Loading HuntDB...

GHSA-whj6-8xvc-hmjm

GitHub Security Advisory

⚠ Unreviewed CRITICAL Has CVE

Advisory Details

A heap-based buffer overflow vulnerability exists in the XML Decompression EnumerationUncompressor::UncompressItem functionality of AT&T Labs’ Xmill 0.7. A specially crafted XMI file can lead to remote code execution. An attacker can provide a malicious file to trigger this vulnerability.

Related CVEs

Key Information

GHSA ID
GHSA-whj6-8xvc-hmjm
Published
May 24, 2022 10:29 PM
Last Modified
June 1, 2022 12:00 AM
CVSS Score
9.0 /10
Primary Ecosystem
Unknown
Primary Package
Unknown
GitHub Reviewed
✗ No

Dataset

Last updated: August 2, 2025 6:46 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.