" : "RHSA-2026:26319",
    "cpe" : "cpe:/a:redhat:rhui:5::el9",
    "package" : "rhui5/cds-rhel9:1781525684"
  }, {
    "product_name" : "Red Hat Update Infrastructure 5",
    "release_date" : "2026-06-16T00:00:00Z",
    "advisory" : "RHSA-2026:26319",
    "cpe" : "cpe:/a:redhat:rhui:5::el9",
    "package" : "rhui5/haproxy-rhel9:1781525671"
  }, {
    "product_name" : "Red Hat Update Infrastructure 5",
    "release_date" : "2026-06-16T00:00:00Z",
    "advisory" : "RHSA-2026:26319",
    "cpe" : "cpe:/a:redhat:rhui:5::el9",
    "package" : "rhui5/installer-rhel9:1781525693"
  }, {
    "product_name" : "Red Hat Update Infrastructure 5",
    "release_date" : "2026-06-16T00:00:00Z",
    "advisory" : "RHSA-2026:26319",
    "cpe" : "cpe:/a:redhat:rhui:5::el9",
    "package" : "rhui5/rhua-rhel9:1781525739"
  } ],
  "package_state" : [ {
    "product_name" : "Red Hat Enterprise Linux 6",
    "fix_state" : "Affected",
    "package_name" : "compat-expat1",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 6",
    "fix_state" : "Will not fix",
    "package_name" : "expat",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "fix_state" : "Affected",
    "package_name" : "expat",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Affected",
    "package_name" : "mingw-expat",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2026-45186\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-45186\nhttps://github.com/libexpat/libexpat/pull/1216" ],
  "name" : "CVE-2026-45186",
  "mitigation" : {
    "value" : "To mitigate this vulnerability, restrict the maximum size of incoming XML payloads. It is especially critical to limit the decompressed size if the application accepts compressed XML files. Also, consider running the application inside a container or a restricted environment to ensure that the high consumption of CPU resources does not affect the host system.",
    "lang" : "en:us"
  },
  "csaw" : false
}